CIS3360-21Fall-Wireshark Rev.2.06c CIS3360HomeworkAssignment UCFCECS CIS3360–SecurityinComputing Fall2021 HomeworkAssignment:AnalyzingPacketswithWireshark...

.


CIS3360-21Fall-Wireshark Rev.2.06c CIS3360HomeworkAssignment UCFCECS CIS3360–SecurityinComputing Fall2021 HomeworkAssignment:AnalyzingPacketswithWireshark Wiresharkisanopensourcenetworkpacket/protocolanalyzer.Anetworkpacketanalyzercaptures networkpacketsandtriestodisplaythatpacketdataasdetailedaspossible.Wiresharkisperhaps oneofthebestopensourcepacketanalyzersavailabletodayforUNIXandWindows.Wiresharkisn't anintrusiondetectionsystem.Wiresharkwillnotmanipulatedataonthenetwork. LegitimateUsesofWireshark: • Networkadministratorsuseittotroubleshootnetworkproblems • Networksecurityengineersuseittoexaminesecurityproblems • Developersuseittodebugprotocolimplementations • Peopleuseittolearnnetworkprotocolinternals Resources: 1) Thewiresharkmainpage:http://www.wireshark.org 2) http://wiki.wireshark.org 3) http://wiki.wireshark.org/SampleCaptures 4) http://www.wireshark.org/download/docs/user-guide-us.pdf AssignmentPartI 1. Watch the “Introduction to Wireshark” video that you will find in the videos section on the Wireshark main page. ProgramSubmissionInstructions: • You must submit one zip file or tarball in Webcourses • Acceptable formats for compressed file: .zip, .tar, .gz, .bz • You must name your compressed file as: your_last_name_your_first_name_WS1 • Acceptablefileformatsforreport:.doc,.docx,.pdf • Your zip file must contain the capture files and the report that is described in the “Submission” section below. Rev.2.06c CIS3360HomeworkAssignment UCFCECS AssignmentPartII 1. Download and install Wireshark (Windows, Mac, or Linux) from http://www.wireshark.org/ This was tested on Debian 10 with Version 2.6.20 (v2.6.20-0+deb10u1) This was also tested on W10 with Version 3.4.4 (v3.4.4-0gc33f630cbb2) 2. Capture data from an interface in your computer (e.g., Ethernet or WiFi) (10 points) • Remember to set the encryption if required • Store the captured data 3. Store the captured data in a file named captured_LastName_FirstName (3x10 points) • Break the captured files each 10 seconds and record during 30 seconds (you should end up with 3 files, each with the name above plus timestamp information) • Make sure all name resolution options are unchecked. AssignmentPartIII 1. LoadtheWS1-Assignment-A.pcapng.gzfileintoWireshark 2. WhatarethetwoIPaddressesofthecomputersintheHTTPsession?(10points) 3. UseWireshark’sdatawindowtoexaminetheXMLdata • UsingtheGomenu,gotopacket520 • UsetheHTTPviewtoexaminethecapturedXMLdatainthepacket 4. Answerthefollowingquestions: • WhatisDishDSS25tracking?(10points) • Whatistheantenna’sazimuthangle?(10points) • Whatistheantenna’selevationangle?(10points) • Whatistheantenna’swindspeed?(10points) • Whatisthedownsignalpower?(10points) Submission • Youmustsubmitazipfilewithyour3capturedfilesandareportdocumentcontainingthe following: – Yourname-pleasemakesureyournameisoneverypagesubmitted. – AdescriptionofwhatfeaturesofWiresharkyoutried,includingpartIIandpartIII, andyourobservationsandimpressionsofthetool. – Ascreenshotwithyourcapturesettings(partII) – Thenameofyourcomputer’snetworkinterfacethatyouusedforcaptures(partII) – ThetwoIPaddresseson(partIII) – TheanswerstothequestionsderivedfromdatainPacket520below(partIII) • WhatisDishDSS25tracking? • Whatistheantenna’sazimuthangle? • Whatistheantenna’selevationangle? • Whatistheantenna’swindspeed? • Whatisthedownsignalpower? CIS3360-21Fall-Wireshark Rev.2.06c CIS3360HomeworkAssignment UCFCECS CIS3360–SecurityinComputing Fall2021 HomeworkAssignment:AnalyzingPacketswithWireshark Wiresharkisanopensourcenetworkpacket/protocolanalyzer.Anetworkpacketanalyzercaptures networkpacketsandtriestodisplaythatpacketdataasdetailedaspossible.Wiresharkisperhaps oneofthebestopensourcepacketanalyzersavailabletodayforUNIXandWindows.Wiresharkisn't anintrusiondetectionsystem.Wiresharkwillnotmanipulatedataonthenetwork. LegitimateUsesofWireshark: • Networkadministratorsuseittotroubleshootnetworkproblems • Networksecurityengineersuseittoexaminesecurityproblems • Developersuseittodebugprotocolimplementations • Peopleuseittolearnnetworkprotocolinternals Resources: 1) Thewiresharkmainpage:http://www.wireshark.org 2) http://wiki.wireshark.org 3) http://wiki.wireshark.org/SampleCaptures 4) http://www.wireshark.org/download/docs/user-guide-us.pdf AssignmentPartI 1. Watch the “Introduction to Wireshark” video that you will find in the videos section on the Wireshark main page. ProgramSubmissionInstructions: • You must submit one zip file or tarball in Webcourses • Acceptable formats for compressed file: .zip, .tar, .gz, .bz • You must name your compressed file as: your_last_name_your_first_name_WS1 • Acceptablefileformatsforreport:.doc,.docx,.pdf • Your zip file must contain the capture files and the report that is described in the “Submission” section below. Rev.2.06c CIS3360HomeworkAssignment UCFCECS AssignmentPartII 1. Download and install Wireshark (Windows, Mac, or Linux) from http://www.wireshark.org/ This was tested on Debian 10 with Version 2.6.20 (v2.6.20-0+deb10u1) This was also tested on W10 with Version 3.4.4 (v3.4.4-0gc33f630cbb2) 2. Capture data from an interface in your computer (e.g., Ethernet or WiFi) (10 points) • Remember to set the encryption if required • Store the captured data 3. Store the captured data in a file named captured_LastName_FirstName (3x10 points) • Break the captured files each 10 seconds and record during 30 seconds (you should end up with 3 files, each with the name above plus timestamp information) • Make sure all name resolution options are unchecked. AssignmentPartIII 1. LoadtheWS1-Assignment-A.pcapng.gzfileintoWireshark 2. WhatarethetwoIPaddressesofthecomputersintheHTTPsession?(10points) 3. UseWireshark’sdatawindowtoexaminetheXMLdata • UsingtheGomenu,gotopacket520 • UsetheHTTPviewtoexaminethecapturedXMLdatainthepacket 4. Answerthefollowingquestions: • WhatisDishDSS25tracking?(10points) • Whatistheantenna’sazimuthangle?(10points) • Whatistheantenna’selevationangle?(10points) • Whatistheantenna’swindspeed?(10points) • Whatisthedownsignalpower?(10points) Submission • Youmustsubmitazipfilewithyour3capturedfilesandareportdocumentcontainingthe following: – Yourname-pleasemakesureyournameisoneverypagesubmitted. – AdescriptionofwhatfeaturesofWiresharkyoutried,includingpartIIandpartIII, andyourobservationsandimpressionsofthetool. – Ascreenshotwithyourcapturesettings(partII) – Thenameofyourcomputer’snetworkinterfacethatyouusedforcaptures(partII) – ThetwoIPaddresseson(partIII) – TheanswerstothequestionsderivedfromdatainPacket520below(partIII) • WhatisDishDSS25tracking? • Whatistheantenna’sazimuthangle? • Whatistheantenna’selevationangle? • Whatistheantenna’swindspeed? • Whatisthedownsignalpower?