The Tcpdump virtual lab from CybrScore guides the student through using tcpdump to capture network traffic. This will include using various tcpdump options to examine traffic.
This virtual lab is appropriate for intermediate students who have some familiarity with tcpdump and using man pages to learn about command line tools. Once completed, the student will be able to capture and review traffic with tcpdump. The lab will take about 60 minutes to complete if you are unfamiliar with tcpdump. This lab will help develop knowledge of packet-level analysis using appropriate tools, which is important for Cyber Defense Analysts, Cyber Defense Forensics Analysts, and Vulnerability Assessment Analysts. You will also work on developing skill in performing packet-level analysis using appropriate tools - part of the Law Enforcement/Counterintelligence Forensics Analyst work role. Using tcpdump from the command line is a common approach for troubleshooting. Experience with tcpdump will benefit most positions in information technology. This lab is part of the Penetration Tester Career Paths.
- Skills: Capture and review network traffic using tcpdump
- Time limit: 60 min
- Skill level: Intermediate
- Work Roles: Cyber Defense Analyst, Cyber Defense Forensics Analyst, Law Enforcement/Counterintelligence Forensics Analyst, Vulnerability Assessment Analyst