Traffic Analysis Workshop 2018

This is a 1 day workshop that provides a foundation for investigating malicious network traffic. It begins with investigation concepts, using Wireshark, and identifying hosts in network traffic. The workshop then covers characteristics of malware infections and suspicious network traffic. Participants will learn how to determine the root cause of an infection. The workshop concludes with an evaluation in reviewing traffic and drafting an incident report.


  • A laptop with some sort of connectivity to the Internet.
  • Wireshark installed (the most recent version as possible).
  • A basic knowledge of network traffic.

Presented by