By Mohamad Mahjoub, CISO
Master Wireshark 3 in 5 Days
Course description
OVERVIEW
Wireshark is the world’s foremost network protocol analyzer. It lets you see what’s happening on your network at a microscopic level. It is the de facto standard across many industries and educational institutions. This course will be your go-to guide through the latest release of Wireshark, showing you exactly what you need to do, and do it well, by explaining the fundamental network terminologies, using Wireshark for network analysis, and running through its myriad features. We will begin with a quick introduction to Wireshark and how it is used to capture and analyze your protocol packets. We will then work with the various TCP/IP layers and learn some important network communication techniques. Moving on, we’ll create and work with several Wireshark Filters. You will gain the skills to capture data using the various network protocol techniques, alongside analyzing and troubleshooting your network. By the end of the course, you will be confident to utilize Wireshark for your network analysis tasks effectively on a day-to-day basis.
TARGET AUDIENCE
• Network administrators • System administrators • Developers • Security analysts • Ethical hackers • Students • High-level understanding of networking technologies • No prior knowledge of Wireshark is required
KEY FEATURES
There is so much to learn in this course: • Capture and analyze HTTP, FTP, DNS, DHCP, ARP, SMTP, and ICMP traffic • Analyze and troubleshoot network problems before they cause any harm to your network • Deep packet inspection and analysis for famous protocols
WHAT WILL YOU LEARN (Course Goals)
• Troubleshoot and secure your network with Wireshark • Capture common communication protocols with Wireshark • Understand and interpret network protocols • Learn how to leverage Wireshark to perform ethical hacking
ABOUT THE AUTHOR
Mohamad Mahjoub is a prolific writer and a Cyber Security Expert with over 15 years’ experience which includes more than 5 years of experience working with Wireshark. He is a licensed and certified CISSP, ISO Risk Manager, CISA, PMP, and ITIL. He obtained his Master’s Degree in Computer Science from the Lebanese American University, where he graduated with magna cum laude. Mohamad’s accomplishments and research acumen are driving forces rooted in his professionalism. He is trained and certified to offer first-hand professional cyber security services to individuals and companies. Since 2012, Mohamad has delivered many IT courses to fresh graduates, IT professionals, senior and executive management, and business owners, all on top of his online multilingual cyber security courses that have more than 30,000 students enrolled worldwide. Currently, Mohamad works as CISO for a French multinational company, where he is responsible for the security of IT and OT operations throughout the Middle East area.
SUMMARY OF CONTENTS
• DAY ONE - We will introduce Wireshark and setup our environment • DAY TWO - We will explore Wireshark interface in details • DAY THREE - Learn to implement the various Filters of Wireshark including Display Filters and Capture Filters • DAY FOUR - Inspect packets for common network and transport layers protocols • DAY FIVE - Learn how to capture application layer protocol packets and perform deep packet inspection, along with detecting network issues
COURSE ROADMAP
DAY ONE – Introduction • Video 1: Overview • Video 2: Wireshark throughout history • Video 3: Setup Wireshark
DAY TWO - The Interface in Details • Video 1: File menu • Video 2: Export packets • Video 3: Edit menu • Video 4: View menu • Video 5: Toolbars • Video 6: Statistics menu • Video 7: Configure global preferences • Video 8: Configuration profiles
DAY THREE – Features You Should Know
• Video 1: How is traffic captured • Video 2: SPAN ports • Video 3: Capture options • Video 4: Capture filters • Video 5: Display filters • Video 6: Finding and marking packets • Video 7: Expressions and buttons
DAY FOUR – Communication Protocols • Video 1: 3-way handshake • Video 2: TCP deep-dive • Video 3: UDP deep-dive • Video 4: IPv4 deep-dive • Video 5: IPv6 deep-dive • Video 6: ICMPv4 deep-dive • Video 7: ICMPv6 deep-dive DAY FIVE - Analyze Common Protocols • Video 1: HTTP analysis • Video 2: FTP analysis • Video 3: DNS analysis • Video 4: DHCP analysis • Video 5: SMTP analysis • Video 6: ARP analysis • Video 7: Troubleshoot your network
SETUP AND INSTALLATION
Minimum Requirements • OS: Windows 10 Operating System • Processor: Core i5 (or equivalent) • Memory: 4GB RAM • Storage: 256 GB • Browser: Firefox, Chrome, or Edge Chromium, the latest version • Latest version of Wireshark (https://www.wireshark.org/download.html)
Course overview - 5
DAY ONE
DAY TWO
DAY THREE
DAY FOUR
DAY FIVE