Analyzing Encrypted PCAP’s with Wireshark Workshop

Category: Wireshark training

Format: Virtual

The realities of modern traffic analysis require interpreting encrypted network traffic correctly. A detailed knowledge of how key protocols such as HTTP can provide valuable insights into what is happening in a suspect traffic capture. This workshop provides an introduction.. read more below

Virtual

duration: 1 day

class size

English

Courses available

12 mei

- 12 mei 2026

- Virtual

- 9.00 - 16.00

- € 895,00

– Specialized software configuration and new Wireshark Profiles to make analysis faster

– Encryption techniques, including SSL / TLS / WEP / WPA.x

– Specialized encrypted traffic analysis techniques using Wireshark 4.x

– Specialized filtering and Analysis techniques, including data traffic reconstruction and viewing

The workshop uses Real-world examples and numerous hands-on exercises to provide field-proven, practical analysis skills. Attendees receive a student guide, including numerous reference files, networking and forensics tools, and a library of reference documents.

This workshop is for Networking, Government, and Security personnel who must develop packet investigation techniques to evaluate encrypted network traffic. Completing this workshop provides these individuals a pathway into the Network and Forensics Analysis field.

Workshop Details:

Introduction and Logistics

Loading the Encryption Analysis Profile

Sample Encrypted Analysis Process

A Key concept: Communication Architectures

Introduction to Wired (Ethernet) Encryption – SSL / TLS

1Ethernet Encryption Overview

How Ethernet Encryption works SSL vs. TLS

Securing HTTP: HTTPS

Emerging Trend: Encrypted DNS

Key Fields to Examine

Introduction to Wireless (WiFi) Encryption – WEP / WPA / WPA2 / WPA3

WiFi Encryption Overview

How WiFi Encryption works WEP vs. WPA.x

WEP & WPA.x – What Packets Are Encrypted?

Key Fields to Examine

Encrypted Analysis Methodologies

Spotting Suspicious Data Flows

Key Wireshark Statistics to Examine

Analysis Aid – A Picture is worth 1024 Words

Key Fields to Examine

Recap of Encrypted Analysis

Student qoutes

" I found Phill to be the best teacher, and I learn so much from him. Thank you Phill"

- Paul Broyd

Course: TCP/IP Analysis and Troubleshooting with Wireshark

"It's sure the most interesting course that i have followed"

- Karin van der Plas

Course: TCP/IP Analysis and Troubleshooting with Wireshark

"It was a very very very interesting course, and done by the top guy"

- Matthew Steenwijk

Course: VoIP Network Analysis

"It was a real pleasure to receive the Wireshark training from a very dedicated trainer"

- Wim de Vries

Course: Voice & Video over IP Network Analysis

"I thought I already knew Wireshark. I was wrong, very wrong"

- Jeroen Valkonet

Course: TCP/IP Analysis and Troubleshooting with Wireshark

"This course is a must have for everyone in IT"

- Johan den Besten

Course: TCP/IP Analysis and Troubleshooting with Wireshark

"Great for network analyses or forensic investigations"

- Sven Schneider

Course: Masterclass – Advanced Network & Intro to Security Analysis

"By far the very best course I ever took"

- Joachim van Doeselaar

Course: TCP/IP Analysis and Troubleshooting with Wireshark

"If there’s a packet, it can be WireSharked!!"

- Elena Petrova

Course: WiFi & Wireless Network Analysis Using Wireshark

"Extremely satisfied with the training. Very helpful instructor and great teaching methods"

- Lars Mikkelsen

T.B.A.