Understanding Cybersecurity part 2 – The power of Wireshark
Understanding Cybersecurity part 2 – The power of Wireshark, Hands-on network communication – harnessing the power of Wireshark to network attack and mitigation.
Course Description
This is the second course in a five-part series “Understanding Cybersecurity” on network communication, which includes the following modules: Networks Fundamentals, The power of Wireshark, TCP/IP and beyond!, Network Communication Programming with Python, and Cyber Attack Analysis.
These set of courses is presented under the slogan “Understanding Cyber Security” and are intended for every high school and university student, seeking knowledge and knowhow in cybersecurity. Together, these courses provide a comprehensive foundation in networking, combining theoretical knowledge with hands-on skills for analyzing, building, and defending networked systems across a variety of real-world scenarios and technology environments. It strives to facilitate learning by thinking and understanding, and to promote students’ proficiency in handling complex ideas and mastering cybersecurity software projects.
This second course: Understanding Cybersecurity part 2 – The Power of Wireshark focuses on building a solid understanding of the local area networks (LANs) and its local transmission. Special emphasis is placed on Wireshark, an industry-standard network protocol analyzer, which students will use throughout the course to visualize and interpret packet flows in real-time. Students will also explore foundational network protocols including Ethernet and ARP (Address Resolution Protocol) and will learn how these protocols contribute to successful communication at the data link and network layers.
By the end of this module, students will understand the basic principles of packet-based communication, the structure and behavior of LAN protocols, and the process of network frame encapsulation and decapsulation. They will gain confidence in using Wireshark to capture, filter, and analyze network traffic, distinguish between normal and suspicious activity, and identify protocol-specific attack indicators. This foundational knowledge will support advanced topics in later courses, such as intrusion detection, spoofing mitigation, and secure communication protocol implementation.
visit understanding “cybersecurity part 3 – tcpip and beyond!” for the next course in this series.
