Wireshark 101
Essential Skills for Network Analysis

This book is based on the most common questions posed by Wireshark Users and over 20 years of experience analyzing networks and teaching analysis skills.

Check out the Table of Contents in the Preview Pages section to view the numerous skills and labs contained in this title. Jump directly to a skill you wish to master, or follow along from start to end to gradually enhance your Wireshark network analysis capabilities.

Who is this Book For?

This book is written for beginner analysts and includes 46 step-by-step labs to walk you through many of the essential skills contained herein. This book provides an ideal starting point whether you are interested in analyzing traffic to learn how an application works, you need to troubleshoot slow network performance, or determine whether a machine is infected with malware. Learning to capture and analyze communications with Wireshark will help you really understand how TCP/IP networks function.

As the most popular network analyzer tool in the world, the time you spend honing your skills with Wireshark will pay off when you read technical specs, marketing materials, security briefings, and more. This book can also be used by current analysts who need to practice the skills contained in this book. In essence, this book is for anyone who really wants to know what's happening on their network.

Book Details

Paperback ISBN: 978-1-893939-72-1
Page Count: 370
Kindle ISBN: 978-1-893939-73-8
In Development: Student Manual version (see Teach Wireshark) for more information

Purchasing Options

This book is available through Amazon and any bookstore that orders through the Ingram Book Distribution system. Since the title is new, not all Amazon sites may have the title available yet.

Bulk purchases (over 50 books) can be ordered directly from Chappell University. Email your bulk purchase quantity request to info@chappellU.com.

Errata

None.

Legal Stuff

You agree to indemnify and hold Protocol Analysis Institute and its subsidiaries, affiliates, officers, agents, employees, partners and licensors harmless from any claim or demand, including reasonable attorneys' fees, made by any third party due to or arising out of your use of the included trace files, your violation of the TOS, or your violation of any rights of another.

NO COMMERCIAL REUSE

You may not reproduce, duplicate, copy, sell, trade, resell or exploit for any commercial purposes, any of the trace files available on this site.

book101thumbnail

All Access Pass (AAP)

Purchase a one-year subscription for online, on-demand training. You may access courses as many times as you like anytime, anywhere with an Internet connection. Train online on your own schedule.

All Access Pass members are invited to join Laura Chappell for special live online events, as well. These events highlight new products, tools and techniques in network analysis.

The AAP Portal offers a tracking and CPE credit system to indicate where you are in a course and the number of CPE credits achieved.

Purchase an AAP Subscription

Price: $699 single-seat license. For quantity discount pricing, visit Chappell University's Pricing Page (Online Option) or contact us.

 

Preview Pages

Table of Contents

Index

Glossary

Examine how Wireshark applies dissectors to traffic
[Page 55]

Sample lab focused on adding ports to Wireshark's HTTP dissector
[Page 60]

Detect latency problems with a TCP Delta column
[Page 77]

Capture sporadic problems with File Sets
[Page 101]

Filter application traffic properly with a port-based filter
[Page 140]

Turn your favorite display filters into buttons
[Page 176]

Find the most active host on the network
[Page 215]

Export HTTP Objects from a web browsing session
[Page 256]

Capture traffic at the command line with Tshark and dumpcap
[Page 284]