Network Forensics

Networking

• Network Protocols
• Packet Structure
• Netstat and ProcMon
• SysInternal

Intrusion Detection Methods

• Wireshark Advanced: Network Attacks
• TShark Analysis
• GeoIP Integration

Using the Scapy Module

• Crafting and Analysing Packets
• Working with IPv6

Zeek

• Output Logs
• Automating Process
• Monitoring Data in Logs
• Zeek-Cut Parsing
• Replaying Packets for Investigating
• Creating a Timeline

Investigation Process

• MiTM Attack
• Find Network Anomalies
• Flow Analysis
• Network File Carving
• NetworkMiner
• File Carvers
• Capturing Wireless Traffic
• Gaining Access Through Wi-Fi
• HTTPS Traffic

IPS and IDS

• Sysmon
• Installing and Configuration Sysmon
• Network Events
• IDS/IPS Operation Process
• IDS/IPS Configuration
• Snort

Tailored To Client

Apprenticeship-based Training

• Experience hands-on learning with our demonstration method on a virtual/host machine, ensuring immersive understanding.
• Our trainers prioritise showing over telling, explaining intricacies without relying on slides, offering direct engagement.
• Bridge your knowledge gap by connecting theoretical concepts to practical cybersecurity applications, enhancing career readiness.

Practice Labs

• Engage in repeated practice sessions to solidify and reinforce your understanding.
• Delve deeper with practice questions, encouraging students to explore interconnected topics and enhance comprehension.
• Stimulate critical thinking through challenge questions, prompting students to seek solutions and broaden their problem-solving abilities.

Assessment and Project

• Equip yourself with the expertise and tools essential for navigating corporate networks safely.
• Gain a comprehensive understanding of cyber-attacks to fortify your digital environment effectively.
• Broaden your horizon by familiarising yourself with diverse cyber-attack scenarios and their implications.