Network Analysis with Arkime

Focused View

Josh Stroschein

45:33

173 View

Exercise Files

network-analysis-arkime.zip

Module 1 - Course Overview

1. Course Overview.mp4

01:18

Module 2 - Identifying Initial Access, Command and Control, and Data Exfiltration with Arkime

1. Getting Started with Arkime.mp4

06:56

2. Analyzing Phishing Traffic.mp4

10:49

3. Identifying Malware Command and Control.mp4

10:35

4. Developing Techniques for Detecting Data Exfiltration.mp4

08:56

5. Detecting Malware Use of TLS Connections.mp4

05:19

Module 3 - Resources

1. Additional Resources and Recommendations.mp4

01:40

Description

Analyzing network traffic is an important step in developing a proactive threat hunting program. This course will teach you how to perform network traffic analysis using Arkime to find threats in your network.

What You'll Learn?

Finding undetected threats in your network through proactive network analysis requires the right tools. In this course, Network Analysis with Arkime, you’ll learn how to utilize Arkime to detect anomalous or malicious network traffic in an enterprise environment. First, you'll gain insight into how to detect common malware delivery patterns. Next, you’ll learn how to use Arkime to identify malware command and control. Finally, you’ll utilize the many features of Arkime to identify data exfiltration. When you’re finished with this course, you’ll have the skills and knowledge to detect these techniques using Arkime.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Network Engineering

Network Monitoring

Josh Stroschein

Instructor's Courses

Josh is an experienced malware analyst and reverse engineer and has a passion for sharing his knowledge with others. He is a reverse engineer at Google (Chronicle), where he focuses on tackling the latest threats. Josh is an accomplished trainer, providing training at places such as Ring Zero, BlackHat, Defcon, Toorcon, Hack-In-The-Box, Suricon, and other public and private venues. Josh is also an author on Pluralsight, where he publishes content around malware analysis, reverse engineering, and other security related topics.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.