This course focuses on identifying various indicators of network attacks using Wireshark. You will learn how to detect different types of attacks, such as SYN flooding, ICMP flooding, ARP poisoning, DNS spoofing, random source attacks, Fin scan, and NMAP scans. In addition, you will explore indicators of FTP password cracking, XSS, and SQL injection attacks. By the end of the course, you will have a solid understanding of how to use Wireshark to identify potential security threats and take appropriate measures to protect your network.
Wireshark is a powerful network protocol analyzer that can be used to capture and analyze network traffic in real-time. It can help you detect and analyze indicators of attacks, such as network scans, denial-of-service attacks, malware infections, and more.