[WORKSHOP - LAS VEGAS] Working with Wireshark; A short intro to Packet Analysis
Tell a Friend About This EventTell a Friend
 

9/14/2019
When: Saturday, September 14th
1 to 3 pm PST
Where: Reliaquest
United States
Contact:


Online registration is closed.
« Go to Upcoming Event List  

Working With Wireshark

Date/Time: Saturday,September 14th 1 - 3 PM PST

Introduction

Wireshark is a free open-source packet analyzer that is the number one tool for network analysis, troubleshooting, software and communications protocol development, and related education in networking. Knowing Wireshark gives you the ability to successfully apply for network administrator jobs and easily earn money as a freelancer online because Wireshark is an in demand skill!

Use this workshop to speed up your learning with Wireshark. We will show you exactly what you can do in Wireshark founded on explanations of basic network terminology, how to use Wireshark, reading a packet, the traffic, where to find the protocols, flags, and IP information, the difference between regular and malicious traffic/how to spot malicious traffic.

Level: 100 

Level 100 courses are designed for students with little to no previous IT Security experience, or no experience in the topic(s) being covered.  These courses are meant to be introductory level, or provide the training for entry level certifications.


Level 200 courses are designed for students with some security experience, looking to advance or learn in new topics.


Level 300 courses are designed to offer expert level courses and training on specific topics.  Typically, a general understanding and knowledge of the topic being presented is an expected prerequisite.  

**No one is excluded from attending a course at a level higher than their current experience.  However, the course will move at the pace designed for the level of the course.

Where do I fit? See full description here.

 

Topic Details:

It is amazing how much can be learned by analyzing network traffic!  This analysis is used for multiple purposes:  troubleshooting, monitoring, and forensics.  We'll start with the basics of traffic flow, i.e. OSI model and TCP/IP stack, and from there dive into the fun part -- looking at PCAPs to examine various security issues and distinguish between “normal” traffic and malicious activity.  

 

Objectives

What You Will Leave Knowing
  • Fundamentals of network traffic flow

  • Structure of network traffic

  • Common protocols

  • How to use Wireshark for traffic analysis


Bio:

Mari is the CEO and a founding board member for the Women's Society of Cyberjutsu (WSC), one of the fastest growing 501c3 non-profit cybersecurity communities dedicated to bringing more women and girls to cyber. WSC provides women with the resources and support required to enter and advance as a cybersecurity professional. Mari began her cyber career with Accenture where she excelled as a Network Engineer. With over 9 years of Information Technology, 8 of which are in cybersecurity, her experience spans network design, risk assessments, vulnerability assessments, incident response and policy development across government and commercial industries. She holds a variety of technical and management certifications (CISSP, GIAC, CCNA, etc) as well as a Bachelor’s degree in Computer Information Systems from Columbus State University and a Master of Science in Information Systems from Strayer University. Mari is currently a resident of Las Vegas working to secure the Gaming industry of the south west. She regularly contributes content to security blogs and training companies across the country. Outside of being a geek, Mari enjoys arts, puzzles, and legos! @marigalloway


Prerequisites

What You’re Expected to Know
  • Basic knowledge of protocols, ports, and services

 

Agenda:

Requirements:

  • Laptop with Wireshark installed, available from https://www.wireshark.org/download.html

  • Workshop materials provided before workshop


You can still participate in this workshop as an observer if you do not have a computer available. 

 

Remote and Male Associate Member Participation:

Once registered, you'll receive the meeting participation info by email the day before the workshop. Expect to join 15-30 minutes prior to test your technical configurations. It’s recommended that you have a 2nd monitor to view the screen-sharing.


Location:

Las Vegas Nevada