Deep Dive in Packet Analysis - Using Wireshark and Network Miner

CompTIA Security+ (SY601) Domain:
Domain 3.0: Implementation

CompTIA Security+ (SY601) Objective Mapping:
Objective 3.3: Given a scenario, implement secure network designs

Overview

Packet Analysis is the process of sifting through network traffic and finding relevant artifacts. Analyzing network traffic is critical to the protection of information systems.

OUTCOMES:

In this lab, you will learn to:

Use Wireshark to view protocol traffic.
View protocols using Wireshark.
Parse objects from network traffic.
Use NetworkMiner.

Courses

Information Security Fundamentals

Key terms and descriptions

FTP

File Transfer Protocol is a clear text protocol used to transfer files between systems.

TELNET

TELNET is a clear text protocol that is used to remotely administer a machine.

ping

uses internet control message protocol to check for connectivity between two systems

SSH

Secure shell is used to securely transfer files between two systems.

DNS

The Domain Name System converts IP addresses to names and names to IP addresses.