Network Analysis

  1. Foundational Networking Concepts
    1. The OSI Model
      1. Overview and Purpose of the OSI Model
        1. Seven-Layer Architecture
          1. Abstraction and Modularity
            1. Protocol Stack Interaction
            2. Layer 1: Physical
              1. Physical Media Types
                1. Copper Cables
                  1. Fiber Optic Cables
                    1. Wireless Media
                    2. Signaling and Encoding
                      1. Digital Signal Transmission
                        1. Modulation Techniques
                          1. Signal Attenuation
                          2. Network Topologies
                            1. Bus Topology
                              1. Star Topology
                                1. Ring Topology
                                  1. Mesh Topology
                                2. Layer 3: Network
                                  1. IP Addressing and Subnetting
                                    1. IPv4 Address Classes
                                      1. Subnet Masks
                                        1. CIDR Notation
                                          1. IPv6 Addressing
                                          2. Routing and Routers
                                            1. Routing Tables
                                              1. Static Routing
                                                1. Dynamic Routing Protocols
                                                2. ARP and Neighbor Discovery
                                                  1. Address Resolution Protocol
                                                    1. IPv6 Neighbor Discovery
                                                      1. ARP Cache Management
                                                    2. Layer 4: Transport
                                                      1. TCP vs. UDP
                                                        1. Connection-oriented vs. Connectionless
                                                          1. Reliability Mechanisms
                                                            1. Performance Characteristics
                                                            2. Ports and Sockets
                                                              1. Port Number Ranges
                                                                1. Socket Programming Concepts
                                                                  1. Port Multiplexing
                                                                  2. Flow Control and Congestion Control
                                                                    1. Sliding Window Protocol
                                                                      1. Congestion Avoidance Algorithms
                                                                        1. Buffer Management
                                                                      2. Layer 5: Session
                                                                        1. Session Establishment and Termination
                                                                          1. Session Initiation
                                                                            1. Session Maintenance
                                                                              1. Session Cleanup
                                                                              2. Session Management Protocols
                                                                                1. NetBIOS Sessions
                                                                                  1. RPC Sessions
                                                                                    1. SQL Sessions
                                                                                  2. Layer 6: Presentation
                                                                                    1. Data Encoding and Translation
                                                                                      1. Character Encoding
                                                                                        1. Data Format Conversion
                                                                                          1. Endianness Handling
                                                                                          2. Encryption and Compression
                                                                                            1. Symmetric Encryption
                                                                                              1. Asymmetric Encryption
                                                                                                1. Data Compression Algorithms
                                                                                              2. Layer 7: Application
                                                                                                1. Application Protocols
                                                                                                  1. Protocol Design Principles
                                                                                                    1. Client-Server Architecture
                                                                                                      1. Peer-to-Peer Architecture
                                                                                                      2. User Interfaces
                                                                                                        1. Command Line Interfaces
                                                                                                          1. Graphical User Interfaces
                                                                                                            1. Web-based Interfaces
                                                                                                        2. The TCP/IP Model
                                                                                                          1. Comparison with OSI Model
                                                                                                            1. Four-Layer vs. Seven-Layer Model
                                                                                                              1. Layer Mapping
                                                                                                                1. Practical Implementation Differences
                                                                                                                2. Internet Layer
                                                                                                                  1. IPv4 Addressing
                                                                                                                    1. Address Classes
                                                                                                                      1. Private Address Ranges
                                                                                                                        1. Network Address Translation
                                                                                                                        2. IPv6 Addressing
                                                                                                                          1. Address Types
                                                                                                                            1. Address Autoconfiguration
                                                                                                                              1. Transition Mechanisms
                                                                                                                              2. Routing Protocols
                                                                                                                                1. Distance Vector Protocols
                                                                                                                                  1. Path Vector Protocols
                                                                                                                                2. Transport Layer
                                                                                                                                  1. TCP Functions
                                                                                                                                    1. Reliable Data Delivery
                                                                                                                                      1. Connection Management
                                                                                                                                        1. Error Recovery
                                                                                                                                        2. UDP Functions
                                                                                                                                          1. Datagram Delivery
                                                                                                                                            1. Minimal Overhead
                                                                                                                                              1. Real-time Applications
                                                                                                                                            2. Application Layer
                                                                                                                                              1. Common Application Protocols
                                                                                                                                                1. HTTP and HTTPS
                                                                                                                                                  1. FTP and SFTP
                                                                                                                                                    1. SMTP and POP3
                                                                                                                                                      1. DNS and DHCP
                                                                                                                                                  2. Core Network Components
                                                                                                                                                    1. Packets, Frames, and Segments
                                                                                                                                                      1. Data Unit Terminology
                                                                                                                                                        1. Structure and Headers
                                                                                                                                                          1. Header Fields
                                                                                                                                                            1. Payload Data
                                                                                                                                                              1. Trailer Information
                                                                                                                                                              2. Encapsulation and Decapsulation
                                                                                                                                                                1. Protocol Data Units
                                                                                                                                                                  1. Header Addition Process
                                                                                                                                                                    1. Header Removal Process
                                                                                                                                                                  2. MAC Addresses
                                                                                                                                                                    1. Address Formats
                                                                                                                                                                      1. 48-bit Address Structure
                                                                                                                                                                        1. Organizationally Unique Identifier
                                                                                                                                                                          1. Locally Administered Addresses
                                                                                                                                                                          2. Address Resolution
                                                                                                                                                                            1. ARP Process
                                                                                                                                                                              1. ARP Table Management
                                                                                                                                                                                1. Gratuitous ARP
                                                                                                                                                                              2. IP Addresses
                                                                                                                                                                                1. IPv4 Addressing
                                                                                                                                                                                  1. Address Structure
                                                                                                                                                                                    1. Classful Addressing
                                                                                                                                                                                      1. Classless Addressing
                                                                                                                                                                                      2. IPv6 Addressing
                                                                                                                                                                                        1. Address Format
                                                                                                                                                                                          1. Address Types
                                                                                                                                                                                            1. Address Scopes
                                                                                                                                                                                            2. Subnetting and CIDR
                                                                                                                                                                                              1. Subnet Calculation
                                                                                                                                                                                                1. Variable Length Subnet Masks
                                                                                                                                                                                                  1. Supernetting
                                                                                                                                                                                                2. Ports and Sockets
