Question: And then use a protocol analysis tool (such as wireshark or tcpdump) to answer the following: 1- How many TCP sessions and UDP exchanges have

And then use a protocol analysis tool (such as wireshark or tcpdump) to answer the following: 1- How many TCP sessions and UDP exchanges have been captured in the file? 2- How many web sessions have been captured in the file? 3- Is it possible to read the content of any of the web sessions? Show examples and explain why. 4- Are there any DNS interactions in the file? If no explain why you reached that conclusions, else show samples. 5- Can you find any usernames and/or passwords (you have permission to look for such information in this file only, and only for the purpose of this assignment)? If so, what are they and at which site were they used? 6- Which other application protocols can be found in the capture file (e.g., ssh, ftp, mail, etc)? Please support all of your answers with screen shots and/or partial traffic dumps.

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Screen shot of the 4 panes you see when you run the dns.cap file in Wireshark. Question 4.3.1: In Packet No. 28, what is the Source Port of the UDP data? (Hint: What does UDP stand for?) Question...

Please give the answer of question 2 Question 1. Provide short answers (i.e., no more than five lines on average with the font size of 12) for the following items. The grade for each item is 5...

help with project Wireshark Assignment 1. Overview Wireshark is an open source application freely available on the Internet that allows you to capture packets as they appear at the network adaptor...

The project is a self-directed, individual effort that demonstrates understanding of course material related to Wireshark and netstat. The project should be original and demonstrate creative thinking...

CW_Specification_CSI_5_PDN_20/21 Read this coursework specification carefully, it tells you how you are going to be assessed, how to submit your coursework on-time and how (and when) youll receive...

ONLY ANSWER THE ANALYSIS QUESTIONS, THERE ARE ONLY 9 QUESTIONS, DONT BE A LAZY PERSON AND PULL OUT REASON TO ME! 50 Chapter 2: Network Transports 6. What is a benefit of using a connection-or t of...

Learning Objectives In this lab, you will learn about Wireshark. Read about what Wireshark is in the description and template Understand what a protocol analyzer is, and what it is used for Try...

Part 1: Lab 24.1 - UDP use Wireshark to capture and study UDP packets. You will find the values of different fields of a UDP user datagram header. Using the values in these fields, you will also find...

PLEASE ANWSER ALL 16 QUESTIONS Open a terminal window by right-clicking on your VMs desktop and select Open Terminal. 3. Start wireshark. Do this by issuing the command sudo wireshark in your...

Please submit Steps 3, 4, 5, 6, and 7 separately, before submitting the completed project 1 In CCA 610: Cloud Services and Technology , you assumed the role of an IT analyst atBallotOnline, a company...

Let f (x) = 4/1+ 2x (a) Plot f (x) over [2, 2]. Then zoom in near x = 0 until the graph appears straight, and estimate the slope f(0). (b) Use (a) to find an approximate equation to the tangent line...

A business had a merchandise inventory of $30,000 on January 1, 2019. During the year, the business had purchases of $54,000, inbound freight of $1,200, purchase returns and rebates of $2,700, and...

3 W 2 Question 3 - Prosteong EnableOne of your customers has a delinquent accounts payable balance. You've mutually agreed to a repayment schedule of $ 5 0 0 per month. You will charge 1 8 percent...

Seved Help 14 Wisconsin Snowmobile Corp. is considering a switch to level production Cost efficiencies would occur under level production, and aftertax costs would decline by $31,500, but inventory...

What are the Variable columns settings available in the Mining Models Tab?

What does the Mining Content Viewer in Visual Studio show in terms of Probabilities?

How are continuous variables normally handled in Decision Tree Algorithms?