Overview
This guided project, Wireshark for Beginners TCP/IP Protocol Fundamentals, will help a beginning security analyst who is looking to use Wireshark to analyze Transmission Control Protocol and Internet Protocol (TCP/IP ) network packets through the use of HTTP and HTTPS requests in order to understand the protocol. In this 1.5-hour long project-based course, you will learn how to capture and save packets on a physical wired network, create a display filter to observe TCP/IP packets on a certain port, observe HTTP and HTTPS TCP/IP protocol, and identify the TCP/IP protocol stack.
To achieve this, you will be taking on the role of helping an IT manager who wants to monitor web traffic on the server in order to verify websites visited are exhibiting proper TCP/IP behavior.
In order to be successful in this project, you will need some basic Linux Command Line Usage, specifically running commands from the Linux command line, and some exposure to Computer Networks, specifically general knowledge of how a client browser sends HTTP requests to a web server.
Syllabus
- Project Overview
- In this guided project, you will use Wireshark to learn how to capture and save packets on a physical wired network, create a display filter to observe TCP/IP packets on a certain port, observe HTTP and HTTPS TCP/IP protocol, and identify the TCP/IP protocol stack.
Taught by
David Dalsveen