Network & Host Analysis: Protocol Analysis


Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level


Overview/Description

Wireshark is the de facto tool for network protocol analysis. The ability to live capture, deeply inspect, filter, decrypt, and export network data comprises Wireshark's feature-rich capabilities. In this course, you'll examine the vital elements of network protocol analysis and learn how to reap the benefits of Wireshark's features.

You'll start by exploring some common network analysis patterns. You'll then outline the Open Systems Interconnection (OSI) reference model. Next, you'll differentiate between passive and active network scanning.

Moving on, you'll use Wireshark to capture and filter network traffic and customize packet capturing. Finally, you'll use Wireshark to save and then export packet captures, apply highlighting rules, extract files, configure profiles, apply display filters, and implement advanced capture and display filtering.



Expected Duration (hours)
1.0

Lesson Objectives

Network & Host Analysis: Protocol Analysis

  • discover the key concepts covered in this course
  • describe common analysis patterns for network data
  • outline the Open Systems Interconnection (OSI) model for network communications
  • characterize the passive and active approaches to scanning
  • capture network traffic using Wireshark
  • apply traffic filters using Wireshark
  • customize packet capturing in Wireshark
  • save and export packet captures in the PCAP format in Wireshark
  • use coloring rules to examine traffic using Wireshark
  • extract files transferred in the clear using Wireshark
  • use configuration profiles to save preferences in Wireshark
  • apply display filters to control which packets are shown in Wireshark
  • combine capture and display filters to packets in Wireshark
  • summarize the key concepts covered in this course

    • Course Number:
    it_cynthadj_01_enus

    Expertise Level
    Intermediate