SECOPS: Examining Intrusion Events

Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level

---

Overview/Description

Explore how to interrupt common artifact elements from an event to identify an alert, identify key intrusion elements from a PCAP file, extract files from a TCP stream given a PCAP file, and work with Wireshark.

Expected Duration (hours)
0.4

Lesson Objectives

SECOPS: Examining Intrusion Events

use various techniques to identify and examine intrusion events

Course Number:
it_secopstv_13_enus

Expertise Level
Intermediate