SharkFest’17 EUROPE Retrospective

November 7-10, 2017
Palacio Estoril Hotel | Portugal

Keynote Presentation

Wireshark and Expectations

Gerald Combs

SharkFest’17 Europe Movie

Blogs

Sharkfest ‘17 Europe - First Thoughts, by Paul Offord
Sharkfest 2017 EU Recap, by Jasper Bongertz

Wednesday Classes

• 01: Hands-on TCP Analysis: Packets, Sequences & Fun, by Jasper Bongertz

• Presentation Video (1:21:19)

• 02: Using Wireshark to Solve Real Problems for Real People: Step-by Step Case Studies in Packet Analysis, by Kary Rogers

• 03: Writing a Wireshark Dissector: 3 Ways to Eat Bytes, by Graham Bloice

• 04: Augmenting Packet Capture with Contextual Meta-Data: the What, Why & How, by Dr. Stephen Donnelly

• Presentation Video (54:58)

• 05: Troubleshooting WLANs (Part 1): Layer 1 & 2 Analysis Using AirPcap, Wi-Spy & Other Tools, by Rolf Leutert

• 06: Generating Wireshark Dissectors from XDR Files: Why you don’t want to write them, by hand, by Richard Sharpe

• 07: SMB/CIFS Analysis: Using Wireshark to Efficiently Analyze & Troubleshoot SMB/CIFS, by Betty DuBois

• 08: Troubleshooting WLANs (Part 2): Troubleshooting WLANs Using 802.11 Management & Control Frames, by Rolf Leutert

• 09: Developer Bytes Lightning Talks–Development Track, by Wireshark Core Developers

• 10: SMB Handshake: The Devil Lies in the Detail, by Eduard Blenkers

• Presentation Video (56:15)

• 11: Wireshark & Time: Accurate Handling of Time when Capturing Frames, by Werner Fischer

• 12: Developer Bytes Lightning Talks–Usage Track, by Wireshark Core Developers

• 13: Practical Tracewrangling: exploring trace file manipulation/extraction scenario, by Jasper Bongertz

• Presentation Video (1:06:08)

• 14: Transmission Control Protocol Illustrated: everything you always wanted to know about TCP* (*but were afraid to ask), by Ulrich Heilmeier

• 15: SSL/TLS Decryption: uncovering secrets, by Peter Wu

Thursday Classes

• 16: My TCP ain’t your TCP: Stack behavior back then, now and in the future, by Simon Lindermann

• Presentation Video (1:07:39)

• 17: Troubleshooting 802.11 with Monitoring Mode: Finding Patterns in your pcap, by Thomas Baudelet

• 18: extcap - Packet Capture beyond libpcap/winpcap: Bluetooth sniffing, Android dumping & other fun stuff, by Roland Knall

• 19: Turning Wireshark into a Traffic Monitoring Tool: Moving from packet details to the big picture, by Luca Deri

• Presentation Video (1:13:11)

• 20: QUIC Dissection: Using Wireshark to Understand QUIC Quickly, by Megumi Takeshita

• PDFSupplemental Files

• 21: Custom LUA dissectors to the rescue in root cause analysis, by Sake Blok

• 22: Troubleshooting Layer 7 with Wireshark: because you don’t know what you don’t know, by Betty DuBois

• 23: The Network is Slow! Finding the Root Cause of Slow Application Performance, by Lorna Robertshaw

• 24: Slow Start & TCP Reno Demystified: How Congestion Avoidance Modes are Working, by Christian Reusch

• 25: Hands-On Analysis of Multi-Point Captures, by Christian Landström

• 26: How Did They Do That? Network Forensic Case Studies, by Phill Shade

• 27: Developer Bytes Lightning Talks–Development Track, by Wireshark Core Developers

• 28: Designing a Requirements-based Packet Capture Strategy, by John Pittle

• Presentation Video (1:18:32)

• 29: The Packet Doctors are In!, by Drs. Bongertz, Landström, Blok

• 30: Developer Bytes Lightning Talks–Usage Track, by Wireshark Core Developers

Friday Classes

• 31: New Ways to Find the Cause of Slow Response Times, by Paul Offord

• Presentation Video (1:10:46)

• 32: Real World Troubleshooting Tales, by Graeme Bailey

• 33: TShark Command Line using PowerShell, by Graham Bloice

• 34: TCP Analysis – When Things Get Complicated, by Jasper Bongertz

• Presentation Video (1:17:16)

• 35: Sneaking in, by the Back Door – Hacking the Non-Standard Layers with Wireshark (BYOD), by Phill Shade

• 36: Introduction to ICS Protocols, by Thomas Bringewald & Lars Seifert