Using Wireshark for traffic analysis in digital substations
Boost your IEC 61850 network traffic capturing and analysis efficiency with this course!
Description
This course has been crafted with the aim not just to provide you with the basics of packet sniffing and Wireshark operation, but also to give you the knowledge on Wireshark outstanding features that boost your productivity! In less than 2 hours you will feel confident on using the tool and will make your colleagues ask you how to do this and that in Wireshark.
We will focus on packet sniffing approaches and tools; how to connect to switched network infrastructure to capture required data, including the usage of port mirroring and network TAPs; how to start with Wireshark and its basic settings; how to you use capture and display filters in Wireshark; tips and tricks on working with packets and captures. We will also learn how to analyze digital substation specific communications like Sampled Values, GOOSE and MMS with Wireshark. The theory will be backed up by hands-on session in the end of the course.
The course is recommended for the protection and control engineers, SCADA engineers, OT/IT security engineers and other categories of specialists, dealing with network traffic analysis. Even if you do not work with IEC 61850 and digital substations, this course will be useful for you in regard to analysis of all other types of communications.
What You Will Learn!
- Packet sniffing approaches and tools
- How to connect to switched network infrastructure to capture required data
- How to start with Wireshark and its basic settings
- How to you use capture and display filters in Wireshark
- Tips and tricks on working with packets
- Tips and tricks on working with capture files
- How to analyze GOOSE, Sampled Values and MMS traffic with Wireshark
- Practical examples
Who Should Attend!
- Protection and control engineers
- SCADA engineers
- IT/OT security specialists
- Students