Closed

Network Forensics - WIRESHARK

Work has to be done with wireshark. You have been given a network capture file and you have to:

1) Look at the Protocol Hierarchy Statistics (Statistics >Protocol Hierarchy).

2) Find out what the actual HTTP requests were. You will need to save all of the HTTP objects from the pcap file.

3) Look at the uncompressed body of the first GET request’s response (Packet No 15) you will see that it contains a directory listing containing a few files. A number of these files listed in the directory listing are subsequently downloaded. What are they called?

4) Extract the downloaded files from this pcap using Wiresharks export object feature (File >Export Objects >HTTP) and save all of the files.

5) Now examine their contents and see if you can identify the flag in the EXIF comment of the 9996296a1ea2320620b1e7188d4c44a2 file

6) Write a short report giving an overview of the steps you took, and the findings for each of the 5 sections above.

as well as:

1) Analyse the network capture file.

2) Identify the file transferred.

3) This should be a disk image. You need to recover the suspects disk image

4) Try to identify traffic that belongs to IRC chat between employee and badguy.

5) Write a report that details how you performed the analysis to identify the evidence required.

a. You should show the filters you used to extract the information.

b. The report should include screen captures showing the results of your investigation.

sumarise everything in a short report with screenshots on each step.

Kemahiran: Pengaturcaraan C, Keselamatan Komputer, Pentadbiran Rangkaian, Penulisan Teknikal, Tanpa Wayar

Lihat lagi: wireshark network analysis, network forensics analysis using wireshark, wireshark forensic tool, wireshark network forensics & security with tools, network forensics case study, network forensics book pdf, wireshark tutorial pdf, wireshark master – network forensics and security pdf, synergy network systems ltd work experience, cpa network work contract, work network slime, captcha typing work network, point systems work social network, linksys wrt54gl linux wireshark, steps needed add machine network lab environment, network documentation work, network camera work, can ipod touch work cricket network, recover network ext3, soa soap plugins wireshark

Tentang Majikan:
( 0 ulasan ) United Kingdom

ID Projek: #16488495

6 pekerja bebas membida secara purata £130 untuk pekerjaan ini

mhamdy1

I am a Cisco expert with an experience up to 12 years as a senior network engineer in an enterprise level campus as a full-time senior network engineer, and in afternoon as a part-time Cisco instructor, which make fro Lagi

£23 GBP dalam 3 hari
(44 Ulasan)
5.2
kose2joab

Hello, I'm a Network Engineer, System Admin, and Security expert and I would like to work on your project. I'm an experienced Wireshark protocol analyst and I would like to job your job. Hire me.

£72 GBP dalam sehari
(16 Ulasan)
4.3
ITSecurityPro

Hi, I can do this project and have done these type of projects several times. Lets discuss to start.

£88 GBP dalam 4 hari
(16 Ulasan)
4.4
£400 GBP dalam sehari
(13 Ulasan)
3.2
shadabkhan92

Team of developers worked in Adobe, etc. experts in computer security, python, cyber security. lets discuss it over chat

£166 GBP dalam sehari
(1 Ulasan)
2.6
bamdev1988

I have experience in wireahark [login to view URL] u ping me i can show my work. And the task you have shared i can [login to view URL] me know what do you think.

£33 GBP dalam 5 hari
(0 Ulasan)
0.0