CompTIA

Learn Wireshark

(WRSHK.AJ1) / ISBN : 978-1-64459-364-6
Lessons
Lab
TestPrep
175 Reviews
Get A Free Trial

About This Course

uCertify's course Learn Wireshark is a complete Wireshark tutorial that covers the following concepts thoroughly and provides a hands-on experience of Wireshark: Traffic Analysis, Exploring the Wireshark Interface, Outlining the OSI Model, and so on. This course is for network administrators, security analysts, students, teachers, and anyone interested in learning about packet analysis using Wireshark.

Skills You’ll Get

Download Course Outline

1

Preface

  • Who this course is for?
  • What does this course cover?
  • To get the most out of this course
2

Appreciating Traffic Analysis

  • Reviewing packet analysis
  • Recognizing who benefits from using packet analysis
  • Identifying where to use packet analysis
  • Outlining when to use packet analysis
  • Getting to know Wireshark
  • Summary
3

Using Wireshark NG

  • Discovering the beginnings of today's Wireshark
  • Examining the Wireshark interface
  • Understanding the phases of packet analysis
  • Using command-line tools
  • Summary
4

Installing Wireshark on a PC or macOS

  • Discovering support for different OS
  • Comparing different capture engines
  • Performing a standard Windows installation
  • Reviewing the resources available at Wireshark.org
  • Summary
5

Exploring the Wireshark Interface

  • Understanding the Wireshark welcome screen
  • Exploring the File menu
  • Discovering the Edit menu
  • Exploring the View menu
  • Summary
6

Tapping into the Data Stream

  • Reviewing the network architecture
  • Learning various capture methods
  • Tapping into the stream
  • Realizing the importance of baselining
  • Summary
7

Personalizing the Interface

  • Personalizing the layout and general appearance
  • Creating a tailored configuration profile
  • Adjusting columns, font, and colors
  • Adding comments
  • Modifying complex expressions
  • Summary
8

Using Display and Capture Filters

  • Filtering network traffic
  • Comprehending display filters
  • Creating capture filters
  • Understanding the expression builder
  • Discovering shortcuts and handy filters
  • Summary
9

Outlining the OSI Model

  • Comprehending the OSI model
  • Discovering the purpose, protocols, and PDUs
  • Exploring the encapsulation process
  • Demonstrating frame formation in Wireshark
  • Summary
10

Decoding TCP and UDP

  • Reviewing the purpose of the transport layer
  • Describing TCP
  • Examining the eleven-field TCP header
  • Understanding UDP
  • Discovering the four-field UDP header
  • Summary
11

Managing TCP Connections

  • Dissecting the three-way handshake
  • Learning TCP options
  • Understanding TCP protocol preferences
  • Tearing down a connection
  • Summary
12

Analyzing IPv4 and IPv6

  • Understanding the purpose of the IP
  • Outlining IPv4
  • Exploring IPv6
  • Editing protocol preferences
  • Discovering tunneling protocols
  • Summary
13

Discovering ICMP

  • Understanding the purpose of ICMP
  • Dissecting ICMPv4 and ICMPv6
  • Sending ICMP messages
  • Evaluating type and code values
  • Configuring firewall rules
  • Summary
14

Understanding ARP

  • Understanding the role and purpose of ARP
  • Exploring ARP headers and fields
  • Examining different types of ARP
  • Analyzing ARP attacks
  • Summary
15

Troubleshooting Latency Issues

  • Analyzing latency issues
  • Understanding the coloring rules
  • Exploring the Intelligent Scrollbar
  • Discovering the expert system
  • Summary
16

Subsetting, Saving, and Exporting Captures

  • Discovering ways to subset traffic
  • Understanding options to save a file
  • Recognizing ways to export components
  • Identifying why and how to add comments
  • Summary
17

Using CloudShark for Packet Analysis

  • Diving into an overview of CS
  • Sharing captures in CS
  • Outlining the various filters and graphs
  • Evaluating the different analysis tools
  • Discovering where to find sample captures
  • Summary

1

Using Wireshark NG

  • Splitting a File and Work with Filtered File Sets
  • Using Tshark to Extract HTTP GET Requests
  • Using Tshark to Capture File Sets with an Autostop Condition
2

