Network & Host Analysis: Network Analysis Formats
Networking
| Intermediate
- 14 videos | 59m 37s
- Includes Assessment
- Earns a Badge
A variety of formats and protocols are used to help manage networks. Knowing what you have at your disposal to integrate into your operational duties is essential in defensive CyberOps. In this course, you'll learn the format and tools required to manage, operate, and analyze your networks. You'll start by recognizing the purpose and characteristics of NetFlow and IPFIX network flow protocols. You'll then outline how NetFlow is used to baseline a network. Next, you'll identify the importance of logging, access control, and event queues. You'll examine techniques for tapping network traffic and collecting and forwarding logs. You'll explore SNMP, the PCAP format, and whitelisting. Finally, you'll set up Wireshark to detect potentially harmful events and import and export captured traffic in the PCAP format.
WHAT YOU WILL LEARN
-
discover the key concepts covered in this coursedescribe the function and characteristics of the NetFlow and IPFIX network flow protocolsdescribe how NetFlow is used to baseline a networkrecognize the importance of audit logs for securityidentify the goals, capabilities, and types of application-based blocking for network accessoutline techniques used to tap network trafficoutline techniques for collecting and forwarding logs
-
outline techniques for event queuing and handlingdescribe how SNMP is used for network management and monitoringdescribe how PCAP is implemented for packet capture and filtering programsoutline the process for whitelisting and blacklisting applicationsuse Wireshark to detect an anomalous or potentially dangerous eventimport and export captured traffic in the PCAP format using Wiresharksummarize the key concepts covered in this course
IN THIS COURSE
-
1.Course Overview1m 26sUP NEXT
-
2.NetFlow and IPFIX Collection4m 20s
-
3.NetFlow and Baselining3m 12s
-
4.The Benefit of Audit Logs5m 42s
-
5.Application Access Control4m 10s
-
6.Tapping Network Traffic3m 49s
-
7.Emitting and Aggregating Logs4m 17s
-
8.Queueing Events5m 53s
-
9.Network Management with SNMP4m 22s
-
10.Packet Capturing with PCAP3m 50s
-
11.Whitelisting Applications5m 29s
-
12.Using Wireshark for Event Detection7m 46s
-
13.Importing and Exporting PCAP4m 6s
-
14.Course Summary1m 16s
EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE
Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.
Digital badges are yours to keep, forever.