Explain the concepts and procedures associated with analyzing network traffic by addressing the following:
Explain the differences and similarities between Wire shark and Net Witness.
Explain the steps in the TCP three-way handshake.
Describe the process for determining Wire shark network traffic packet counts.
Explain the relevance of protocol analyzers to information security professionals.
Explain baseline analysis.
What is it?
What is it used for?
Explain the difference between internal and external network traffic.
Describe the difference between TCP and UDP.
