2026-07-22 –, Hermitage D | Classroom
It's not easy to spot attacks in network packets, mostly because there's so many of them (packets, that is), resulting in the Signal-to-Noise ratio is extremely high. But there are also additional challenges, like encryption or attackers simply using protocols that administrators use themselves. We'll take a look at a number of real world scenarios and learn about various attack patterns and how to find/recognize them.
Jasper is the Head of the Computer Security Incident Response Team (CSIRT) at G Data CyberDefense in Bochum, Germany. In that role he is running a team of computer/network/memory forensics experts as well as a couple of malware reverse engineers and a number of Incident Handlers. The CSIRT helps customers that have been compromised (A.K.A. "hacked"), mostly with the attacker's intent of preparing/performing a ransomware extortion.
Jasper's official role at the G Data CSIRT is "Principal Network Security Specialist". He has over 20 years of experience in computer network analysis and network forensics, and has forgotten more about network protocols than most people will ever learn (Token Ring, ATM, some serial stuff). In previous employments he wrote and taught a number of Ethereal & Wireshark 3-5 day classes as well as official VMware classes, and Hacking courses.
Jasper is a Wireshark Certified Analyst (WCA #2) and member of the board of directors of the Wireshark Foundation.