HackerSploit Blue Team Series - Network Traffic Analysis with Wireshark

Dive into the world of Blue Team operations and network traffic analysis in this comprehensive video tutorial. Learn about the essential techniques and tools used by security analysts and SOC teams, with a focus on Wireshark, a powerful open-source network protocol analyzer. Explore the Mitre D3fend Framework, understand the basics of packets and PCAP files, and gain hands-on experience with Wireshark's interface and features. Master the art of using display and capture filters, color-coding packets, and analyzing various network protocols. Follow along with practical exercises to reinforce your learning and prepare yourself for real-world Blue Team scenarios.

Introduction
What are Blue Team Operations?
Examine the Mitre D3fend Framework
What We Will Be Covering
Prerequisites
What is Wireshark?
What are Packets?
Wireshark for Blue Teams
Wireshark Features
What are PCAP Files?
Obtaining and Installing Wireshark
About our Lab Environment
Download & Open Wireshark
Wireshark Interface Overview
Customizing the Wireshark Interface
Color-Coding Packets
Using Display and Capture Filters
Specifying a Source and Destination IP
Limiting What is Displayed by IP
Protocol Filtering
Exporting the Capture into a PCAP
Exploring SSH Traffic
Exploring HTTP Traffic
Wireshark Exercise
Conclusion