All Access Pass Online Training Portal

Enter your email address below to receive All Access Pass Event Notifications.

  • New Course: Wireshark 101 Labs (Second Edition) - Wireshark 2 is stable enough to start updating all the AAP content to this version. No more GTK+ interface, folks - we're now all Qt (pronounced "cute"). This 4-hour course (4 CPE credits) has the results of the 46 labs covered in the Second Edition of the Wireshark 101 book. The book is now available on shelves/Amazon/Kindle!
  • New Course (4 CPEs): Wireshark 101: Essential Skills for Network Analysis - Section 0 Explore Key Wireshark Elements and Traffic Flows Labs - Instructor: Laura Chappell, Chappell University/Wireshark University
    This is the first course in a set of courses focusing on essential network analysis skills. Each of these courses are based on the best-selling Wireshark 101: Essential Skills for Network Analysts (2nd Edition) which focuses on Wireshark v2 functions.
    This first course provides an overview of Wireshark functionality, features, resources, and uses. This is a recommended starting point for the Wireshark 101 series of courses.
    This course contains the following sections:
    •    Section Introduction [05:40}
    •    Wireshark Capabilities and Tour [17:13]
    •    Wireshark Versions and Resources (wireshark.org) [19:45]
    •    Wireshark Capture Elements [12:39]
    •    Demo: Analysis Session (Latency Time and Application Error) [11:40]
    •    Frames vs. Packets vs. Segments [05:36]
    •    Follow a Packet Through a Network [12:16]
    •    Access Resources from Inside Wireshark [11:14]
    •    Analyze Traffic Using the Main Wireshark View [30:13]
    •    Lab 1  Use Packets to Build a Picture of the Network [12:26]
    •    Analyze Typical Network Traffic [18:51]
    •    Lab 2  Capture and Classify Your Own Background Traffic [03:53]
    •    Open Trace Files Captured with Other Tools [04:44]
    •    Lab 3  Open a Network Monitor .cap Trace File [02:45]
    •    CH0  Challenge 0calculator [06:57]
  • New Course (3.5 CPEs): Wireshark 101: Essential Skills for Network Analysis - Section 1 Customize Wireshark Views and Settings - Instructor: Laura Chappell, Chappell University/Wireshark University
    This is the second course in a set of courses focusing on essential network analysis skills. Each of these courses are based on the best-selling Wireshark 101: Essential Skills for Network Analysts (2nd Edition) which focuses on Wireshark v2 functions.
    This second course delves into Wireshark customization for a more efficient analysis process. This section contains the important Lab 5 which is referenced throughout the Wireshark 101 curriculum.
    This course contains the following sections:
    •    Section Introduction [05:50]
    •    Add, Edit, Export Columns [10:27]
    •    Lab 4 Add the HTTP Host Field as a Column [04:56]
    •    Dissect the Wireshark Dissectors [08:09]
    •    Analyze Traffic that Uses Non-Standard Ports [15:29]
    •    Define Preferences Settings [18:39]
    •    Lab 5 Set Key Wireshark Preferences (IMPORTANT LAB) [09:46]
    •    Creating Profiles [12:49]
    •    Lab 6 Create a New Profile Based on the Default Profile [04:51]
    •    Locate Key Configuration Files [06:06]
    •    Lab 7 Import a DNS/HTTP Errors Profile [05:28]
    •    Configure Time Column to Spot Delays [25:50]
    •    Lab 8 Spot Path and Server Latency Problems [09:18]
    •    Customize Wireshark Views and Settings Challenge 1 [05:09]
  • New Course: Network Forensics with Wireshark - This 8-hour course (8 CPE credits) covers the essentials (network forensics methodology, essential Wireshark skills, locating the suspicious traffic) and includes the analysis of numerous malicious trace files from Laura's collection and from malware-traffic-analysis.net (Brad Duncan). Sections of interest include:
    • Methodology and Wireshark Use (User Alerts/IDS Alerts)
    • String-matching capture filters
    • Network Forensics Profile (available for download in the course docs section)
    • Using the Expert to Detect Anomalies
    • Carving and Object Reassembly
    • GeoIP Mapping
    • Regex Filters
    • Anomaly Locations
    • Redirections

New Course Formats and Video Previews

  • We've moved to a new format starting with Course number CS65. The new MP4 format is compatible on multiple browsers on various operating systems including Windows, Mac, and Linux. MP4 delivers high quality video at smaller file sizes. In addition, the new format offers full-screen capability. Simply click the full-screen icon on the control bar to view the video in maximized format. .

  • Network Forensics with Wireshark (Wireshark v2) - In August 2016, Laura offered a live 4-hour "Network Forensics with Wireshark" course to the AAP members. Rather than record the live event, she bulked up the content with extra materials (such as Methodology and Wireshark Use, String-Matching Capture Filters, and use of Snort and Suricata logs) to build out a full 8-hour course. Learn to correlate IDS logs with traffic captures and build a network forensics profile to streamline Wireshark for your forensic investigations.
  • Wireshark Display Filters Tips and Tricks (Wireshark Functionality and Tips Category) [CPE: 1.0] Learn new display filtering techniques including filtering based on fields /strings, using the dreaded "!=" operator, and building offset (and bit-level) filters. This course includes two Notepad++ macros that you can use to convert coloring rules to Filter Expression buttons and convert Filter Expression buttons to coloring rules.
  • Regular Expressions (Regex) Primer (Wireshark Functionality and Tips) [CPE: 2.0] Learn to use Regular Expressions (Regex) with your Wireshark display filters to detect key words, decimal and hex values, email addresses, IP addresses and more. In addition. Laura covers the numerous Wireshark PCRE Regex "issues" and work-arounds.
  • 10 Essential Wireshark Skills ("Wireshark Functionality and Tips" Category) [CPE: 1.5] Follow along as Laura demonstrates 10 cool skills including host name extraction, key word searching with Regex, export to .csv format, TCP delta graphing, filter expression buttons and profile importing.
  • [To be replaced soon with Wireshark v2 version] CS48: Wireshark Jumpstart (Replaces CS41) ("Wireshark Functionality and Tips" Category) [CPE: 1.5] If you joined Gerald Combs and Laura Chappell for this event, you know it was packed with Wireshark tips and techniques. Laura recorded all the Jumpstart demonstrations for this course. The Event Notes 60-page booklet is in the course "Documents" section.
  • [Wireshark v1 and Wireshark v2 Editions Now Available] Lab Solutions - Wireshark 101: Essential Skills for Network Analysis ("Book Courses" Category) [CPE: 3] 46 videos - over 3 hours of training - covering the solutions to all labs in the Wireshark 101 book/ebook/instructor-led course. The Wireshark 101 book is available in paperback/ebook format through Amazon. Wireshark 101: Essential Skills for Network Analysis - Second Edition ("Book Courses" Category) [CPE: 4] This is the updated version of the Wireshark 101 Labs course that focuses on Wireshark v2.

Login and select Enroll in Classes to access these courses. Most courses include a Certificate of Completion.

Save