Next Generation Protocols and Advanced Network Analysis using Wireshark

Audience

This course is designed for Networking personnel that need to develop a set of packet investigation techniques through study of the Next Generation networking Protocols using Wireshark and other Open-Source Analysis tools. Successful completion of this course will provide these individuals with a path-way into the field of both Network and Forensics Analysis.

Course Description

Network and Forensics Analysis encompasses the skills of not only capturing
data, but also the ability to discern unusual patterns hidden within seemingly
normal network traffic. This course will provide the student with a set of
investigate and analysis techniques focusing on the use of vendor-neutral,
Open-Source Tools such as Wireshark to provide insight into the following areas:

  • Specialized and advanced packet capture techniques
  •  Recognition, analysis and threat recognition for a many of the
    next generation user protocol issues including IPv4/v6/v10,  DHCPv4/v6,
    SCTP, DNS/DNSSec/MDNS, ICMP(v4 /v6), Email Protocols (POP / SMTP / IMAP) ,
    File Transfer Protocols (FTP/TFTP/FIX/File Sharing) and common Internet
    based User Protocols (HTTP, VoIP, IRC, IM)
  •  Specialized Analysis techniques including suspicious data traffic
    reconstruction and viewing techniques.

Format

5 days Classroom Instruction

Start/End Times

08:30-17:00

Prerequisites

Completion of Wireshark 1

Language

English