CBROPS: File Extraction Event Artifacts & Regular Expressions

In this course you;ll learn how to extract files from a TCP stream from a PCAP file using Wireshark. Next you;ll explore how to identify intrusion elements from a given pcap file using Wireshark. You;ll learn how to interpret common artifacts from events for an alert using the Cisco FMC. Finally you;ll examine how to use basic regular expressions with grep and the Cisco CLI. This course is one of a collection that prepares learners for the 200-201: Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) exam.