Advanced Packet Capture and Trend Analysis with Wireshark

This page keeps all original information and links. Japanese page

	Wireshark-9 Application of packet capture and trend analysis by Wireshark We will teach you the latest functions, technology, and know-how of Wireshark. Learn business-level debugging, Troubleshooting. We highly recommend taking the introductory course as a set. *Tap distribution will be available for those who wish to do so for an additional fee.

Seminar name/code	Date/time	Overview
LAN analyzer by Wireshark Packet capture and Trend analysis application New (Code: Wireshark-9)	1 day (10:00-18:00)	Learn the latest Wireshark TIPS and techniques that can be used in practice. Difference between tapping and spanning Catch up with the latest version of Wireshark Advanced customization of Wireshark TIPS Application of display filters and capture filters tshark/mergecap/editcap etc. Batch processing and JSON processing with CLI TCP application analysis UDP application analysis Anomaly analysis using Wireshark SSL/TLS decryption Teaching the latest Wireshark know-how We highly recommend taking this course as a set with the introductory course.
Textbook and equipment used	Lecturer	Purpose
★Handout ・Published by Rick Telecom “Practical Packet Capture with Wireshark, Advanced Analysis, 2nd Edition” Written by Megumi Takeshita ・Resume of materials ・CD-ROM ・USB memory ・Ikeriri bag ・Dualcomm NetworkTAP *Will be distributed at a special price to those who request it.	Megumi Takeshita Ikeriri★Network Service Co., Ltd.	・Able to perform practical-level packet capture and dump analysis ・Able to debug network devices and troubles ・Understand the difference between tapping and spanning. - Can perform advanced customization of Wireshark. - You can capture using complex display filters and capture filters. - You can create the reports and graphs you need by using Wireshark's statistical functions depending on your purpose. - Capable of long-term stable packet capture, captured data processing, and batch processing using tshark/dumpcap/mergecap and other CLI tools - Capable of delay analysis and isolation of TCP applications - Capable of TopN analysis, delay analysis, and visualization focusing on TCP applications - Capable of TopN analysis, delay analysis, and visualization focusing on UDP applications - Capable of deciphering and decoding SSL/TLS *Available for those who have taken the introductory seminar on packet capture and trend analysis using Wireshark, or those who have a similar level of knowledge. (Since it is continuous with the introductory seminar, we highly recommend that you take the introductory seminar.)
Seminar details　New
Difference between tapping and spanning Wireshark architecture and customization QT version Wireshar4 catchup Configuration files, display filters, capture filters Wireshark tips and techniques Additional filters and dissector items for Wireshark 4.x Utilization of Wireshark related command line tools (Using tshark/dumpcap/remote capture and batch) Batch processing in conjunction with script/tshark/mergecap/editcap Acquisition and processing of long-term, large-capacity capture files TCP application analysis (TopN analysis, delay analysis, visualization) Advanced TCP analysis TCP FastOpen Compound TCP UDP application analysis (TopN analysis, delay analysis, visualization) Anomaly analysis with Wireshark SSL/TLS analysis and decryption (with/without certificate/proxy) Troubleshooting case study (Appendix) HTTP2 analysis (Appendix) File protocol (FTP/CIFS/SMB) analysis (Appendix) Analysis and evaluation of VoIP (SIP/RTP/RTCP, etc.) (Appendix) Troubleshooting case study using capture files (Appendix) Output to JSON format and visualization with big data analysis engine (Appendix) Collection of over 250 sample packets