Lab Analyzing Network Traffic - echadbourne/ChadbourneSYS-140 GitHub Wiki
Summary:
- In this lab we used Wireshark to examine a network traffic capture file to find password information for a fictional thumb drive. We filtered for HTTP and SMTP to find communication between fictional malicious foes, and used that gathered information to open a password protected file to find the stolen money.
Useful Information:
- HTTP is used for online communication
- SMTP, POP, and IMAP are used for email communication
Extra Information:
- I had no trouble with this lab. I have done it before, but I didn't remember the answers so I just followed along and did it again.