commit f8cdcda28c181d520f54cc50cbe72a876a0d0857
Author: jramos <jramos@jayrad.xyz>
Date:   Sat Feb 28 13:40:49 2026 -0700

    Initial commit: DHCP Deep Dive with Wireshark course structure
    
    Course scaffolding with 8 module placeholders, README overview,
    and 4 diagram PNGs for the Packet Inspector training material.

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..431c208
--- /dev/null
+++ b/README.md
@@ -0,0 +1,39 @@
+# Packet Inspector: DHCP Deep Dive with Wireshark
+
+A comprehensive, hands-on course for network engineers and IT professionals who want to master DHCP troubleshooting using Wireshark packet analysis.
+
+## Course Overview
+
+This course takes you from Wireshark fundamentals through advanced DHCP analysis, covering real-world troubleshooting scenarios that network engineers encounter daily. By the end, you'll be able to capture, filter, and interpret DHCP traffic with confidence.
+
+## Modules
+
+| # | Module | Description |
+|---|--------|-------------|
+| 1 | [Wireshark Fundamentals](modules/01-wireshark-fundamentals.md) | Installation, interface, capture filters, and display filters |
+| 2 | [DHCP Message Flow](modules/02-dhcp-message-flow.md) | The DORA process, lease lifecycle, and packet-level analysis |
+| 3 | [DHCP Options](modules/03-dhcp-options.md) | Common options, vendor-specific extensions, and option overloading |
+| 4 | [DHCP Relay](modules/04-dhcp-relay.md) | Relay agent operation, Option 82, and cross-subnet DHCP |
+| 5 | [Advanced Wireshark](modules/05-advanced-wireshark.md) | Custom columns, profiles, coloring rules, and scripting |
+| 6 | [Troubleshooting](modules/06-troubleshooting.md) | Real-world scenarios, common failures, and systematic debugging |
+| 7 | [DHCPv6](modules/07-dhcpv6.md) | IPv6 address assignment, SLAAC vs DHCPv6, and prefix delegation |
+| 8 | [DHCP Security](modules/08-dhcp-security.md) | DHCP snooping, rogue server detection, and starvation attacks |
+
+## Diagrams
+
+The `diagrams/` folder contains visual aids referenced throughout the modules:
+
+- **Diagram 1** - Lab Topology
+- **Diagram 2** - DHCP DORA with Relay Flow
+- **Diagram 3** - DHCP Packet Structure
+- **Diagram 4** - Troubleshooting Flowchart
+
+## Prerequisites
+
+- Basic networking knowledge (IP addressing, subnetting)
+- A computer with Wireshark installed (v3.x or later recommended)
+- Access to a lab environment or virtual network (GNS3, EVE-NG, or physical gear)
+
+## License
+
+This course material is provided for educational purposes.
diff --git a/diagrams/Diagram1_Lab_Topology.png b/diagrams/Diagram1_Lab_Topology.png
new file mode 100644
index 0000000..9483fec
Binary files /dev/null and b/diagrams/Diagram1_Lab_Topology.png differ
diff --git a/diagrams/Diagram2_DHCP_DORA_Relay.png b/diagrams/Diagram2_DHCP_DORA_Relay.png
new file mode 100644
index 0000000..168181d
Binary files /dev/null and b/diagrams/Diagram2_DHCP_DORA_Relay.png differ
diff --git a/diagrams/Diagram3_DHCP_Packet_Structure.png b/diagrams/Diagram3_DHCP_Packet_Structure.png
new file mode 100644
index 0000000..1cea4f2
Binary files /dev/null and b/diagrams/Diagram3_DHCP_Packet_Structure.png differ
diff --git a/diagrams/Diagram4_Troubleshooting_Flowchart.png b/diagrams/Diagram4_Troubleshooting_Flowchart.png
new file mode 100644
index 0000000..ac247f3
Binary files /dev/null and b/diagrams/Diagram4_Troubleshooting_Flowchart.png differ
diff --git a/modules/01-wireshark-fundamentals.md b/modules/01-wireshark-fundamentals.md
new file mode 100644
index 0000000..f1ed44d
--- /dev/null
+++ b/modules/01-wireshark-fundamentals.md
@@ -0,0 +1 @@
+# Module 1: Wireshark Fundamentals
diff --git a/modules/02-dhcp-message-flow.md b/modules/02-dhcp-message-flow.md
new file mode 100644
index 0000000..499b9a0
--- /dev/null
+++ b/modules/02-dhcp-message-flow.md
@@ -0,0 +1 @@
+# Module 2: DHCP Message Flow
diff --git a/modules/03-dhcp-options.md b/modules/03-dhcp-options.md
new file mode 100644
index 0000000..ff037c7
--- /dev/null
+++ b/modules/03-dhcp-options.md
@@ -0,0 +1 @@
+# Module 3: DHCP Options
diff --git a/modules/04-dhcp-relay.md b/modules/04-dhcp-relay.md
new file mode 100644
index 0000000..c0496a2
--- /dev/null
+++ b/modules/04-dhcp-relay.md
@@ -0,0 +1 @@
+# Module 4: DHCP Relay
diff --git a/modules/05-advanced-wireshark.md b/modules/05-advanced-wireshark.md
new file mode 100644
index 0000000..ca2e857
--- /dev/null
+++ b/modules/05-advanced-wireshark.md
@@ -0,0 +1 @@
+# Module 5: Advanced Wireshark
diff --git a/modules/06-troubleshooting.md b/modules/06-troubleshooting.md
new file mode 100644
index 0000000..8e98765
--- /dev/null
+++ b/modules/06-troubleshooting.md
@@ -0,0 +1 @@
+# Module 6: Troubleshooting
diff --git a/modules/07-dhcpv6.md b/modules/07-dhcpv6.md
new file mode 100644
index 0000000..06d97e3
--- /dev/null
+++ b/modules/07-dhcpv6.md
@@ -0,0 +1 @@
+# Module 7: DHCPv6
diff --git a/modules/08-dhcp-security.md b/modules/08-dhcp-security.md
new file mode 100644
index 0000000..938b4c5
--- /dev/null
+++ b/modules/08-dhcp-security.md
@@ -0,0 +1 @@
+# Module 8: DHCP Security