The Wireshark Certified Analyst (WCA) Complete Course
Officially Endorsed by the Wireshark Foundation
This Wireshark Certified Analyst (WCA) complete course is the go-to training for anyone serious about mastering network traffic analysis. Backed by the Wireshark Foundation, this hands-on course dives deep into using Wireshark to troubleshoot, analyze, and secure network communications.
Throughout this course, you'll dive hands-on into Wireshark to identify and interpret the most common network protocols, including Ethernet, ARP, IPv4, ICMPv4, IPv6, TCP and more. You’ll learn to dissect protocol headers, analyze packet flows, and filter network—skills that are essential for diagnosing issues, improving performance, and securing networks.
What you will learn
Throughout this course, you'll dive hands-on into Wireshark to identify and interpret the most common network protocols, including Ethernet, ARP, IPv4, ICMPv4, IPv6, TCP and more. You’ll learn to dissect protocol headers, analyze packet flows, and filter network—skills that are essential for diagnosing issues, improving performance, and securing networks.
Everything is well organized and follows a logical progression, meaning you'll never feel lost or overwhelmed. I'm genuinely excited to help you unlock the full potential of network analysis, and I've made sure this course has all the tools you'll need to master Wireshark!
Curriculum
- Module Overview (1:09)
- Lesson 1: Where to capture traffic on a network (4:39)
- Lesson 2: Capturing in a switched network - Taps and SPANs (12:14)
- Demo: Configuring a monitor port (1:54)
- Lesson 3: Capturing in a switched network - Endpoint and Inline devices (9:20)
- Demo: Capturing on an endpoint (3:17)
- Lesson 4: Multi-Point Captures (2:33)
- Demo: Multi-Point Captures (6:08)
- Lesson 5: Long-Term Captures (9:26)
- Lesson 6: Capturing Traffic with Command Line Tools (7:49)
- Lesson 7: Running command line tools from a shell (2:32)
- Quiz: Packet Capture
- Lesson 1: The Wireshark Layout (6:27)
- Lesson 2: Capture File Properties (5:05)
- Lesson 3: Configuring a profile (12:11)
- Lesson 4: The Time Column (6:17)
- Lesson 5: Configuring Name Resolution (8:01)
- Lesson 6: Working with Statistics - Conversations and Endpoints (6:09)
- Lesson 7: Wireshark Generated Fields (3:43)
- Lesson 8: Graphing Traffic with Wireshark (2:34)
- Lesson 9: PCAP vs PCAPNG, what is the difference? (2:28)
- Lesson 10: The Search Feature (2:43)
- Quiz: The Wireshark Interface
- Module Overview (0:38)
- Lab: Basic Display Filters (13:34)
- Lesson 1: Capture Filters vs Display Filters (8:02)
- Lesson 2: The Anatomy of a Display Filter (2:47)
- Lesson 3: The Top Five Wireshark Filters (3:01)
- Lesson 4: Special Operators (7:11)
- Lesson 5: Combining Display Filters (5:51)
- Lesson 6: Right-Click Filtering (4:55)
- Lesson 7: Creating Filter Buttons (4:08)
- Lesson 8: Removing some traffic, analyzing the rest (9:52)
- Lab: TryHackMe - Wireshark Filters (3:43)
- Quiz - Filtering Traffic
- Lesson 1: Overview of IP (2:48)
- Lesson 2: IP Address Ranges (3:36)
- Lesson 3: Hands-On with the Internet Protocol (5:59)
- Lesson 4: Network Address Translation and IPv4 (3:38)
- Lab: Following a Packet Through a NAT (7:36)
- Lesson 5: Using the TTL Field in Troubleshooting (6:38)
- Lab: How far away is wireshark.org? (1:21)
- Lesson 6: Using the IP ID Field in Troubleshooting (8:49)
- Lesson 7: Understanding IP Fragmentation (7:05)
- Lesson 8: intro Into IPv6 Headers and Address Ranges (7:33)
- Quiz: IPv4 and IPv6 Analysis
- Lesson 1: UDP Overview (2:26)
- Lesson 2: The UDP Header (3:55)
- Lesson 3: What Applications and Services Use UDP (3:57)
- Lesson 4: UDP Filters and Stream Analysis (1:52)
- Lesson 5: Intro to DHCP (3:45)
- Lesson 6: DORA - Analyzing the Phases of DHCP (9:59)
- Lesson 7: How Does a DHCP Relay Work? (2:25)
- Lab: Analyzing a DHCP Relay (10:19)
- Lesson 8: Renewing a DHCP Lease (2:46)
- Lesson 9: When DHCP Fails - APIPA (5:33)
- UDP/DHCP Module Overview (0:33)
- Quiz: UDP and DHCP Analysis
- Lesson 1: What is DNS? (1:17)
- Lesson 2: How Does DNS Work? (4:22)
- Lesson 3: Analyzing DNS Requests and Response Times (11:13)
- Lesson 4: Common DNS Record Types (5:25)
- Lab: What happened here? (3:34)
- Lesson 5: Finding When the User Connects to an Application (7:37)
- DNS Review (0:48)
- Quiz: Analyzing DNS
- Lesson 1: The Transmission Control Protocol (2:05)
- Lesson 2: Analyzing the TCP Handshake (20:17)
- Lab: Capturing the TCP Handshake (2:39)
- Lesson 3: Sequence and Acknowledgement Numbers (12:40)
- Lab: More Practice with Seq and Ack Numbers (9:15)
- Lesson 4: Understanding TCP Options (7:58)
- Lab: Analyzing Multi-Point Captures (9:30)
- Lesson 5: MSS vs MTU, What's the Difference? (3:01)
- Lesson 6: Tearing Down TCP Connections - FINs and Resets (13:05)
- Lab: Lots of Resets - What's going on? (6:11)
- TCP Summary (0:47)
- Quiz: Intro to TCP
- Module Overview: What are "Next Steps"? (0:44)
- Lesson 1: TCP Theory - Retransmissions (9:59)
- Lab: Hands-On with Retransmissions (22:39)
- Lab: How many packets went missing? (3:59)
- Lab: Where is the packet loss? (13:17)
- Lesson 2: TCP Theory - The Receive Window (11:53)
- Lab: The Dreaded "TCP Window Full" (8:59)
- Lab: TCP Zero Windows (6:54)
- Lesson 3: Are these packets too big? TCP Segmentation (2:57)
- Lesson 4: Advanced TCP Filters, Timestamps, Streams and Analysis Flags (15:37)
- Lesson 5: Follow TCP Stream (3:14)
- Lesson 6: Export Objects (2:28)
- Lesson 7: Visualizing TCP with Stream Graphs (7:01)
- Module Summary (1:31)
- Quiz: TCP Next Steps
Meet Chris
Chris Greer is a seasoned network analyst and a dedicated Wireshark educator with an extensive background in network troubleshooting and cybersecurity forensics. With years of hands-on experience in network analysis, Chris brings a unique blend of real-world and theory-based content to the classroom.
As the instructor for the "Official Wireshark Certified Network Analyst – The Complete Course," Chris brings a wealth of knowledge and enthusiasm to his teaching. His connection to the course material is not merely academic; it is born out of countless hours of real-world application and a sincere commitment to sharing best practices with the next generation of analysts.
In-Depth
Mastering Network Troubleshooting with Wireshark
Hands-On Labs
From Beginner to Expert in Network Analysis
Practical
Hands-On Techniques for Efficient Network Diagnostics