Wireshark Lab 2
来源:互联网 发布:base64 java 保存图片 编辑:程序博客网 时间:2024/05/25 05:37
第二次wireshark作业,讲了一些较为实用的技巧,记录一下
What to do:
A. Run your wireshark for a few seconds and save the capture files on your desktop (test.pcapng)
B. Restart your Wireshark and open test.pcapng
C. Take a screen shot and paste it here
What to do: The newer version does not display a pop-up window. A line of command will appear below the live capturing packet filter window.
A. Open the find packet dialog. Apply filter to find ARP or TCP if you don’t have ARP. Take a screen shot and paste it HERE
What to do:
A. Mark the first packet you found in the previous tasks and take a screen shot.
What to do:
A. Follow the instruction except the port number. Instead use port 1900.
B. Run a few seconds and save your captured file as test2.pcapng
C. Take a screen shot
What to do:
A. Open your test.pcapng file and bring up endpoints dialogue. Choose IPv4 tap.
B. Make a screen-shot and put it HERE.
What to do:
A. Open your test.pcapng file again if it’s closed and bring up conversation dialogue. Choose IPv4 tap. Make a screen-shot and put it HERE.
B. Download lotsofweb.pcap and open it from your wireshark. Open endpoint dialogue box and choose IPv4 tab
Analyze top talkers and identify potential problems. What services/applications are making trouble for this network? : Write your answer HERE. Formulate your answer considering the following tips
• Which device is local, which is not? How do you know it?
172.16.X.X is local address.
74.125.103.163 is not.
• If you found suspicious non-local devices that cause problem, use whois service (http://www.geektools.com/whois.php) to identify its organization
It is Google, and analysis the traffic, it is probably from video clips, so we can guess it was coming from youtube
• Filter out packets which are related to the problematic device. Identify the nature of traffic (Guess with what you know already)
Usually the video clips are transmitted by UDP, but here are TCPs, we can guess it was the YouTube, in order to control it precisely with navigation bar, uses TCP to transmit video clips.
Submit this document with appropriate answers, test.pcapng, and test2.pcap ng on Canvas
- Wireshark Lab 2
- lab 2
- Lab 2
- lab 2
- LAB 2
- [Lab Week] 1->2
- Lab 2:ARM指令
- # Software-eng lab 2
- Lab
- LAB
- [Lab Week] 2->3->4
- Lab 2: Creating a Service
- Lab 2: Return-to-libc
- CSAPP: Bomb Lab(2)
- 嵌入式LAB 2:ARM指令
- CSAPP实验2:Bomb Lab
- 【xv6学习之Lab 2】Memory Management
- Lab 2:线程的休眠与唤醒
- Java 十大异常报错(Exception)
- 第五章 循环和关系表达式(1)
- kubernetes1.4 基础篇:Learn Kubernetes 1.4 by 6 steps(2):Step 1. Create a Kubernetes cluster
- Maven从零开始_1_Maven概览
- GPU CUDA and MEX Programming
- Wireshark Lab 2
- Spark笔试题
- alias的功能
- PHP常用的缓存技术汇总
- for循环与while循环的区别
- 一个在校大学生的开源之路:从0到1024
- 打牢基础:数据类型与运算符
- [BZOJ1854][Scoi2010]游戏(二分图匹配)
- 【vijos】【建反图最短路】最优贸易
