It’s easy to fire up Wireshark and capture some packets…but making sense of them is another story. There’s nothing more frustrating than knowing the answers you need lie in a mountain of data that you don’t know how to sift through. That’s why I wrote the first Practical Packet Analysis book a decade ago. That book is now in its third edition, has been translated to several languages, and has sold over 25,000 copies. Now, I’m excited to create an online course based on the book. The Practical Packet Analysis online course is the best way to get hands on visual experience capturing, dissecting, and making sense of packets.
Practical Packet Analysis takes a fundamental approach by exploring the concepts you need to know without all the fluff that is normally associated with learning about network protocols. Everything you’ll learn is something you can directly apply to the job you have, or the job you want. The ability to understand packets is a critical skill for network engineers, system administrators, security analysts, forensic investigators, and programmers alike. This class will help you build those skills through a series of expert-led lectures, scenario-based demonstrations, and hands-on lab exercises.
The Practical Packet Analysis course is perfect for beginners to intermediate analysts, but seasoned pros will probably learn a few useful techniques too. Whether you’ve never capture packets before or you have and you struggle to manipulate them to effectively achieve your goals, this course will help you get over the hump. You’ll learn:
- How networking works at the packet level.
- How to interpret packet data at a fundamental level in hexadecimal or binary.
- Basic and advanced analysis features of Wireshark.
- How to analyze packets on the command line with tshark and tcpdump.
- Reducing capture files with Berkeley packet filters and Wireshark display filters.
- Techniques for capturing packets to make sure you’re collecting the right data.
- How to interpret common network and transport layer protocols like IPv4, IPv6, ICMP, TCP, and UDP.
- How to interpret common application layer protocols like HTTP, DNS, SMTP, and more.
- Normal and abnormal stimulus and response patterns for common protocols.
- Troubleshooting connectivity issues at the packet level.
- Techniques for carving files from packet streams.
- Understanding network latency and how to locate the source.
- How common network attacks are seen by an intrusion detection systems.
- Techniques for investigating security alerts using packet data.
- How malware communicates on the network.
The Practical Packet Analysis course is delivered completely online using recorded video lectures that you can go through at your convenience. It is modeled like a college course and consists of lectures that overview critical concepts, demonstrations where I walk through packet captures, and lab exercises when you are given packet captures to work through on your own to practice the concepts you’ve learned. There is also a a discussion forum where you can ask questions and share tips and tricks with other students. The course includes over 40 hours of video lecture content, and can be completed at whatever pace is comfortable for you.
This course has no prerequisites, but a basic understanding of networking is helpful. It is delivered in English.
Introductory pricing for the course is $797 for a single user license. Bulk discounts are available for organizations that want to purchase multiple licenses (please contact me to discuss payment and pricing). A portion of the purchase price will go to support multiple charities including the Rural Technology Fund, the Against Malaria Foundation, and others.
- 6 month access to course video lectures and lab exercises
- A Certification of Course Completion
- Continuing Education Credits (CPEs/CEUs)
Sign Up Now!
This course is only taught periodically and space is limited.
Summer 2017 Session – Begins June 12 (Registration Deadline 6/9)