Contact Us

Wireshark Level One Certification

Description:

The Wireshark Level One Certification signifies that the collaborator has a foundational understanding of network packet analysis using Wireshark. This level covers the basics of Wireshark operation, fundamental network troubleshooting techniques, and an introduction to advanced concepts like the QUIC protocol and SolarWinds breach analysis. Collaborators are equipped with essential skills to analyze and interpret network data effectively.

joy-girl

Skills Summary for Wireshark Level One

Basic Wireshark Navigation and Setup:

  • Understanding the interface and basic features of Wireshark.
  • Setting up Wireshark for initial use and basic packet capture.

Network Troubleshooting Fundamentals:

  • Using hop count (TTL) and IP fragment ID for troubleshooting.
  • Analyzing packet loss and retransmissions to diagnose network issues.

Packet Analysis Techniques:

  • Applying filters to isolate specific TCP streams and other traffic.
  • Using ‘Cumulative Bytes’ for throughput analysis.
  • Setting time references for session analysis.

Advanced Protocol Understanding:

  • Basics of the QUIC protocol and its impact on network traffic.
  • Understanding TCP offload engine (TOE) and its implications.

Security and Performance Monitoring:

  • Setting up SSLKEYLOGFILE for encrypted traffic analysis.
  • Identifying the impact of QUIC on firewalls and data encryption.

Practical Application:

  • Capturing packets without installing Wireshark on a workstation.
  • Identifying the manufacturer of a network interface card.

Network Visualization:

  • Using visualization techniques for better understanding network issues.

SolarWinds Breach Analysis:

  • Understanding the initial actions of rogue code in the SolarWinds breach.
  • Lessons learned and critical steps for network security.

Wireshark Command Proficiency:

  • Using key commands and functions like ‘apply as filter’ and ‘Statistics -> Conversations.’
  • Leveraging tools like Microsoft Netmon alongside Wireshark.

Key Network Concepts:

  • Understanding TCP window sizes and their significance.
  • The role of hop count and IP fragment ID in packet analysis.
Wireshark Level Two Certification
Wireshark Level Three Certification
Wireshark Badge