Mastering Wireshark 3

Video description

Step up your network analysis and network forensics skills with Wireshark

About This Video

  • Understand advanced TCP/IP network protocol mechanics.
  • Use Wireshark to help troubleshoot dropped packets, latency issues, and malicious activity on your network.
  • Take advantage of PyShark scripts to manage network analysis and perform exploratory data analysis at scale.
  • Use network forensics for security and pre-emptive contingency-planning programming to include remote evidence collection, investigation, analysis, and detailed forensic reporting.

In Detail

Mastering Wireshark 3 (2nd Edition) will help you gain expertise in securing your network. As you progress through the course, you will discover different and important ways to create, use, capture, and display filters.

Learn to master Wireshark's features, analyze different layers of your network protocol, and search for abnormality in your network traffic. The course focuses on packet analysis for security tasks, command-line utilities, and tools that manage trace files.

You will delve into analyzing applications aimed primarily at web browsing; master commands that can also be set up and configured to run from the command prompt; and learn to use the new feature in Cisco routers and switches to capture packets directly from devices and mirror (SPAN) ports. Lastly, you'll learn to expand upon the capabilities and functions of Wireshark plugins and APIs and build on your Python skills by using PyShark to modify how Wireshark captures and filters packets.

By the end of this course, you'll have learned to customize Wireshark in-depth for network security analysis using commonly used protocols and to configure it effectively for troubleshooting and daily monitoring purposes.

Publisher resources

Download Example Code

Table of contents

  1. Chapter 1 : Customization of Wireshark
    1. The Course Overview 00:04:57
    2. Installation and Customization 00:04:26
    3. Preferences and Profiles 00:08:24
    4. Overview of GUI 00:11:28
    5. Colorizing Traffic 00:07:58
    6. Wireshark Requirements and Platforms 00:05:45
  2. Chapter 2 : Using Wireshark for Capturing and Examining Traffic
    1. Sources of Packet Captures 00:12:22
    2. Capturing Packets 00:07:04
    3. View Settings and Saving Packet Captures 00:10:54
    4. Capture Filters 00:07:29
    5. Time Values and Summaries 00:06:28
    6. Trace File Statistics 00:04:00
    7. Expert System Usage 00:02:46
  3. Chapter 3 : Examining and Analyzing Traffic Analysis
    1. Display Filters 00:02:26
    2. Display Filter Macros 00:06:10
    3. Display Filter Expression 00:03:14
    4. Conversation Filter 00:02:21
    5. Exporting Captures 00:05:50
  4. Chapter 4 : Analyzing Network Protocols
    1. Follow Protocol Streams 00:04:10
    2. Reviewing Statistics 00:04:25
    3. Telephony and Wireless 00:04:27
    4. UDP Overview and Analysis 00:04:09
    5. TCP Overview and Analysis 00:04:10
    6. Graph I/O Rates and TCP Trends 00:04:04
  5. Chapter 5 : Analyzing Application Protocols
    1. DHCP Analysis 00:03:48
    2. HTTP Analysis 00:03:23
    3. FTP Analysis 00:04:10
    4. VoIP Analysis 00:04:39
    5. Sample Traffic Captures 00:03:06
  6. Chapter 6 : Wireshark Command-Line Tools
    1. Why Use the Command-Line 00:03:59
    2. Wireshark from Command-Line 00:02:42
    3. Running TShark 00:07:06
    4. Running Dumpcap 00:05:58
    5. Running TShark with PowerShell 00:04:24
  7. Chapter 7 : Expanding and Troubleshooting Wireshark
    1. Choosing What to Capture 00:03:23
    2. Capture Scenario 00:02:29
    3. Analyzing Scenario Traffic 00:04:16
    4. Capturing Options 00:03:05
    5. Optional Plugins 00:04:48
  8. Chapter 8 : Expanding Wireshark
    1. Using Mirror (SPAN) Ports on Cisco Devices 00:04:38
    2. Prerequisites for Cisco Packet Capture 00:03:21
    3. Using Cisco Packet Capture 00:04:36
    4. Wireshark Plugins and API 00:03:10
    5. Analyzing Networking Traffic Using the PyShark Library 00:05:27

Product information

  • Title: Mastering Wireshark 3
  • Author(s): Rick Bodnar
  • Release date: June 2020
  • Publisher(s): Packt Publishing
  • ISBN: 9781839213953