Network Protocols for Security: DNS
In this course, you’ll practice creating network traffic to analyze how DNS queries and responses operate. When you're finished, you'll have a fundamental understanding on how to find anomalies within DNS.
What you'll learn
Understanding how network protocols operate is an implied skill required to be successful in cyber security. In this course, Network Protocols for Security: DNS, you’ll learn to analyze DNS network traffic. First, you’ll explore a typical DNS request to understand how queries and responses operate. Next, you’ll modify the local hosts file to see one method where DNS can be taken advantage of. Finally, you’ll analyze a command and control conversation to gain further insight into malicious DNS conversations. When you’re finished with this course, you’ll have the skills and knowledge of DNS needed to find anomalies and malicious activity amongst network traffic.
Table of contents
About the author
Brandon DeVault is a Security Researcher focused on threat hunting at CrowdStrike. He is also a member of the Florida Air National Guard with a variety of offensive and defensive experience. Prior to joining CrowdStrike, Brandon worked full-time as an author with Pluralsight and at Elastic, creating and delivering security content. He also worked with Special Operations Command, where he had two deployments to Afghanistan on deployable communications teams. His experience spans incident response... more