These are materials associated with using Wireshark, a packet sniffer tool. I do these exercises to teach students how to use Wireshark to detect various kinds of network security events.
Any questions or comments should be directed to: The creator's email
This exercise teaches the basics of using Wireshark as a packet sniffing tool. Students learn how to record and filter packets using Wireshark.
The exercise is here here.
This exercise teaches students how to packet sniff with Wireshark and how to use Wireshark's various visualization and statistical tools to identify suspicious packets.
The exercise is here here.
This is a Wireshark capture of a port scanning attempt. We walk through the characteristics of a port scan in class.
The exercise is here.
This is a Wireshark capture of a man in the middle attack using ARP. We walk through the characteristics of this attack in class.
The exercise is here.