Packet Analysis for Security Practitioners 1-Day Workshop - ST. LOUIS
It’s easy to fire up Wireshark and capture packets…but making sense of them is another story. There’s nothing more frustrating than knowing the answers you need lie in a mountain of data that you don’t know how to sift through. That’s why I wrote the first Practical Packet Analysis book a decade ago. That book is now in its third edition, has been translated into several languages, and has sold tens of thousands of copies. Now, I’m excited to bring my live packet analysis workshop to St. Louis, MO. The one-day Packet Analysis Workshop is the best way to get hands-on visual experience capturing, dissecting, and making sense of packets. You'll learn: How to use color-coded packet maps to navigate and dissect protocols. Wireshark’s analysis features, including how to create graphs, traverse protocol hierarchy charts, and generate stats that are simple AND useful. My tips for customizing your analysis environment by using features like Wireshark profiles, custom columns, and individual packet color coding. Techniques for extracting complete files from network communication — even custom malware command and control. The basic stimulus and response of common protocols — and how attackers use this to their advantage. Filtering techniques using Wireshark display filters and BPF capture filters so you can quickly eliminate noise and get to the data you need How malware commonly spreads and communicates over the network The ability to understand packets is a critical skill for SOC analysts, network engineers, system administrators, forensic investigators, reverse engineers, and programmers alike. You'll learn some of these skills in this workshop. Course Format This workshop is delivered live in St. Louis during an all day (9A-4:30P) session. You’ll participate in demonstrations and hands-on activities that help you become more comfortable dissecting packets. Course Outline (subject to change based on available time): The Life of a Packet: Encapsulation and Decapsulation Tapping into the Wire: Where to capture packets Packet Maps: Dissecting packets like a protocol analyzer Wireshark: Common analysis techniques and customization Common Protocols: Normal and abnormal stimulus and response Hands-On Security Scenarios: Malware communications, session hijacking, and more The course is being held the day before BSides St. Louis. If you're coming to town for the conferences, consider coming a day early for the workshop. About the Instructor Chris Sanders is an information security author, trainer, and researcher originally from Mayfield, KY. He is the founder of Applied Network Defense, a company focused on delivering high quality, accessible information security training. In previous roles, Chris worked with the US Department of Defense, InGuardians, and Mandiant to build security operation centers and train practitioners focused on defending defense, government, and Fortune 500 networks. Chris is also the founder and director of the Rural Technology Fund, a non-profit that donates scholarships and equipment to public schools to further technical education in rural and high poverty areas. The RTF has placed computer science education resources into the hands of over 50,000 students. Chris has authored several books and articles, including the international bestseller “Practical Packet Analysis” from No Starch Press, currently in its third edition and in seven languages, and “Applied Network Security Monitoring” from Syngress. His current research focus is the intersection of cyber defense and cognitive psychology to enhance the field of security investigative technique through a better understanding of the human thought and learning processes. Chris blogs at http://www.chrissanders.org. You can learn more about Applied Network Defense at http://www.networkdefense.co and the RTF at http://www.ruraltechfund.org. FAQ What do I get? All students receive the following: One day of classroom instruction with Chris Sanders A collection of
12545 Fee Fee Rd.
St. Louis, MO 63146
More Event Ideas
What can we do for you?
Thank you for your input. Please fill out the form below and provide as much information as possible about updates to this event or venue.