THM Packets & Frames - grunt92/IT-Sec-WriteUps GitHub Wiki

What are Packets and Frames

What is the name for a piece of data when it does have IP addressing information?

Packet

What is the name for a piece of data when it does not have IP addressing information?

Frame

TCP/IP (The Three-Way Handshake)

What is the header in a TCP packet that ensures the integrity of data?

checksum

Provide the order of a normal Three-way handshake (with each step separated by a comma)

SYN,SYN/ACK,ACK

Practical-Handshake

What is the value of the flag given at the end of the conversation?

To answer this question you have to complete a conversation using the TCP-Handshake. To do so deploy the site by clicking the "View Site"-button. After the site is deployed you can begin to start the conversation. To complete the conversation select the options in following order:

  1. "SYN: Can you hear me Bob?"
  2. "SYN/ACK: Yes, I can hear you!"
  3. "ACK: Okay Great"
  4. "DATA: Cheesecake is on sale!"
  5. "ACK: I Hear ya!"
  6. "FIN/ACK: I'm all done"
  7. "FIN/ACK: Yeah Me Too"
  8. "ACK: Okay, Goodbye"

After you completed the conversation you receive the flag:

THM{TCP_CHATTER}

UDP/IP

What does the term "UDP" stand for?

User Datagram Protocol

What type of connection is "UDP"?

stateless

What protocol would you use to transfer a file?

TCP

What protocol would you use to have a video call?

UDP

Ports 101 (Practical)

What is the flag received from the challenge?

To complete this task you have to deploy the attached site by clicking the "View Site"-button. After the site is deployed you will see a terminal together with two input-fields and a "Connect"-button. To complete the task you have to connect to IP 8.8.8.8 on port 1234 using netcat. To do so enter the IP 8.8.8.8 into the input-field labeled IP Address and 1234 into the Port input-field. Upon pressing the "Connect"-button the terminal will show you a message saying "Connection Received" followed by the flag:

THM{YOU_CONNECTED_TO_A_PORT}

Continue Your Learning: Extending Your Network

Terminate the static site lab deployed in tasks 3 and 5.

You can terminate the static sites by pressing the "_" button on the bottom of the static sites.

No answer needed

This will exit the split view, but there is no button to actually terminate the sites (as far as i know)

Join the "Extending Your Network" room to continue your learning.

No answer needed