Network Forensics
Network Forensics
Network forensics challenges focusing on analyzing network traffic, identifying malicious activity, and investigating network-based attacks through PCAP analysis.
What You'll Learn
- PCAP file analysis and packet inspection
- Protocol analysis (HTTP, DNS, FTP, SMB, etc.)
- Network intrusion detection and analysis
- C2 communication identification
- Data exfiltration detection and malware traffic analysis
Prerequisites
- Understanding of networking fundamentals and OSI model
- Familiarity with network analysis tools (Wireshark, tshark, NetworkMiner)
- Basic knowledge of common protocols (TCP/IP, HTTP, DNS)
- Understanding of network security concepts
All Content
JetBrains
During a recent security incident, an attacker successfully exploited a vulnerability in our web server, allowing them to upload webshells and gain full control over the system.
Lockdown
TechNova Systems' SOC has detected suspicious outbound traffic from a public-facing IIS server in its cloud platform—activity suggestive of a web-shell drop and covert connections to an unknown host.