Network Security & Traffic Analysis
Deep dive into packet analysis, firewall evasion, and network protocol exploitation.
Curriculum
20 ModulesTCP/IP Deep Dive
The foundation of the internet. Analyzing the TCP, UDP, and IP headers bit by bit.
The OSI Model
Understanding the 7 layers of networking from Physical to Application.
Subnetting & CIDR
Calculating IP ranges, netmasks, and understanding routing prefixes.
Wireshark Fundamentals
Capturing packets, filtering traffic, and following streams.
Address Resolution Protocol (ARP)
How IP addresses map to MAC addresses and ARP Spoofing attacks.
DHCP & DNS
Dynamic IP assignment and domain name resolution protocols.
Network Mapping (Nmap)
Advanced scanning techniques, OS fingerprinting, and NSE scripts.
Firewalls & IDS
How packet filtering works and techniques to evade detection.
Encrypted Traffic Analysis
Identifying malicious patterns in TLS/SSL traffic without decryption.
Wireless Security (WiFi)
WPA2/WPA3 protocols, handshake capture, and cracking.
Routing & Switching
VLANs, trunking, and attacks like VLAN Hopping.
Common Ports & Services
Deep dive into FTP, SSH, Telnet, SMB, RDP, and their vulnerabilities.
Man-in-the-Middle (MitM)
Techniques for intercepting traffic: ARP poisoning, DNS spoofing.
Network Intrusion Detection
Writing Snort/Suricata rules to detect attacks.
VPNs & Tunneling
How VPNs work (IPSec, OpenVPN, WireGuard) and tunneling traffic (ICMP/DNS tunnel).
Network Forensics
Reconstructing files and user activity from PCAP data.
Zero Trust Architecture
Modern network security paradigms: "Never trust, always verify."
Honey Pots & Deception
Setting up traps to detect and analyze attackers.
IoT Security
Analyzing protocols like Zigbee, MQTT, and Bluetooth LE.
Red Team Ops: Pivoting
Using compromised hosts to access internal network segments.