Exploring the Wireshark Interface

  • Capturing and Classifying Background Traffic
  • Opening a Network Monitor .cap File
3

Tapping into the Data Stream

  • Capturing File Sets
  • Using a Ring Buffer to Conserve Drive Space
4

Personalizing the Interface

  • Adding a Column to Display Coloring Rules in Use
  • Adding the HTTP Host Field as a Column
5

Using Display and Capture Filters

  • Using a Default Filter as a Seed for a New Filter
  • Creating, Saving, and Applying a DNS Capture Filter
  • Applying Filters to Locate a Set of Keywords in a Trace File
  • Exporting a Single TCP Conversation
  • Applying Filter on HTTP 404 Responses
  • Filtering Traffic to or from Online Backup Subnets
  • Filtering HTTP Traffic the Right Way
6

Decoding TCP and UDP

  • Locating TCP Connection Attempts to a Client
7

Managing TCP Connections

  • Using Packets to Build a Picture of a Network
8

Understanding ARP

  • Investigating an arp Cache
9

Troubleshooting Latency Issues

  • Building a Coloring Rule to Highlight FTP User Names, Passwords, and More
10

Subsetting, Saving, and Exporting Captures

  • Exporting Malicious Redirection Packet Comments
  • Reading Analysis Notes in a Malicious Redirection Trace File

Related Courses

All Course
Complete A+ Guide to IT Hardware and Software (1101/1102)
220-1101-1102-SCH.AB1 - Complete A+ Guide to IT Hardware and Software (1101/1102)
Lessons Lab TestPrep AI Tutor
Complete A+ Guide to IT Hardware and Software (1101/1102)

Complete A+ Guide to IT Hardware and Software (1101/1102)

ISBN: 9781644593844
220-1101-1102-SCH.AB1
Try
CompTIA A+ Core 1 (220-1101) and Core 2 (220-1102)
220-1101-1102.AB1 - CompTIA A+ Core 1 (220-1101) and Core 2 (220-1102)
Lessons Lab TestPrep AI Tutor Instructor Led
CompTIA A+ Core 1 (220-1101) and Core 2 (220-1102)

CompTIA A+ Core 1 (220-1101) and Core 2 (220-1102)

ISBN: 9781644593967
220-1101-1102.AB1
Try
CompTIA A+ (220-1101 & 220-1102)
220-1101-1102.AE1 - CompTIA A+ (220-1101 & 220-1102)
Lessons Lab TestPrep AI Tutor Instructor Led
CompTIA A+ (220-1101 & 220-1102)

CompTIA A+ (220-1101 & 220-1102)

ISBN: 9781644593479
220-1101-1102.AE1
Try
CompTIA A+ (220-1101 & 220-1102)
220-1101-1102.AE2 - CompTIA A+ (220-1101 & 220-1102)
Lessons Lab TestPrep AI Tutor Instructor Led
CompTIA A+ (220-1101 & 220-1102)

CompTIA A+ (220-1101 & 220-1102)

ISBN: 9781644595282
220-1101-1102.AE2
Try
CompTIA A+ (220-1102)
220-1102.AE2 - CompTIA A+ (220-1102)
Lessons Lab TestPrep AI Tutor Instructor Led
CompTIA A+ (220-1102)

CompTIA A+ (220-1102)

ISBN: 9781644595329
220-1102.AE2
Try
CASP+ CompTIA Advanced Security Practitioner (CAS-004)
CAS-004.AE1 - CASP+ CompTIA Advanced Security Practitioner (CAS-004)
Lessons Lab TestPrep AI Tutor Instructor Led
CASP+ CompTIA Advanced Security Practitioner (CAS-004)

CASP+ CompTIA Advanced Security Practitioner (CAS-004)

ISBN: 9781644593929
CAS-004.AE1
Try
CompTIA Cloud Essentials (CLO-002)
CLO-002.AE2 - CompTIA Cloud Essentials (CLO-002)
Lessons Lab TestPrep AI Tutor Instructor Led
CompTIA Cloud Essentials (CLO-002)

CompTIA Cloud Essentials (CLO-002)

ISBN: 9781644595305
CLO-002.AE2
Try
scroll to top