Depending on your operating systems. TCPDump works for Mac OS X and Linux, and WinDump can be used for windows. You are the security analyst for a small corporate network. You want to find specific information about the packets being exchanged on your network using TCPDump.

Imagine in your subnet of 192.168.0.0, there is a device with IP address of 192.168.0.45 and MAC address of 11:12:13.You need to change these values with the values in your actual LAN.

1. All network traffic for 192.168.0.0

2. All traffic for the 192.168.0.45 host

3. All IP traffic with a source address of 192.168.0.45

4. All IP traffic with a destination address of 192.168.0.45

5. All HTTP traffic on port 80

6. All packets with an Ethernet Mac address containing 11:12:13

7. All TCP packets that contain the word "password" (Try to log in to multiple websites)

Answer rating: 100% (QA)

To use TCPDump to capture specific network traffic on your corporate network you can follow these co... View the full answer