Lab Analyzing Network Traffic - echadbourne/ChadbourneSYS-140 GitHub Wiki

Summary:

• In this lab we used Wireshark to examine a network traffic capture file to find password information for a fictional thumb drive. We filtered for HTTP and SMTP to find communication between fictional malicious foes, and used that gathered information to open a password protected file to find the stolen money.

Useful Information:

• HTTP is used for online communication
• SMTP, POP, and IMAP are used for email communication

Extra Information:

• I had no trouble with this lab. I have done it before, but I didn't remember the answers so I just followed along and did it again.