Home‎ > ‎

CIS 140NA

Network Analysis using Wireshark

 Time Tuesdays 11:00am - 2:05pm
 Room 829 Aptos Main Campus
 Live Online (Passcode: 515784)
 Archives
 Roll Call
 Lab Open Lab - 2 hours per week TBA
 Units 3
 Prerequisites  CIS 82 or CIS 83 
 Book Wireshark Network Analysis, Second Edition
 Laura Chappel
 Chappell University ISBN-13: 978-1-893939-94-3
 Status Version 1: Alpha
 Calendar, assignments subject to change 
 Links Canvas 

Course Calendar

DateTopicReadingLab Due
January 26, 2016 Introduction Chapter 1  
February 2, 2016 Wireshark Chapter 2 Lab 1: Get Access 
February 9, 2016 Capturing Traffic Chapter 3 Lab 2: Capture, Filter and Save 
February 16, 2016 Capturing Traffic Chapter 3 Lab 3: Switch Traffic 
February 23, 2016 Capture Filters Chapter 4 Lab 4: Remote Captures 
March 1, 2016 Preferences Chapter 5 Lab 5: Using Capture Filters 
March 8, 2016 Traffic Analysis Chapters 7 and 8 Lab 6: Preferences 
March 15, 2016 Display Filters Chapter 9 Lab 7: Record a Baseline 
March 22, 2016 Midterm  Lab 8: Using Display Filters 
March 29, 2016 Spring Break   
April 5, 2016 Stream Reassembly Chapter 10  
April 12, 2016 TCP/IP Analysis and Expert Mode Chapters 13 and 14 Lab 9: TCP Connections 
April 19, 2016 DNS Chapter 15 Lab 10: TCP Analysis 
April 26, 2016 ARP, ND, SLAAC and DHCP Chapters 16 and 22 Lab 11: Discovering DNS 
May 3, 2016 TCP Flow Analysis Chapter 21 Lab 12: Infrastructure Protocols 
May 10, 2016 WiFi Chapters 26 Extra Credit Lab: Penetrating SSL 
May 19, 2016 CIS-140NA Final Spring 2016 Chapter 23  
Showing 17 items from page CIS 140NA Calendar sorted by Date. View more »

Video Archives



Course Description
Teaches practical network management skills using the Wireshark network analyzer. Provides a logical troubleshooting approach to capturing and analyzing data frames. Teaches to effectively troubleshoot, maintain, optimize, and monitor network traffic to ensure peak network performance. May be offered in a Distance-Learning Format.

Student Learner Outcomes
  1. Demonstrate analytical and problem-solving skills using a protocol analyzer to determine network performance issues.
  2. Utilize critical thinking skills to effectively analyze multiple protocols for troubleshooting networks.
  3. Evaluate and interpret data traffic flows to provide the information needed to make proper network management decisions.
Objectives
  1. Define and perform protocol analysis tasks for network maintenance, troubleshooting and optimization.
  2. Perform application analysis tasks related to network performance.
  3. Define and implement security tasks resulting from detailed network analysis.
  4. Perform analysis on HTTP traffic, display HTTP statistics and graph HTTP traffic flows.
  5. Perform analysis on FTP traffic, display HTTP statistics and graph HTTP traffic flows.
  6. Perform analysis on DHCP traffic, dissect DHCP packet structure, and display BOOTP-DHCP statistics.
  7. Perform analysis on email traffic, dissect POP communications and SMTP packet structure.
  8. Define and create baselines for normal traffic patterns including broadcast, multicasts, name resolution, and throughput tests.
  9. Perform analysis on TCP traffic, display TCP statistics and graph TCP traffic flows.
  10. Perform analysis on suspect traffic identifying vulnerabilities and performing solutions.
  11. Detect scanning and discovery processes for ARP, ICMP and various UDP/TCP port scans.
  12. Perform analysis on IO rates and TCP trends.
Grading Policy
  • 60% Labs and homework
  • 20% Midterm
  • 20% Final
TBA (To Be Arranged) Lab Hours
This course meets weekly at the times shown in the Cabrillo Schedule of Classes and above. In addition each student is required to spend lab time every week in either the CIS Lab (room 830) or online using the CIS VLab. Students may choose the time and day for their TBA Lab Hours where they will work on lab assignments designed to give them practical hands-on experience and continue the learning process. These TBA lab hours are required, tracked, and graded. It is the student’s responsibility to complete the TBA lab hours, which start on Week 1 of the term, and record their attendance. Tip: A great time to do TBA lab hours is in the CIS Lab when the instructor is there. If that is not possible, questions can always be posted on the electronic help forum which is monitored by the instructor.

