{"product_id":"wireshark-workbook-1-practice-challenges-and-solutions-9781893939646","title":"Wireshark Workbook 1: Practice, Challenges, and Solutions","description":"\u003cp\u003e • Author(s): Laura Chappell | James Aragon\u003cbr\u003e • Publisher: Laura Chappell University\u003cbr\u003e • Publisher Imprint: Laura Chappell University\u003cbr\u003e • BISAC: Networking - Network Protocols\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003eWireshark is the world's most popular network analyzer, used for troubleshooting, forensics, optimization, and more. It's considered one of the most successful open source projects of all time.\u003c\/p\u003e\u003cp\u003eLaura Chappell has been involved in the Wireshark project since its infancy (then called Ethereal) and is regarded as the leading authority on network protocol analysis and forensics using Wireshark. Laura Chappell, Protocol Analysis Institute, and Chappell University are not affiliated with the Wireshark Foundation.\u003c\/p\u003e\u003cp\u003eThe WCNA Certification is the top global program for network analysis, with certified analysts in over 90 countries and DoD 8570 certification since 2009.\u003c\/p\u003e\u003cp\u003eThis book features 16 labs based on Laura's popular \"Packet Challenges,\" introduced at trade shows over a decade ago. You'll test your Wireshark and TCP\/IP skills by answering questions based on trace files, followed by Laura's detailed, step-by-step solutions.\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003eLab 1: Wireshark Warm-Up\u003c\/p\u003e\u003cp\u003eObjective: Get Comfortable with the Lab Process. Completion of this lab requires many of the skills you will use throughout this lab book. If you are a bit shaky on any answer, take time when reviewing the answers to this lab to ensure you have mastered the necessary skill(s).\u003c\/p\u003e\u003cp\u003eLab 2: Proxy Problem\u003c\/p\u003e\u003cp\u003eObjective: Examine issues that relate to a web proxy connection problem.\u003c\/p\u003e\u003cp\u003eLab 3: HTTP vs. HTTPS\u003c\/p\u003e\u003cp\u003eObjective: Analyze and compare HTTP and HTTPS communications and errors using inclusion and field existence filters.\u003c\/p\u003e\u003cp\u003eLab 4: TCP SYN Analysis\u003c\/p\u003e\u003cp\u003eObjective: Filter on and analyze TCP SYN and SYN\/ACK packets to determine the capabilities of TCP peers and their connections.\u003c\/p\u003e\u003cp\u003eLab 5: TCP SEQ\/ACK Analysis\u003c\/p\u003e\u003cp\u003eObjective: Examine and analyze TCP sequence and acknowledgment numbering and Wireshark's interpretation of non-sequential numbering patterns.\u003c\/p\u003e\u003cp\u003eLab 6: You're Out of Order!\u003c\/p\u003e\u003cp\u003eObjective: Examine Wireshark's process of distinguishing between out-of-order packets and retransmissions and identify mis-identifications.\u003c\/p\u003e\u003cp\u003eLab 7: Sky High\u003c\/p\u003e\u003cp\u003eObjective: Examine and analyze traffic captured as a host was redirected to a malicious site.\u003c\/p\u003e\u003cp\u003eLab 8: DNS Warm-Up\u003c\/p\u003e\u003cp\u003eObjective: Examine and analyze DNS name resolution traffic that contains canonical name and multiple IP address responses.\u003c\/p\u003e\u003cp\u003eLab 9: Hacker Watch\u003c\/p\u003e\u003cp\u003eObjective: Analyze TCP connections and FTP command and data channels between hosts.\u003c\/p\u003e\u003cp\u003eLab 10: Timing is Everything\u003c\/p\u003e\u003cp\u003eObjective: Analyze and compare path latency, name resolution, and server response times.\u003c\/p\u003e\u003cp\u003eLab 11: The News\u003c\/p\u003e\u003cp\u003eObjective: Analyze capture location, path latency, response times, and keepalive intervals between an HTTP client and server.\u003c\/p\u003e\u003cp\u003eLab 12: Selective ACKs\u003c\/p\u003e\u003cp\u003eObjective: Analyze the process of establishing Selective acknowledgment (SACK) and using SACK during packet loss recovery.\u003c\/p\u003e\u003cp\u003eLab 13: Just DNS\u003c\/p\u003e\u003cp\u003eObjective: Analyze, compare, and contrast various DNS queries and responses to identify errors, cache times, and CNAME (alias) information.\u003c\/p\u003e\u003cp\u003eLab 14: Movie Time\u003c\/p\u003e\u003cp\u003eObjective: Use various display filter types, including regular expressions (regex), to analyze HTTP redirections, end-of-field values, object download times, errors, response times and more.\u003c\/p\u003e\u003cp\u003eLab 15: Crafty\u003c\/p\u003e\u003cp\u003eObjective: Practice your display filter skills using \"contains\" operators, ASCII filters, and inclusion\/exclusion filters, while analyzing TCP and HTTP performance parameters.\u003c\/p\u003e\u003cp\u003eLab 16: Pattern Recognition\u003c\/p\u003e\u003cp\u003eObjective: Focus on TCP conversations and endpoints while analyzing TCP sequence numbers, Window Scaling, keep-alive, and Selective Acknowledgment capabilities.\u003c\/p\u003e\u003cp\u003e \u003c\/p\u003e","brand":"Atlantic Books","offers":[{"title":"Paperback","offer_id":46456672288919,"sku":"9781893939646","price":5521.0,"currency_code":"INR","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0666\/3471\/1191\/files\/9781893939646.webp?v=1769179192","url":"https:\/\/atlanticbooks.com\/products\/wireshark-workbook-1-practice-challenges-and-solutions-9781893939646","provider":"Atlantic Books","version":"1.0","type":"link"}