2026-07-21 –, Hermitage D | Classroom
The Wireshark Certified Analyst exam is not an easy certification to take, especially if your knowledge about the details of the TCP protocol is somewhat shaky. In this talk we'll take a look at the aspects mentioned in the WCA curriculum and discuss them together. The goal is to make sure you understand what you need to bring to the exam and help you identify the areas where you might have to improve your skill analyzing TCP to achieve the WCA status.
Jasper is the Head of the Computer Security Incident Response Team (CSIRT) at G Data CyberDefense in Bochum, Germany. In that role he is running a team of computer/network/memory forensics experts as well as a couple of malware reverse engineers and a number of Incident Handlers. The CSIRT helps customers that have been compromised (A.K.A. "hacked"), mostly with the attacker's intent of preparing/performing a ransomware extortion.
Jasper's official role at the G Data CSIRT is "Principal Network Security Specialist". He has over 20 years of experience in computer network analysis and network forensics, and has forgotten more about network protocols than most people will ever learn (Token Ring, ATM, some serial stuff). In previous employments he wrote and taught a number of Ethereal & Wireshark 3-5 day classes as well as official VMware classes, and Hacking courses.
Jasper is a Wireshark Certified Analyst (WCA #2) and member of the board of directors of the Wireshark Foundation.