Course Description
Wireshark is the world’s leading open-source network traffic analyzer and an essential tool for any security professional or systems administrator. This free software lets you analyze network traffic in real-time, and is often claimed to be the best tool for troubleshooting issues on your network. It has a broad set of features and runs on a variety of platforms, including Windows, OS X, and Linux. With more than 500,000 downloads per month, the Wireshark network analyzer is quickly becoming the industry standard.
Wireshark is a powerful tool that requires a sound knowledge of networking basics. For most modern enterprises, that means understanding the TCP/IP stack, how to read and interpret packet headers, and how routing, port forwarding, and DHCP work, for example.
In this hands-on course, you will receive in-depth training on Wireshark©and TCP/IP communications analysis. You will learn to use Wireshark to identify the most common causes of performance problems in TCP/IP communications.
Program Objectives
After the completion of the course, you would be able to:
- Place the analyzer properly for traffic capture on a variety of network types
- Capture packets on wired and wireless networks
- Configure Wireshark for best performance and non-intrusive analysis
- Navigate through, split, and work with large traffic files
- Use time values to identify network performance problems
- Create statistical charts and graphs to pinpoint performance issues
- Filter out traffic for more efficient troubleshooting and analysis
- Customize Wireshark coloring to focus on network problems faster
- Use Wireshark’s Expert System to understand various traffic problems
- Use the TCP/IP Resolution Flowchart to identify possible communication faults
- Analyze normal/abnormal Domain Name System (DNS) traffic
- Analyze normal/abnormal Address Resolution Protocol (ARP) traffic
- Analyze normal/abnormal Internet Protocol v4 (IPv4) traffic
- Analyze normal/abnormal Internet Control Messaging Protocol (ICMP)traffic
- Analyze normal/abnormal User Datagram Protocol (UDP) traffic
- Analyze normal/abnormal Transmission Control Protocol (TCP) traffic
- Analyze normal/abnormal Hypertext Transport Protocol (HTTP/HTTPS) traffic
Prerequisites
Students attending CertFirst Wireshark Certcamp should already have a basic working, user-level knowledge of an operating system such as Linux, Windows, or Mac OS as well as some understanding or exposure to the Wireshark tool. Candidates who don’t have any exposure should speak with CertFirst Representative to have a special complimentary 1 on 1 session for a few hours prior to starting the training program.
- Domains
- Syllabus Download
- Quizzes 0
- Duration 40 hours
- Skill level All levels
- Students 494
- Certificate No
- Assessments Yes