04 Analyzing Megalodon Files with Wireshark

Показать описание

The title of this class is: "Analyzing Megalodon Files" and was taught by Jasper Bongertz. This was recorded on September 16th online.

SharkFest™, launched in 2008, is a series of annual educational conferences staged in various parts of the globe and focused on sharing knowledge, experience and best practices among the Wireshark® developer and user communities.

SharkFest attendees hone their skills in the art of packet analysis by attending lecture and lab-based sessions delivered by the most seasoned experts in the industry. Wireshark core code contributors also gather during the conference days to enrich and evolve the tool to maintain its relevance in ensuring the productivity of modern networks.

SharkFest’s aim is to support ongoing Wireshark development, to educate and inspire current and future generations of computer science and IT professionals responsible for managing, troubleshooting, diagnosing and securing legacy and modern networks, and to encourage widespread use of the free analysis tool. Per Gerald Combs, Wireshark project Founder …“Wireshark is a tool and a community. My job is to support both."

Timecodes
0:00 - Intro
0:39 - Slideshow about Jasper
1:46 - Presentation Agenda
2:56 - What are Megalodon trace files?
4:50 - Methodology
9:43 - Experience vs Knowledge
12:17 - The path to experience
18:54 - General best practices
24:15 - Mission parameters
26:42 - Tools for Analyzing big packet traces
33:15 - Live Wireshark packet analysis with 1000+ pcaps
1:00:22 - Q&A
1:02:07 - Outro