Network Security and Traffic Analysis

Understand the core concepts of Network Security and Traffic Analysis to spot and probe network anomalies using industry tools and techniques.

This module will cover the core concepts of Network Monitoring and deep dive into Network Traffic & Packet Analysis. You will learn the core concepts of network traffic investigation, packet analysis and network forensics by using industry-standard tools. By the end of the module, you will be comfortable using different tools and approaches to identify, detect and prevent network anomalies, threats and attacks.

Traffic Analysis Essentials

Learn Network Security and Traffic Analysis foundations and take a step into probing network anomalies.

Snort

Learn how to use Snort to detect real-time threats, analyse recorded traffic files and identify anomalies.

Snort Challenge - The Basics

Put your snort skills into practice and write snort rules to analyse live capture network traffic.

Snort Challenge - Live Attacks

Put your snort skills into practice and defend against a live attack

NetworkMiner

Learn how to use NetworkMiner to analyse recorded traffic files and practice network forensics activities.

Zeek

Introduction to hands-on network monitoring and threat detection with Zeek (formerly Bro).

Zeek Exercises

Put your Zeek skills into practice and analyse network traffic.

Brim

Learn and practice log investigation, pcap analysis and threat hunting with Brim.

Wireshark: The Basics

Learn the basics of Wireshark and how to analyse protocols and PCAPs.

Wireshark: Packet Operations

Learn the fundamentals of packet analysis with Wireshark and how to find the needle in the haystack!

Wireshark: Traffic Analysis

Learn the basics of traffic analysis with Wireshark and how to find anomalies on your network!

TShark: The Basics

Learn the basics of TShark and take your protocol and PCAP analysis skills a step further.

TShark: CLI Wireshark Features

Take your TShark skills to the next level by implementing Wireshark functionalities in the CLI.

TShark Challenge I: Teamwork

Put your TShark skills into practice and analyse some network traffic.

TShark Challenge II: Directory

Put your TShark skills into practice and analyse some network traffic.

Need to know

Network Fundamentals

Learn the core concepts of how computers communicate with each other and types of network weaknesses.

Next steps

Security Operations & Monitoring

Learn how to configure and utilise tooling to ensure that suspicious activity is quickly identified and dealt within your environment.

What are modules?

A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).