There are many reasons to improve your packet analysis skills. Lisa Bock covers the many uses of packet analysis that include troubleshooting, testing IoT devices, and monitoring for threats.
- [Instructor] There are many reasons to improve your Wireshark skills. You know that, that's why you're here. Exceptional packet analysis skill comes from a combination of education and experience. Many individuals use packet analysis for a variety of reasons. Network administrators use packet analysis to gain information about current network conditions. Wireshark can help identify errors or problems on the network that might require device tuning and/or replacement to improve overall performance.
The administrator can use the expert system, or the intelligent scrollbar, to easily spot potential problems. Once problems are identified, then they can subset traffic, add comments, save, and export the packet captures. In addition to network administrators, packet analysis is used by developers. I've presented to developers, and I asked them why are they here, and it's because they want to know what's on the network.
Now, application performance issues can affect the bottom line, especially in a mission-critical situation. Developers diligently strive to produce elegant and efficient software. Prior to releasing an application, developers run functional and regression tests, along with stressing the server, to ensure an optimized application. This intelligence that's gathered helps the agencies defend against ongoing threats.
So as you can see, packet analysis is used by a variety of individuals, for a variety of reasons. There's a variety of reasons that you'll want to know packet analysis, and really know packet analysis, including troubleshooting, testing IoT devices, and monitoring for threats.
- Tapping into the network
- Baselining the network
- Troubleshooting to discover the cause of a slow network
- Merging traffic
- Sanitizing packet captures
- Capture engines
- Optimizing packet captures
- Basic and advanced IO graphs
- TCP stream graphs