PCAP Analysis and ZIP File Reconstruction Instructions$$

$$

Objective: Analyze the provided PCAP file, identify network activities, reconstruct and decrypt an encrypted ZIP file, and perform a series of tasks requiring documentation of your process and results.$$

$$

Step $1$: PCAP File Analysis$$

Locate Ping Sessions:$$

Identify a successful Ping session and record:$$

Source and destination IP addresses.$$

Packet number from the PCAP.$$

A screenshot of the packet details in Wireshark.$$

Identify an unsuccessful Ping session and record:$$

Source and destination IP addresses.$$

Packet number from the PCAP.A screenshot of the packet details in Wireshark.

$2.$ Locate FTP Session:$$

Extract the password used during the FTP session from the PCAP file.$$

Extract the parts of the zipped file from the FTP session in the PCAP file.$$

$$

Step $2$: ZIP File Reconstruction$$

Reassemble the ZIP File:$$

Use the extracted file parts and determine their correct order.$$

Reassemble the ZIP file.$$

Hint: There are $120$ possible combinations unless you know how to examine contents. Use critical thinking and see if there are ways to figure out how to reduce the possible combinations. $($Minimum of $6$ combinations if you can figure it out!$)$

$2.$ Decrypt the ZIP File:$$

Use the FTP password:$$

Apply the ROT$13$ cipher.$$

Take the result to the$$NET$207$ BBCipher$$toolLinks to an external site.$$and follow the instructions to generate the ZIP password.$$

Open the ZIP file using the decrypted password.$$

$$

Step $3$: Excel Workbook Analysis$$

Access the Workbook:$$

Extract the Excel Workbook from the decrypted ZIP file.$$

$2.$ Follow Instructions:$$

Complete the data entry and formula tasks as per the instructions on the first and second sheets of the workbook.$$

Clearly document the formula you used to generate the required data.$$

$$

Step $4$: Create and Hash a $16-$Byte Binary File$$

Generate a $16-$Byte Binary File:$$

Create a$.$txt$$file with content derived from the spreadsheet data.$$

Ensure the file size is $16-$bytes total size.$$

$2.$ Hash the binary File:$$

Use a hashing tool or command to generate the hash of the $16-$byte$.$txt$$file$.$

Verify that the resulting hash contains the hexadecimal sequence$$DEAD$.$

Record the hash value and the exact command$($s$)$ used.$$

$$

Step $5$: Documentation$$

Prepare a detailed document that includes:$$

PCAP Analysis:$$

Successful and unsuccessful Ping details:$$

Source and destination IPs.$$

Packet numbers.$$

Screenshots for each type of Ping.$$

$2.$ ZIP Reconstruction:$$

Briefly explain the process you followed to reconstruct and decrypt the ZIP file.$$

$3.$ Spreadsheet Data:$$

Specify the formula used in the spreadsheet.$$

$4.$ File Hashing:$$

Include:$$

The $16-$byte binary file hash value.$$

The command$($s$)$ used to generate the hash.$$

$5.$ Supporting Materials:$$

Attach the following to your submission:$$

Documentation file $($PDF or Word format$).$

$16-$byte binary file.$$

Completed Excel spreadsheet.$$

Screenshots used in your documentation.