O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Learning Path: Wireshark 2 - The Advanced Network Analysis Tool

Video Description

Analyze your organization’s traffic using Wireshark

In Detail

Wireshark is a open source software that works as a packet analyzer. It basically lets you control, capture, and dynamically browse the traffic running on the organization's network. The user-friendly feature of Wireshark makes it one of the most popular tools for network analysis.

This Learning Path will brush through the basic networking concepts, and then introduce you to the user interface of Wireshark. Later it moves on to the different ways to create and use the capture and display filters in Wireshark. Also, you’ll be mastering its features, analyzing different layers of the network protocol, and looking for any anomalies.

By the end of this Learning Path, you will be able to use Wireshark for network security analysis and configure it for troubleshooting purposes.

Prerequisites: A basic knowledge of the concepts in networking is required.

Resources: Code downloads and errata:

  • Network Analysis Using Wireshark 2

  • Mastering Wireshark 2

  • PATH PRODUCTS

    This path navigates across the following products (in sequential order):

  • Network Analysis Using Wireshark 2 (4h 16m)

  • Mastering Wireshark 2 (5h 23m)

  • Table of Contents

    1. Chapter 1 : Network Analysis Using Wireshark 2
      1. The Course Overview 00:03:54
      2. Protocol Analyzers 00:09:27
      3. Wireshark – Data Input 00:11:53
      4. Wireshark – Initial Settings 00:12:43
      5. Wireshark – GUI Interface 00:09:32
      6. Protocol Stack – Basics 00:07:29
      7. Protocol Stack – Basics (continued) 00:10:53
      8. Protocol Stack in Wireshark 00:10:17
      9. Display Filters 00:13:10
      10. Display Filters (Continued) 00:13:29
      11. Display Filters – Final Tuning 00:07:44
      12. Capture Filters 00:12:04
      13. Wireshark – Display Customizing 00:18:25
      14. Saving Traces 00:11:55
      15. Splitting/Merging Files 00:17:55
      16. Name Resolution 00:11:48
      17. Graphical Analysis 00:09:32
      18. Related Packets 00:04:21
      19. Useful Statistics 00:08:38
      20. Useful Statistics (Continued) 00:08:14
      21. If Wireshark Doesn't Decode! 00:06:58
      22. Troubleshooting Overview 00:05:46
      23. Issues with a Particular Service 00:12:19
      24. Low Performance 00:08:48
      25. Additional Help with Security 00:08:53
    2. Chapter 2 : Mastering Wireshark 2
      1. The Course Overview 00:01:50
      2. Installing Wireshark on Windows 00:03:38
      3. Installing Wireshark on Mac and Linux 00:05:08
      4. What’s New in Wireshark 2? 00:03:30
      5. Capturing Traffic 00:07:51
      6. Saving and Exporting Packets 00:07:47
      7. Annotating and Printing Packets 00:08:36
      8. Remote Capture Setup 00:05:17
      9. Remote Capture Usage 00:02:53
      10. BPF Syntax 00:04:51
      11. Capture Filters 00:03:17
      12. Display Filters 00:10:14
      13. Follow Streams 00:06:07
      14. Advanced Filtering 00:08:44
      15. Preferences 00:10:46
      16. Profiles 00:05:24
      17. Colorizing Traffic 00:09:51
      18. Colorizing Traffic (Continued) 00:06:11
      19. TCP/IP Overview 00:08:31
      20. Time Values and Summaries 00:05:21
      21. Trace File Statistics 00:07:49
      22. Expert System Usage 00:04:26
      23. DNS Analysis 00:09:45
      24. ARP Analysis 00:07:14
      25. IPv4/6 Analysis 00:07:16
      26. ICMP Analysis 00:08:40
      27. UDP Analysis 00:05:08
      28. TCP Analysis I 00:10:41
      29. TCP Analysis II 00:06:22
      30. Graph I/O Rates and TCP Trends 00:10:33
      31. DHCP Analysis 00:09:40
      32. HTTP Analysis I 00:10:26
      33. HTTP Analysis II 00:07:07
      34. FTP Analysis 00:10:12
      35. Email Analysis 00:11:26
      36. 802.11 Analysis 00:11:40
      37. VoIP Analysis 00:11:43
      38. VoIP Playback 00:06:00
      39. Running Wireshark from Command Line 00:07:51
      40. Running Tshark 00:04:13
      41. Running tcpdump 00:06:49
      42. Running Dumpcap 00:04:05
      43. Wireshark Plugins 00:05:15
      44. Determining Where to Capture 00:02:18
      45. Capturing Scenario Traffic 00:04:08
      46. Diagnosing Scenario Traffic 00:07:23