CSX PACKET ANALYSIS COURSE

SELF-PACED, VIRTUAL COURSE

Build your technical skills with immersive, hands-on training in a live network environment.

6 months access

ISACA Member: $250

Non-Member: $400

Purchase Self-Paced Course


Certificate Exam

ISACA Member: $200

Non-Member: $200

Purchase Exam

This comprehensive training course on packet and protocol analysis leverages hands-on lab training and in-depth instruction in this critical area. Students will work with real network traffic captures in real environments and will analyze different communication types and their components.  Upon completion, students will be able to passively analyze packet captures and create network topologies and device characterizations – valuable traits in the cybersecurity field.

Earn 16 CPEs

COURSE STRUCTURE

The CSX Packet Analysis Course is conducted in an adaptive, performance-based cyber laboratory environment. Students will have hands-on instruction and practice in applying basic concepts and industry-leading methods and in utilizing a large array of open source tools within real-world scenarios.

LEARNING OBJECTIVES

Upon completion of this course, students will:

  • Be familiarized with the OSI model
  • Understand the role of packets in online communications
  • Identify when the application of packets is appropriate
  • Understand the basic composition of a packet

INSTRUCTION TOPICS

  • What is Packet Analysis?

  • Tools of the Trade

  • Common Protocols

  • Data Manipulation

  • Device Characterization

  • Wireless Packets

  • Network Topology

  • Threat Analysis

  • Mobile Analysis

  • Bringing It All Together

COURSE LABS

  • Protocol Parsing

  • ARP Analysis

  • Initial Connection

  • Interesting Searches

  • Additional Pets

  • GET Request and Response Dissection

  • Nefarious Employee

  • Playing Around

  • Probe Request Analysis

  • Beacon Analysis

  • Network Topology

  • Wireless Network Topology

  • Blaster Worm Analysis

  • Rogue AP and Mobile Analysis

  • Complete Netmap and Device Characterization

CSX Packet Analysis Course Outline

WHAT IS PACKET ANALYSIS

  • Gain familiarization with the OSI model
  • Understand the role of packets in online communications
  • Identify when the application of packets is appropriate
  • Understand the basic composition of a packet

TOOLS OF THE TRADE

  • Understand the basics of tapping the network
  • Understand the options available for packet analysis software
  • Demonstrate a basic understanding of Wireshark and its capabilities

COMMON PROTOCOLS

  • Understand the definition of protocol
  • Understand the definition of port
  • Understand specific protocols which help conduct packet analysis
  • Identify which protocols are helpful for device characterization
  • Identify which protocols are helpful for network mapping

DATA MANIPULATION

  • Understand where to find packets
  • Understand how to capture packets in Wireshark
  • Understand how to filter certain types of data

DEVICE CHARACTERIZATION

  • Understand what types of devices emit packets
  • What unique identifiers those devices have
  • How to find those unique emitters in a packet collection
  • How to characterize those devices

WIRELESS PACKETS

  • Understand the wireless medium on a basic level
  • Understand how to collect wireless packets
  • Understand how to analyze wireless packets

NETWORK TOPOLOGY

  • Understand how to map networks based off packet collection
  • Corroborate dataflow and protocol usage
  • Create a visual network map of the collected data

THREAT ANALYSIS

  • Understand specific threats against a network
  • Comprehend unique traits inherent to defined threats
  • Understand how to identify specific threats via packet analysis

DATA MANIPULATION

  • Understand where to find packets
  • Understand how to capture packets in Wireshark
  • Understand how to filter certain types of data

MOBILE ANALYSIS

  • Identify mobile devices via packet analysis
  • Identify mobile apps via packet analysis
  • Understand how these systems are inherently vulnerable
  • Identify methods through which they may be exploited

CSX Packet Analysis Certificate Exam

The CSX Packet Analysis Certificate Exam assesses candidates understanding of packet and protocol analysis. The two-hour exam is a real-time, hands-on exam which challenges students to demonstrate their skill set in a live environment.

This two-hour exam contains no multiple-choice questions or simulations and intentionally restricts access to the internet. Where applicable, man pages and help files are available.

Continuing Profession Education (CPE) Credit Count: 4 (2 CPEs per examination hour) when a passing score is achieved.

Exam Objective: Candidates must complete tasks of varying durations with minimal instruction while navigating between multiple virtual machines. Learn more >>

Pre-requisites: N/A, considered entry-level