Access is restricted to individuals who have passed the Wireshark Certified Network Analyst exam.



Home

Follow @laurachappell for Wireshark news.

Sign up below to receive an alert when a new event registration or course goes online.

Enter your email address:

 


 

  • TIP - Submit your External CPE Credits: Use the link on the main menu

  • New Course: Wireshark Display Filters Tips and Tricks [CPE: 1.0] Learn new display filtering techniques including filtering based on fields/strings, using the dreaded "!=" operator, and building offset (and bit-level) filters. This course includes two Notepad ++ macros that you can use to convert coloring rules to Filter Expression buttons and convert Filter Expression buttons to coloring rules.

HOT COURSES

  • Regular Expressions (Regex) Primer [CPE: 2.0] Learn to use Regular Expressions (Regex) with your Wireshark display filters to detect key words, decimal and hex values, email addresses, IP addresses and more. In addition. Laura covers the numerous Wireshark PCRE Regex "issues" and work-arounds.
  • Lab Solutions - Wireshark 101: Essential Skills for Network Analysis
    46-videos covering all labs in the Wireshark 101 book - see the Documents sections for the lab list PDF
  • Find Stuff Fast with Wireshark Filter Expression Buttons [CPE: 1]
    (select Full WCNA Course List)
 

The Wireshark Certified Network Analyst Exam was designed to confirm individual competencies in using Wireshark to locate the cause of network problems (poor performance or security-related) and confirm your knowledge of TCP/IP network communications in general. The Wireshark Certified Network Analyst Exam was DoD 8570 certified by the U.S. Army in 2009.

Attachments:
FileDescriptionUploaderFile size
Download this file (wcna_scheduleexam01JUL12.pdf)wcna_scheduleexam01JUL12.pdfHow to Schedule the WCNA ExamAdministrator1099 Kb
Download this file (wsucertinfopkJuly2012.pdf)wsucertinfopkJuly2012.pdfWCNA Info Pack (July 2012)Administrator2590 Kb

Read more...

 

[CPE Credits: 1.5 - Gradebook Certificate] In this class we work with file sets for faster analysis. You'll see a glimpse of Pilot (created by Gerald Combs' company) to see how to deal quickly with large trace files (over 500MB). We'll capture to file sets using the Wireshark interface and Tshark. In addition, we'll split a large trace file using Editcap and combine the separate pieces again using Mergecap.

These courses are only available to individuals who successfully pass the Wireshark Certified Network Analyst certification exam. For more information, visit Wireshark University.

 

[CPE Credits: 1.5 - Gradebook Certificate] In this class we work with a Wireshark system that supports checksum offloading. First we examine the interface details to identify when checksum offloading will be in use before capturing our own traffic. We look at the various ways of dealing with the "red herrings" of checksum errors to decrease the amount of time needed to spot true issues in the network communications. HIGHLY RECOMMENDED COURSE.

These courses are only available to individuals who successfully pass the Wireshark Certified Network Analyst certification exam. For more information, visit Wireshark University.

 

[CPE Credits: 1.5 each + Gradebook Certificate] There are two courses focused on trace file sanitization in the WCNA portal:

These courses delve into altering primarily network and MAC addresses in trace files, but also point out the importance (and methods used) for checking your trace files for confidential information. Both tools are covered thoroughly and a great resource for cleaning up those IP addresses.

These courses are only available to individuals who successfully pass the Wireshark Certified Network Analyst certification exam. For more information, visit Wireshark University.