SharkFest’18 Retrospective

June 25th - 28th, 2018
Computer History Museum | Mountain View, California

Keynote Presentations

Twenty Years Of Code And Community

Gerald Combs

Wireshark: The Microscope of the 21st Century

Usman Muzaffar

Blogs

SharkFest US 2018 Review by Denise Fishburne

SharkBytes

Tuesday Classes

• 01: In the Packet Trenches - (Part 1) by Hansang Bae

• Presentation Video (1:16:46)

• 02: An Introduction to Wireshark: Rookie to Veteran in 2 sessions (Part 1) by Betty DuBois

• 03: Writing a Wireshark Dissector: 3 ways to eat bytes by Graham Bloice

• Presentation Video (1:14:11)

• 04: In the Packet Trenches - (Part 2) by Hansang Bae

• Presentation Video (1:14:11)

• 05: An Introduction to Wireshark: Rookie to Veteran in 2 sessions (Part 2) by Betty DuBois

• 06: Using more of the features of Wireshark to write better dissectors by Richard Sharpe

• 07: Using Wireshark to solve real problems for real people: Step by-step case studies in packet analysis by Kary Rogers

• Presentation Video (1:12:53)

• 08: Traffic analysis of cryptocurrency & blockchain networks by Brad Palm and Brian Greunke

• 09: Developer Lightning Talks by Wireshark Core Developers

• 10: Hands-on analysis of multi-point captures by Christian Landström

• 11: Augmenting packet capture with contextual meta-data: the what, why, and how by Stephen Donnelly

• Presentation Video (51:43)

• 12: Point and Shoot Packet! Point your packet effectively & Shoot the trouble with Wireshark by Megumi Takeshita

• 13: Practical Tracewrangling: exploring capture file manipulation/extraction scenarios by Jasper Bongertz

• Presentation Video (1:31:02)

• 14: BGP is not only a TCP session: Learning about the protocol that holds networks together by Werner Fischer

• Presentation Video (1:00:04)

• 15: How to get 100% of your data off the wire by Greg Zemlin

Wednesday Classes

• 16: TCP - Tips, Tricks, & Traces (Part 1) by Chris Greer

• Presentation Video (1:17:23)

• 17: extcap – Packet capture beyond libpcap/winpcap: bluetooth sniffing, android dumping & other fun stuff! by Roland Knall

• Presentation Video (45:35)

• 18: Generating Wireshark Dissectors: A status report by Richard Sharpe

• Presentation Video (56:11)

• 19: TCP - Tips, Tricks, & Traces (Part 2) by Chris Greer

• Presentation Video (1:11:54)

• 20: Wireshark in the “Real World”: Top ways to use Wireshark in the real world of an IT engineer by Patrick Kinnison

• 21: sFlow: Theory & practice of a sampling technology and its analysis with Wireshark by Simone Maindardi

• Presentation Video (1:10:53)

• 22: Writing a TCP analysis expert system by Jasper Bongertz

• Presentation Video (1:13:37)

• 23: Playing with “MATCHES”: Using regular expressions for fun & profit by Mike Hammond

• Presentation Video (1:21:08)

• 24: Know Abnormal, Find Evil: A Wireshark Beginner’s Guide for the Security Professional by Maher Adib

• Presentation Video (1:17:12)

• 25: A deep dive into SIP: everything you need to know to debug & troubleshoot SIP packets by Betty DuBois

• 26: Analyzing Windows malware traffic with Wireshark by Bradley Duncan

• Presentation Video (1:37:01)

• 27: My TCP ain’t your TCP: Stack behavior back then & today by Simon Lindermann

• Presentation Video (1:13:49)

• 28: The Packet Doctors are In! Packet trace examinations by the experts by Hansang Bae, Jasper Bongertz, Christian Landström, Sake Blok and Kary Rogers

• 29: Baselining with Wireshark to identify & stop unwanted communications by Jon Ford

• Presentation Video (59:51)

• 30: BGP is not only a TCP session: Learning about the protocol that holds networks together by Werner Fischer

• Presentation Video (1:00:04)

Thursday Classes

• 31: Traffic analysis of cryptocurrency & blockchain networks by Brad Palm and Brian Greunke

• Presentation Video (1:21:15)

• 32: We’ll never do it right: A look at security, what we’re doing and how we’re trying to fix things by Mike Kershaw

• Presentation Video (1:26:03)

• 33: Wireshark CLI tools & scripting by Sake Blok

• Presentation Video (1:11:14)

• 34: Patterns in TCP retransmissions: Using Wireshark to better understand the retransmission process by Scott Reid

• Presentation Video (1:11:33)

• 35: Behind the Green Lock: Examining SSL encryption/decryption using Wireshark by Ross Bagurdes

• Presentation Video (1:02:20)

• 36: Wireshark and beyond! Complementing your Wireshark analysis with other open source & low-cost tools by Mike Canney

• 37: Packet monitoring in the days of IoT and Cloud by Luca Deri

• Presentation Video (1:17:09)

• 38: Baselining with Wireshark to identify & stop unwanted communications by Jon Ford

• Presentation Video (59:51)

• 39: Introduction to practical network signature development for open source IDS (Part 1) by Jason Williams and Jack Mott

• 40: Mangling packets on the fly with divert sockets: how to hack a Cisco router ACL by Kary Rogers

• Presentation Video (1:04:33)

• 41: My TCP ain’t your TCP: Stack behavior back then and today by Simon Lindermann

• Presentation Video (1:13:49)

• 42: Introduction to practical network signature development for open source IDS (Part 2) by Jason Williams and Jack Mott

• 43: OPEN FORUM: Aha! Moments in packet analysis by Chris Greer

• 44: Analyzing Windows malware traffic with Wireshark by Bradley Duncan

• Presentation Video (1:37:01)

• 45: Introduction to practical network signature development for open source IDS (Part 3) by Jason Williams and Jack Mott

A Word of Thanks

SharkFest’18 US celebrated the 20th anniversary of the Wireshark project and proved a blazing success thanks to the generous, giving community in attendance. Particular thanks to Gerald Combs and his merry band of core developers for inspiring the many first-time participants by opening with a keynote that illuminated the 20-year history of the project, to Laura Chappell for creating a truly crowd-pleasing Packet Palooza Pub Quiz, to Usman Muzaffar for his thoughtful keynote that explained why Wireshark can be considered the microscope of the 21st century, to instructors who selflessly donated time and wisdom to educate and mentor participants, to sponsors who so generously provided the resources to make the conference possible, to the Computer History Museum Events team for their expert guidance, to tireless caterers who served up varied and delicious daily fare, to Albert our AV Angel, to a staff and volunteer crew who once again went overboard in making the conference as smooth and pleasant an experience as possible for attendees, and to Aaron and Lainey for delighting us all with their golden intelligence!

Host Sponsors

Angel Shark Sponsors

Wireshark Packetpalooza Sponsor

Honorary Sponsors