Using Wireshark For Traffic Analysis In Digital Substations

Boost your network traffic capturing and analysis efficiency with this course!

What you'll learn

Packet sniffing approaches and tools

How to connect to switched network infrastructure to capture required data

How to start with Wireshark and its basic settings

How to you use capture and display filters in Wireshark

Tips and tricks on working with packets

Tips and tricks on working with capture files

How to analyze GOOSE, Sampled Values and MMS traffic with Wireshark

Practical examples

Requirements

Basic knowledge of Local Area Networks infrastructure and operation

Description

This course has been crafted with the aim not just to provide you with the basics of packet sniffing and Wireshark operation, but also to give you the knowledge on Wireshark outstanding features that boost your productivity! In less than 2 hours you will feel confident on using the tool and will make your colleagues ask you how to do this and that in Wireshark. We will focus on packet sniffing approaches and tools; how to connect to switched network infrastructure to capture required data, including the usage of port mirroring and network TAPs; how to start with Wireshark and its basic settings; how to you use capture and display filters in Wireshark; tips and tricks on working with packets and captures. We will also learn how to analyze digital substation specific communications like Sampled Values, GOOSE and MMS with Wireshark. The theory will be backed up by hands-on session in the end of the course. The course is recommended for the protection and control engineers, SCADA engineers, OT/IT security engineers and other categories of specialists, dealing with network traffic analysis. Even if you do not work with IEC 61850 and digital substations, this course will be useful for you in regard to analysis of all other types of communications.

Overview

Section 1: Introduction and contents overview

Lecture 1 Introduction and contents overview

Section 2: Introduction to packet sniffing and basics of communication protocols

Lecture 2 Introduction to packet sniffing and basics of communication protocols

Section 3: Making right connections to start sniffing in switched environment

Lecture 3 Making right connections to start sniffing in switched environment

Section 4: Start capturing with Wireshark and manage its basic settings

Lecture 4 Start capturing with Wireshark and manage its basic settings

Section 5: Using Filters

Lecture 5 Using Filters

Section 6: Working with packets

Lecture 6 Working with packets

Section 7: Working with capture files

Lecture 7 Working with capture files

Section 8: Digital substation traffic capture analysis

Lecture 8 Digital substation traffic capture analysis

Section 9: Practical demonstration

Lecture 9 Practical demo with Wireshark

Protection and control engineers,SCADA engineers,IT/OT security specialists,Students