Introduction to Wireshark (3 part class)

Repeats every day until Thu Nov 12 2020.
Tue, Nov 10, 2020, 9:00 am to 12:00 pm
Wed, Nov 11, 2020, 9:00 am to 12:00 pm
Thu, Nov 12, 2020, 9:00 am to 12:00 pm
Location: 
Audience: 
Students, Faculty, Staff
Speaker(s): 
Sponsor(s): 
Information Security Office

(InfoSec 301) - Wireshark is a free open-source packet analyzer used
for network analysis, troubleshooting, software and communications protocol development,
and related education in networking. Join us as we explore the software and offer hands-on
practice in packet analysis with Wireshark.

Please note that this course is three half-day sessions, 9 am-12 pm from November 10th - 12th, and has prerequisites.

Prerequisite: Knowledge of basic networking and a good understanding of TCP/IP.

Recommended Reference Material: https://learning.oreilly.com/library/view/practical-packet-analysis/9781492020356/

Hardware Requirements: Laptop/Desktop with latest version of Wireshark installed

Session 1

  1. How Wireshark captures traffic

  2. Wireshark User Interface

  3. Packets/Frames/Segments overview

  4. Lab: Working with Captured Packets

Session 2

  1. Common Upper-layer Protocols

  2. Common Lower-Layer Protocols

  3. Advanced Wireshark Features

  4. Lab: Protocol Analysis

Session 3

  1. Real-World Scenarios

  2. Live packet captures

  3. Troubleshooting

  4. Wireless Packet Analysis

About InfoSec class levels:

InfoSec 100-level classes: Classes with no prerequisites and typically define basic concepts or terminology.

InfoSec 200-level classes: Classes may sometimes have prerequisites and typically define intermediate-level concepts or terminology.

InfoSec 300-level classes: Classes usually have prerequisites and cover intermediate to high-level concepts or terminology.