net 1, lab 7.
SNIFFING!
April 22, 2011
EQUIPMENT:
Computer, Wireshark
NOTES/OBSERVATIONS:
This lab is intended to teach us how to be hackers. …ok, that’s probably not the intention of it. However, since we did use a program that monitors network packets, it could very easily be used as such.
DIAGRAMS/FIGURES:
N/A
REFERENCES:
Lab Notes, Google, and Kristin (since I was gone on lab day)
QUESTIONS:
*Find the frame’s protocol type, lenth, source & destination address information.
- TCP, 56 bytes, AsustekC_65:f4:24
*What do you notice about these frames? What can you say about the security of the FTP protocol after viewing these frames?
-Since I can read my username and password within the frame, I’d say the security could improve.
*What protocols are encapsulated in this frame? Which of these protocols is a transport layer protocol?
-IP, DNS, and UDP (transport layer)
*What protocols are encapsulated in this frame? Which layer does ICMP reside in?
-IP and ICM, ICMP=layer 3 Internet Control Message Protocol
*Approximately how many frames did it take to download the web page?
-870
*What protocol headers do you see?
-IP, TCP, HTTP
*Find the type of web server being accessed in this frame’s header.
-Apache
*Find a pair of frames that show an ARP request and an ARP response. Explain what these frames are doing.
-looking for an IP
CONCLUSION:
Even though I wasn’t able to be in the lab, doing this in my spare time helped me to understand how hackers perform their hacking. 
It’s kind of scary to think that it is relatively easy to get ahold of valuable information if you don’t take the necessary precautions to protect yourself.