Late Work Will Not Be Accepted
Homework is due one hour before class on the calendar date where the homework is listed. Please complete all assignments on time as they will not be accepted if they are late. This will help both the student and instructor keep the class moving and avoid log jams at the end of the term. If an assignment is not complete by the deadline it is better to make an incomplete submission for partial credit than no submission at all. There may be extra credit work for students needing extra points.

Classroom Etiquette
It is important to have an effective, distraction-free classroom environment for learning. To minimize distractions all cell-phones should be turned off or at least silenced. Never carry on conversations during the lecture as this is probably the most annoying distraction possible to those sitting nearby.

For students in the physical classroom, computers can be turned on for viewing lecture slides locally, Google-ing related technical information, and doing classroom exercises. A student's full attention is desired so the computers should not be used during lecture for email or anything that would distract them or others from the material being taught.

For students in the virtual classroom, use the "Raise hand" icon in CCC Confer to let the instructor know you have a question. The chat window can be used to ask questions and communicate with the instructor or other classmates. For students dialing in please use *6 on your phone to mute/unmute your line so background noises in your location don't distract the class.

Please plan on coming to all classes. If class will be missed let the instructor know ahead of time. It is the student's responsibility to get any missed material or information from other classmates (the forum is a good way to do this). Please note that being disruptive is grounds for being dropped from the class by the instructor.

Academic Conduct
Instructors at Cabrillo will not tolerate any forms of academic dishonesty. We do not accept remarkably similar assignments. Students who engage in violations of academic integrity (cheating, plagiarizing print or electronic sources, copying computer files, web site content) as outlined in Cabrillo's "Student Rights and Responsibilities" document are subject to disciplinary action by the instructor including receiving an "F" for the assignment, being dropped from the course with a "W" or being issued an "F" for the course.

Special Learning Needs
Veterans or students with disabilities, including "invisible" disabilities such as chronic diseases, learning, and psychological disabilities, are encouraged to explain their needs and appropriate accommodations to the instructor during office hours. Please bring a verification of your disability from the Learning Skills or DSPS offices and a counselor or specialist's recommendations for accommodating your needs.

As required by the Americans with Disabilities Act (ADA), accommodations are provided to insure equal opportunity for students with verified disabilities. If you need assistance with an accommodation, please contact the Learning Skills Program at 831-479-6220 (for students with learning disabilities and attention deficit disorders) or Disabled Student Programs and Services (DSPS) at 831-479-6379 or 831-479-6421 (TTY) to make arrangements as soon as possible.

Missing Classes and Drops
It is the student's responsibility to officially withdraw from classes. If you miss more than two classes or two lab assignments, the instructor may drop you from the course enrollment unless prior arrangements have been made and agreed to.
ċ
Iterative DNS Query TCP.pcapng
(3k)
Michael Matera,
May 4, 2015, 8:32 PM
ċ
Iterative DNS Query.pcapng
(5k)
Michael Matera,
May 4, 2015, 8:32 PM
ċ
Nice Trace Graph.pcapng
(1043k)
Michael Matera,
May 3, 2016, 7:41 AM
ċ
PortScanCapture.pcapng
(18k)
Michael Matera,
Feb 16, 2016, 8:54 AM
ċ
TCP Flow Analysis.pcapng.gz
(623k)
Michael Matera,
Apr 12, 2016, 8:23 AM
ċ
cfilters
(1k)
Michael Matera,
Mar 3, 2015, 9:58 AM
Comments