Sniffing

In this course, we focus our attention on two common tools for sniffing for penetration testing: Wireshark and TCPDump. The course is intended to be primarily hands-on, so you will need access to either the Cybrary lab environment or you will need to build out your own virtual systems for testing. We do not cover the buildout of your own virtual systems in this course. All hands-on labs for the course will have an associated step by step guide and we have also provided additional study resources with this course.

The course is focused on hands-on learning and students will need access to the Cybrary lab environment to complete the step by step labs as well as the final assessments. However, students can also choose to set up their own labs but set up and configuration of those labs will not be covered in this course.

• Module 1: Introduction
• Introduction
• Module 2: Wireshark and TCPDUMP
• Wireshark Lab Part 1
• Wireshark Lab Part 2
• Wireshark Lab Part 3
• Wireshark
• Packet Sniffing Lab Part 1
• PacketSniffing Lab Part 2
• Packet Sniffing
• Applying Filters to TCPDUMP and Wireshark Lab Part 1
• Applying Filters to TCPDUMP and Wireshark Lab Part 2
• Applying Filters to TCPDump and Wireshark
• TCPDUMP Lab
• TCPDump
• Module 3: Conclusion
• Capstone Lab Navigation
• Understand Common Ports and Protocols
• Installing Wireshark
• Wireshark Functionality
• Customizing Wireshark
• Working with Captured Traffic
• Analyzing Captured Traffic
• Analyzing Protocols
• Packet Sniffing with Wireshark
• Conclusion
• Sniffing: Wireshark, TCPDump