2.0 -//Pentabarf//Schedule//EN

PUBLISH 7JUZMZ@@conference.wireshark.org

-7JUZMZ

Pre-Conference Class I: Practical Wireshark Skills for IT professionals en

20261102T090000 20261102T170000 080000

Pre-Conference Class I: Practical Wireshark Skills for IT professionals

Level up your Wireshark skills and get ready for Sharkfest! This hands-on course will provide core Wireshark skills for IT pros of all experience levels. Participants will gain a solid understanding of how to use Wireshark to capture, analyze, and troubleshoot network traffic. The course is designed with beginners in mind, but even seasoned packet people will pick up new tips and tricks. PUBLIC CONFIRMED Pre Conference Class https://conference.wireshark.org/sf26eu/talk/7JUZMZ/ Room 1 Ross Bagurdes PUBLISH 7TVPHQ@@conference.wireshark.org

-7TVPHQ

Pre-Conference Class II: WebRTC Network Analysis Masterclass en

20261102T090000 20261102T170000 080000

Pre-Conference Class II: WebRTC Network Analysis Masterclass

## Agenda Which products use WebRTC and how are they different **Call setup in a nutshell** (explained with a capture - we use one very typical capture throughout the course) - What happens before WebRTC kicks in (Signaling, SDP) - Connectivity detection ICE/STUN/TURN - What can I optimize on client side (restrict candidates) **Analyzing the capture** - What AI can tell us about the capture - Go through the setup packet by packet and check the media flows **Media Performance** - UDP vs TCP - Packet loss & delay in a worldwide network **Doing a live capture** - Decrypt signaling - Check a few selected captures **The nasty stuff (and how to deal with it)** - Packet filters - Proxies & Zscaler - VPN & SDWAN - Reconnect times - TURN servers **What's the difference in how the various products use WebRTC** Teams Zoom Webex GotoMeeting Google Meet PUBLIC CONFIRMED Pre Conference Class https://conference.wireshark.org/sf26eu/talk/7TVPHQ/ Room 2 Robert Hess PUBLISH 7JUZMZ@@conference.wireshark.org

-7JUZMZ

Pre-Conference Class I: Practical Wireshark Skills for IT professionals en

20261103T090000 20261103T170000 080000

Pre-Conference Class I: Practical Wireshark Skills for IT professionals

-XBMHVL

SharkFest'26 EUROPE Welcome Dinner & Sponsor Showcase en

20261103T173000 20261103T203000 030000

SharkFest'26 EUROPE Welcome Dinner & Sponsor Showcase

PUBLIC CONFIRMED Dinner https://conference.wireshark.org/sf26eu/talk/XBMHVL/ Room 1 PUBLISH 3PDG9V@@conference.wireshark.org

-3PDG9V

Pre-Conference Class III: The Proof is in the Packets: Network Threat Detection Using Wireshark en

20261103T090000 20261103T170000 080000

Pre-Conference Class III: The Proof is in the Packets: Network Threat Detection Using Wireshark

PUBLIC CONFIRMED Pre Conference Class https://conference.wireshark.org/sf26eu/talk/3PDG9V/ Room 2 Marcelle Lee PUBLISH FH9DSQ@@conference.wireshark.org

-FH9DSQ

Keynote: Things I Love About Wireshark (and maybe a couple of things I don't) en

20261104T090000 20261104T100000 010000

Keynote: Things I Love About Wireshark (and maybe a couple of things I don't)

PUBLIC CONFIRMED Organization https://conference.wireshark.org/sf26eu/talk/FH9DSQ/ Room 1 PUBLISH GW9JQG@@conference.wireshark.org

-GW9JQG

Wireshark With WebBrowser en

20261104T101500 20261104T111500 010000

Wireshark With WebBrowser

You may take the longest time with the Web Browser in your computer, how about using your web browser with Wireshark? The modern web browser have many useful functions to extend Wireshark without any additional cost. In this session you can learn Wireshark enhancement with Web Browser. For example, we can use browser extensions for Wireshark, we can enrich our Wireshark visualization to make use of the web browser, and so on. PUBLIC CONFIRMED Presentation https://conference.wireshark.org/sf26eu/talk/GW9JQG/ Room 1 Megumi Takeshita PUBLISH NYHFS7@@conference.wireshark.org

