Network Monitoring and Analysis

By Daniel Lachance
Pluralsight is not an official partner or accredited training center of EC-Council. This course covers network scanning and monitoring techniques to ensure optimal network performance and to identity network security breaches.
Course info
Level
Intermediate
Updated
Mar 28, 2018
Duration
1h 28m
Table of contents
Monitoring Network Activity
Module Introduction 1m Network Monitoring Techniques 6m OS Fingerprinting 6m Demo: Use PRTG to View Network Information 6m Attack Signatures 5m Demo: Use nmap to Identify Operating Systems 5m Module Summary 1m
Identifying Suspicious Network Activity
Module Introduction 1m Reconnaissance Through Network Scanning 3m Scan Types 4m Demo: Use the zenman GUI To Conduct A Network Scan 5m Password Cracking 5m Demo: Poison ARP Caches Using Kali Linux 3m Module Summary 1m
Monitoring Network Activity Using Wireshark
Module Introduction 1m Wireshark Overview 5m Display and Capture Filters 5m Demo: Navigating the Wireshark UI 8m Demo: Enable a Wireshark Capture Filter 5m Demo: Enable a Wireshark Display Filter 5m Module Summary 1m Demo: Analyze Captured Network Traffic Statistics 5m
Course Overview
Course Overview 1m
Description
Course info
Level
Intermediate
Updated
Mar 28, 2018
Duration
1h 28m
Description

Pluralsight is not an official partner or accredited training center of EC-Council. Network scanning is performed by malicious users and IT security professionals. In this course, Network Monitoring and Analysis, you'll learn the fundamental knowledge of common network scans run by attackers so that you can detect this activity. First, you'll explore attack signatures, network monitoring techniques, and OS fingerprinting. Next, you'll learn about common TCP and UDP scan types and how ARP poisoning allows attackers to funnel traffic through their stations. Finally, you'll learn how to use the free, open source, Wireshark network analyzer to capture and analyze network traffic. When you're finished with this course, you will have the skills and knowledge of network monitoring needed to detect and protect against attackers.

About the author
Daniel Lachance
About the author

Daniel Lachance, CompTIA Security+™, CompTIA A+®, CompTIA Network+®, CompTIA Server+, CompTIA Cloud Essentials, MCITP, MCTS, MCSA, is the owner of Lachance IT Consulting Inc. He is the author of the CompTIA Server+ Certification All-in-One Exam Guide, CompTIA Cloud Essentials Certification Study Guide, and co-author of CompTIA Security+ Certification Practice Exams.

More from the author
Managing Microsoft Azure Subscriptions
Beginner
1h 60m
Jul 16, 2019
Security Event Triage: Monitoring Assets and Topology
Intermediate
1h 37m
May 17, 2019
Computer Fundamentals: Hardware
Beginner
2h 43m
Jan 14, 2019
More courses by Daniel Lachance
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hey everyone. I'm Dan Lachance, and welcome to my course, Network Monitoring and Analysis. As an IT security professional, having knowledge of network monitoring techniques and tools, along with the ability to interpret scan results, will help you optimize network performance and also to detect suspicious network activity. Some of the major topics that we're going to talk about include network attack signatures and monitoring techniques, OS fingerprinting, network scanning techniques, and how to use Wireshark to analyze network traffic. By the end of this course, you'll be able to determine the optimal placement of network monitoring solutions, you'll know how to detect malicious network reconnaissance activities on the network, and you'll also know how to interpret network captures gathered from the Wireshark tool. I hope you'll join me to learn about network monitoring and analysis here at Pluralsight.

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT