Lab 12.1: HTTP Capture Class Lab - Hsanokklis/2023-2024-Tech-journal GitHub Wiki

Objective: Decode basic HTTP Request and Response using Wireshark

Capture 1:

  • Open Wireshark on your Computer

  • Start a Wireshark capture on the active network interface

  • From your Windows 10 workstation - open a new incognito window and connect to http://jasonoreeves.com/test.html

image

  • After the page loads, stop the capture and filter for traffic containing the IP address 162.241.216.188

image

  • Find the 3 packets of the TCP handshake between your workstation and your server.

SUBMIT: Insert screenshot(s) of the handshake packets into a document.

image

  • Find the packet from the client requesting the test.html page

image

SUBMIT: Insert screenshot(s) of the request packet into the document and write out the first line of the request (aka the Start Line)

  • Find the response packet from the server that actually contains the HTML page (body of response packet).

image

SUBMIT: Insert a screenshot of that packet into the document

image

SUBMIT: Answer the following question: What is the secret word in the document?

image