Follow Me to Learn Wireshark Packet Capture
5.0 (1 rating)
Course Ratings are calculated from individual students’ ratings and a variety of other signals, like age of rating and reliability, to ensure that they reflect course quality fairly and accurately.
4 students enrolled

Follow Me to Learn Wireshark Packet Capture

Follow Me to learn this incredible tool as we learn how to capture and analyze data packets.
New
5.0 (1 rating)
Course Ratings are calculated from individual students’ ratings and a variety of other signals, like age of rating and reliability, to ensure that they reflect course quality fairly and accurately.
4 students enrolled
Created by Andrew Walding
Last updated 5/2020
English
English [Auto]
Current price: $20.99 Original price: $29.99 Discount: 30% off
5 hours left at this price!
30-Day Money-Back Guarantee
This course includes
  • 3.5 hours on-demand video
  • 2 downloadable resources
  • Full lifetime access
  • Access on mobile and TV
  • Certificate of Completion
Training 5 or more people?

Get your team access to 4,000+ top Udemy courses anytime, anywhere.

Try Udemy for Business
What you'll learn
  • A comprehensive introduction to Wireshark Packet Capture
  • How to create and leverage custom profiles
  • How to use Capture and Display filters
  • File Operations, including Ring Buffers for intermittent issues
  • Leveraging Delta Times
  • Using I/O Graphs
  • Finding conversations quickly and easily
  • HTTP/HTTPS Decryption
  • How and where to perform packet capture
Requirements
  • None
Description

No slides, just follow me as we learn a solid foundation of how to use and leverage key features of Wireshark for packet capture and packet analysis.  This course will cover all the fundamentals of Wireshark, setting a solid foundation for baselining and troubleshooting packet networks.   Taught in the "follow me" modality, this course is basically one big set of hands on labs, one after another, that the student uses to build a solid usable skill set.

Who this course is for:
  • Anyone interested in a solid understanding of how to capture packets using Wireshark
  • Whether you are new or experienced, you will learn some important and time saving fundamentals
  • A perfect foundation for Wireless, Troubleshooting, and TCP deep dives
Course content
Expand all 16 lectures 03:32:42
+ Course Introduction and Installation of Wireshark
4 lectures 44:07

Welcome to the "Follow Me" course on Wireshark - the best packet sniffing and dissection tool known to mankind!

I don't think I use any slides at all.

The idea is you can follow me on you machine, and pause/rewind/replay the video lessons as needed.

In this first video lesson, I will introduce the class, and will then proceed with Wireshark installation on Windows.

Those of you with MAC or Linux systems, can stop the video when I indicate and watch your specific installation examples below.

Preview 10:48

In this lesson, MAC users will want to install or upgrade following me in the process.

Windows and Linux folks, you can skip this.

Wireshark Installation on MAC OSX
05:51

In this lesson, I will show Linux users how Wireshark is installed.

Windows and MAC users, you can skip this.

Wireshark Installation on Linux
08:21

OK - we all come back together in this lesson, whether you are Windows, MAC or Linux.

This lesson will provide an overview of the Wireshark GUI.  New and prior users of Wireshark alike should follow me here as there are always gems in the Wireshark interface that you may not be aware of.

Preview 19:07
+ Customizing Wireshark's GUI and Focusing on Time
2 lectures 37:01

This follow me will show you how to become a Wireshark power user, and really turn this tool into a powerful troubleshooting and analysis tool you have always wanted.

Follow Me as I create a Custom Profile
20:49

Using Delta Times is one of the first 5 steps I always apply when troubleshooting with Wireshark.

Follow me as I show you how to do this.

Follow Me as I leverage Delta Times and Time References
16:12
+ Wireshark File Operations
2 lectures 19:49

In this Lesson we will use basic file operations to save a capture and then to load a capture.  I have added a capture file called 2capture.pcapng in the resources for you to grab and use in the lesson.

Follow Me as I do some basic File Operations in Wireshark
10:27

Intermittent problems are pesky problems - you never know when they are going to happen.

Follow me as I show you how to capture indefinitely without ever running out of disk space with Wireshark Ring Buffers to catch those intermittent issues.

Follow me as we learn Ring Buffers to attempt to capture intermittent issues
09:22
+ Filtering Packets and Finding Conversations
4 lectures 58:28

You don't want to capture too much, or insignificant information.

Follow me as I show you how to use capture filters with Wireshark.

Follow Me as I set up Capture Filters using the Berkley Packet Format
16:05

Narrowing your search in captured packets is a skill you have to develop quickly.

Follow me as I show you how to use Wireshark Display Filters to narrow your focus.

Follow Me as I set up Display Filters
18:55

It is one of the questions I get asked all the time: "How can I single out a conversation between two systems on the network?"

It is actually really easy and really fast.

Follow me as I show you how.

Follow Me as I find Conversations quickly and easily
11:31

To take all this filtering to the next level, follow me as I show you how to do some advanced display filtering using display filter macros.

Follow Me as I use some Advanced Display Filter techniques
11:57
+ Baselines and Visualizations
3 lectures 33:48
Follow me as we see how and where to capture for best results
10:06
Follow me as we use I/O graphs to visualize packet data traffic
09:37
Follow me as we learn how to determine video bandwidth usage
14:05
+ Using Wireshark Command Line/Terminal Tools
1 lecture 19:29

Can you do packet capture using Wireshark on systems with no GUI?

It's a good question, and the answer is yes, because Wireshark comes with a terminal or command line version called T-Shark.

Follow me as I demonstrate how to use T-Shark.

Follow me as I introduce T-Shark to capture from the command line
19:29