This workshop will take attendees’ Wireshark skills to the next level with a
heavy emphasis on incident response, threat hunting, and identifying anomalous
network traffic. This workshop will begin with a brief introduction to
Wireshark and other Network Security Monitoring (NSM) tools/concepts.
Throughout the workshop, we’ll examine what different attacks and malware look
like while using Wireshark. Attendees will then have hands-on time in the lab
to search for Indicators of Compromise (IOCs) and TTPs utilizing staged packet
capture files. Labs start out easy and quickly progress in difficulty. There
will be plenty of take-home labs for additional practice.