                                                                                                                                                                                                  1. Well-known Ports
                                                                                                                                                                                                    1. System Ports (0-1023)
                                                                                                                                                                                                      1. Common Service Ports
                                                                                                                                                                                                        1. Port Assignment Authority
                                                                                                                                                                                                        2. Ephemeral Ports
                                                                                                                                                                                                          1. Dynamic Port Allocation
                                                                                                                                                                                                            1. Port Range Configuration
                                                                                                                                                                                                              1. Port Exhaustion Issues
                                                                                                                                                                                                              2. Socket Communication
                                                                                                                                                                                                                1. Socket Types
                                                                                                                                                                                                                  1. Socket States
                                                                                                                                                                                                                    1. Socket Programming
                                                                                                                                                                                                                2. Key Protocols
                                                                                                                                                                                                                  1. Ethernet
                                                                                                                                                                                                                    1. Frame Structure
                                                                                                                                                                                                                      1. Preamble and Start Frame Delimiter
                                                                                                                                                                                                                        1. Destination and Source Addresses
                                                                                                                                                                                                                          1. EtherType Field
                                                                                                                                                                                                                            1. Frame Check Sequence
                                                                                                                                                                                                                            2. Collision Domains
                                                                                                                                                                                                                              1. CSMA/CD Operation
                                                                                                                                                                                                                                1. Collision Detection
                                                                                                                                                                                                                                  1. Backoff Algorithms
                                                                                                                                                                                                                                2. Address Resolution Protocol
                                                                                                                                                                                                                                  1. ARP Requests and Replies
                                                                                                                                                                                                                                    1. ARP Message Format
                                                                                                                                                                                                                                      1. Broadcast and Unicast ARP
                                                                                                                                                                                                                                        1. ARP Cache Timeout
                                                                                                                                                                                                                                        2. ARP Spoofing
                                                                                                                                                                                                                                          1. Attack Mechanisms
                                                                                                                                                                                                                                            1. Detection Methods
                                                                                                                                                                                                                                              1. Prevention Techniques
                                                                                                                                                                                                                                            2. Internet Protocol
                                                                                                                                                                                                                                              1. IPv4 Header Fields
                                                                                                                                                                                                                                                1. Version and Header Length
                                                                                                                                                                                                                                                  1. Type of Service
                                                                                                                                                                                                                                                    1. Total Length
                                                                                                                                                                                                                                                      1. Identification and Flags
                                                                                                                                                                                                                                                        1. Time to Live
                                                                                                                                                                                                                                                          1. Protocol Field
                                                                                                                                                                                                                                                            1. Header Checksum
                                                                                                                                                                                                                                                              1. Source and Destination Addresses
                                                                                                                                                                                                                                                              2. IPv6 Header Fields
                                                                                                                                                                                                                                                                1. Version and Traffic Class
                                                                                                                                                                                                                                                                  1. Flow Label
                                                                                                                                                                                                                                                                    1. Payload Length
                                                                                                                                                                                                                                                                      1. Next Header
                                                                                                                                                                                                                                                                        1. Hop Limit
                                                                                                                                                                                                                                                                          1. Source and Destination Addresses
                                                                                                                                                                                                                                                                        2. Internet Control Message Protocol
                                                                                                                                                                                                                                                                          1. Echo Requests and Replies
                                                                                                                                                                                                                                                                            1. Ping Operation
                                                                                                                                                                                                                                                                              1. Echo Message Format
                                                                                                                                                                                                                                                                                1. Round-Trip Time Calculation
                                                                                                                                                                                                                                                                                2. Error Messages
                                                                                                                                                                                                                                                                                  1. Destination Unreachable
                                                                                                                                                                                                                                                                                    1. Time Exceeded
                                                                                                                                                                                                                                                                                      1. Parameter Problem
                                                                                                                                                                                                                                                                                        1. Redirect Messages
                                                                                                                                                                                                                                                                                      2. Transmission Control Protocol
                                                                                                                                                                                                                                                                                        1. Connection Establishment
                                                                                                                                                                                                                                                                                          1. Three-Way Handshake
                                                                                                                                                                                                                                                                                            1. SYN Flood Protection
                                                                                                                                                                                                                                                                                              1. Connection State Machine
                                                                                                                                                                                                                                                                                              2. Flow and Congestion Control
