Online Network Forensics Class
Erik Hjelmvik将于2025年2月23日至26日举办在线网络取证培训“Network Forensics for Incident Response”,分析包含黑客和恶意软件流量的PCAP文件。课程时间为每天13:00至17:00 CET(7am至11am EDT),限15人,费用920欧元(早鸟价828欧元)。适合蓝队、事件响应者和执法部门人员参加。 2025-10-20 11:48:1 Author: www.netresec.com(查看原文) 阅读量:18 收藏

Monday, 20 October 2025 05:30:00 (UTC/GMT)


Online Network Forensics Class

Network Forensics for Incident Response

I will teach a live online network forensics training on February 23-26. The full title of the class is Network Forensics for Incident Response, where we will analyze PCAP files containing network traffic from hackers and malware.

The training is split into four interactive sessions running from 13:00 to 17:00 CET (7am to 11am EDT), so that you have the other half of the day free to either practice what you learned in class or catch up with your normal job routine. The number of attendees is limited in order to provide a good environment for taking questions. A maximum of 15 attendees will be accepted. The registration will be closed once we reach this attendee limit.

📅 Dates: February 23-26 (4 days)
⏲️ Time: 13:00 to 17:00 CET (7am to 11am EDT)
💸 Price: € 920 EUR per student (828 EUR if registering before January 31)

The target audience is blue teams, incident responders and SOC analysts. The training has also been greatly appreciated by law enforcement digital forensics investigators who have taken it in the past.

Training Content

We will analyze a 14 GB PCAP data set captured on an Internet connected network with multiple clients, an AD server, a web server, an android tablet and some embedded devices. As you’ve probably guessed, the capture files contain traffic from multiple intrusions by various attackers, including APT style attackers and botnet operators. The initial attack vectors are using techniques like exploitation of web vulnerabilities, spear phishing, a supply chain attack and a man-on-the-side attack! In this training you'll get hands-on experience analyzing PCAP files containing C2 and backdoor protocols, such as Cobalt Strike, TrickBot, njRAT and Meterpreter.

See our training page for more info about the “Network Forensics for Incident Response” class.

To sign up for the class, simply send an email to [email protected] with your name and invoice address. We will then send you a PayPal payment link that you can use to complete your training registration.

Hope to see you there!

Erik H

Cheers,
Erik Hjelmvik
Creator of NetworkMiner and founder of Netresec

Posted by Erik Hjelmvik on Monday, 20 October 2025 05:30:00 (UTC/GMT)

Tags: #Training #network forensics #PCAP

Short URL: https://netresec.com/?b=25A2e4f


文章来源: https://www.netresec.com/?page=Blog&month=2025-10&post=Online-Network-Forensics-Class
如有侵权请联系:admin#unsafe.sh