-NYHFS7

Analysis of low level protocols en

20261104T113000 20261104T123000 010000

Analysis of low level protocols

In this session we will focus on some protocols not always well-known but very useful and even indispensable. We will mainly cover ARP, ICMP, DHCP, Spanning Tree. We will see how Wireshark can help us to analyze and troubleshoot such protocols. It can also be useful to detect some hostile actions like spoofing and poisoning with some examples involving ARP, Neighbor discovery, DHCP. PUBLIC CONFIRMED Presentation https://conference.wireshark.org/sf26eu/talk/NYHFS7/ Room 1 Jean-Paul ARCHIER PUBLISH R9PZDM@@conference.wireshark.org

-R9PZDM

Transformers in the Wire: Advanced DPI Fingerprinting and AI for Stealth VPN Detection en

20261104T133000 20261104T143000 010000

Transformers in the Wire: Advanced DPI Fingerprinting and AI for Stealth VPN Detection

PUBLIC CONFIRMED Presentation https://conference.wireshark.org/sf26eu/talk/R9PZDM/ Room 1 Luca Deri Daniele Sartiano PUBLISH R8R98B@@conference.wireshark.org

-R8R98B

TLS and Friends: The Protocol Family en

20261104T144500 20261104T154500 010000

TLS and Friends: The Protocol Family

TLS is everywhere, and most people assume that means "encrypted, end of story." But TLS isn't one protocol. It's a family, and each member leaves a different footprint on the wire. This talk is a tour of that family through Wireshark, built around a single idea: encryption hides content, not behaviour. We'll meet the relatives one capture at a time. TLS 1.2 and 1.3, mutual TLS, STARTTLS, EAP-TLS tucked inside your WiFi login, DTLS over UDP, and QUIC reinventing the stack. Each one handles the same trade-off a little differently, and each leaves a different story on the wire. Some give away more than their designers intended. Some look completely opaque until you know where to point Wireshark. One or two may change how comfortable you feel about traffic you'd assumed was private. The thread running through all of it is what you can still read without any keys at all, and how, as the plaintext shrinks version by version, the things that remain become more diagnostic, not less. We'll finish where the family is heading next: the post-quantum handshake you can already capture in today's browsers, and what it's quietly doing to the very first packet you send. PUBLIC CONFIRMED Presentation https://conference.wireshark.org/sf26eu/talk/R8R98B/ Room 1 Katherine Leese PUBLISH PDW7AX@@conference.wireshark.org

-PDW7AX

Sponsor Technology Showcase Reception and Dinner en

20261104T180000 20261104T210000 030000

Sponsor Technology Showcase Reception and Dinner

PUBLIC CONFIRMED Dinner https://conference.wireshark.org/sf26eu/talk/PDW7AX/ Room 1 PUBLISH AX3RJX@@conference.wireshark.org

-AX3RJX

Corporate encryption challenges en

20261104T101500 20261104T111500 010000

Corporate encryption challenges

PUBLIC CONFIRMED Presentation https://conference.wireshark.org/sf26eu/talk/AX3RJX/ Room 2 André Luyer PUBLISH QFMVBK@@conference.wireshark.org

-QFMVBK

Does it Matter? en

20261105T101500 20261105T111500 010000

Does it Matter?

PUBLIC CONFIRMED Presentation https://conference.wireshark.org/sf26eu/talk/QFMVBK/ Room 1 Tom Cordemans PUBLISH 7N8Q9Q@@conference.wireshark.org

-7N8Q9Q

The Packet Doctors are in! Packet trace examinations with the experts en

20261105T130000 20261105T143000 013000

The Packet Doctors are in! Packet trace examinations with the experts

PUBLIC CONFIRMED Packetdoctors Session https://conference.wireshark.org/sf26eu/talk/7N8Q9Q/ Room 1 PUBLISH PDW7AX@@conference.wireshark.org

-PDW7AX

Sponsor Technology Showcase Reception and Dinner en

20261105T180000 20261105T210000 030000

Sponsor Technology Showcase Reception and Dinner

PUBLIC CONFIRMED Dinner https://conference.wireshark.org/sf26eu/talk/PDW7AX/ Room 1 PUBLISH 8ZV9GX@@conference.wireshark.org

-8ZV9GX

SharkBytes en

20261106T090000 20261106T100000 010000

SharkBytes

PUBLIC CONFIRMED Organization https://conference.wireshark.org/sf26eu/talk/8ZV9GX/ Room 1