ET Cybersecurity Blog
-
IPv4
Lab 1.4 – IPv4 Packet Analysis This lab focused on examining network traffic at the IPv4 layer, with an emphasis on identifying abnormal or suspicious behavior within the packet capture. Lab Setup For this exercise, I used the capture file called ipv4.pcap. Once downloaded, I opened the file in Wireshark and began my analysis. Exercise…
-
The Network Access/Link Layer
Link Layer Analysis Lab – Overview and Setup This set of exercises focuses on analyzing network activity at the Link Layer. Lab Setup For this lab, I used Wireshark to analyze a file called link.pcap. Exercise 1 – Analyzing the First Record 1. In the first record, what is 192.168.11.11 trying to find? To answer…
-
Introduction to Wireshark
The goal of this lab is to familiarize myself with the basic functionalities of Wireshark. Exercise 1 – Wireshark Profile Setup To kick off the lab, I started by setting up a custom Wireshark configuration profile. These profiles are really helpful because they let you tailor things like display columns, settings, and layout to match…
-
Concepts of TCP/IP
Objective:In this lab, I explored various aspects of the TCP/IP protocol by using tcpdump to analyze network traffic. The goal was to familiarize myself with the functionality of tcpdump and practice using its command-line options to read and interpret packet capture files. Exercise 1: Reading a PCAP FileThe first exercise involved using tcpdump to read…