                                                                                                                                                                                                                                                                                                1. Receive Window
                                                                                                                                                                                                                                                                                                  1. Congestion Window
                                                                                                                                                                                                                                                                                                    1. Slow Start Algorithm
                                                                                                                                                                                                                                                                                                      1. Fast Recovery
                                                                                                                                                                                                                                                                                                    2. User Datagram Protocol
                                                                                                                                                                                                                                                                                                      1. Datagram Structure
                                                                                                                                                                                                                                                                                                        1. UDP Header Format
                                                                                                                                                                                                                                                                                                          1. Checksum Calculation
                                                                                                                                                                                                                                                                                                            1. Port Multiplexing
                                                                                                                                                                                                                                                                                                            2. Use Cases
                                                                                                                                                                                                                                                                                                              1. Real-time Applications
                                                                                                                                                                                                                                                                                                                1. Simple Request-Response
                                                                                                                                                                                                                                                                                                                  1. Broadcast and Multicast
                                                                                                                                                                                                                                                                                                                2. Domain Name System
                                                                                                                                                                                                                                                                                                                  1. Name Resolution Process
                                                                                                                                                                                                                                                                                                                    1. Recursive Queries
                                                                                                                                                                                                                                                                                                                      1. Iterative Queries
                                                                                                                                                                                                                                                                                                                        1. DNS Caching
                                                                                                                                                                                                                                                                                                                        2. Record Types
                                                                                                                                                                                                                                                                                                                          1. A and AAAA Records
                                                                                                                                                                                                                                                                                                                            1. CNAME Records
                                                                                                                                                                                                                                                                                                                              1. MX Records
                                                                                                                                                                                                                                                                                                                                1. NS Records
                                                                                                                                                                                                                                                                                                                                  1. PTR Records
                                                                                                                                                                                                                                                                                                                                    1. SOA Records
                                                                                                                                                                                                                                                                                                                                  2. Dynamic Host Configuration Protocol
                                                                                                                                                                                                                                                                                                                                    1. Lease Process
                                                                                                                                                                                                                                                                                                                                      1. DHCP Discover
                                                                                                                                                                                                                                                                                                                                        1. DHCP Offer
                                                                                                                                                                                                                                                                                                                                          1. DHCP Request
                                                                                                                                                                                                                                                                                                                                            1. DHCP Acknowledge
                                                                                                                                                                                                                                                                                                                                            2. DHCP Options
                                                                                                                                                                                                                                                                                                                                              1. Subnet Mask
                                                                                                                                                                                                                                                                                                                                                1. Default Gateway
                                                                                                                                                                                                                                                                                                                                                  1. DNS Servers
                                                                                                                                                                                                                                                                                                                                                    1. Lease Time
                                                                                                                                                                                                                                                                                                                                                  2. Hypertext Transfer Protocol
                                                                                                                                                                                                                                                                                                                                                    1. Request and Response Structure
                                                                                                                                                                                                                                                                                                                                                      1. HTTP Methods
                                                                                                                                                                                                                                                                                                                                                        1. Status Codes
                                                                                                                                                                                                                                                                                                                                                          1. Header Fields
                                                                                                                                                                                                                                                                                                                                                            1. Message Body
                                                                                                                                                                                                                                                                                                                                                            2. Secure Communication
                                                                                                                                                                                                                                                                                                                                                              1. TLS Handshake
                                                                                                                                                                                                                                                                                                                                                                1. Certificate Validation
                                                                                                                                                                                                                                                                                                                                                                  1. Encryption Algorithms

                                                                                                                                                                                                                                                                                                                                                            Previous

                                                                                                                                                                                                                                                                                                                                                            1. Introduction to Network Analysis

                                                                                                                                                                                                                                                                                                                                                            Go to top

                                                                                                                                                                                                                                                                                                                                                            Next

                                                                                                                                                                                                                                                                                                                                                            3. Network Traffic Capture