Q1<\/strong>. How many packets are captured in total? How many packets are displayed?<\/p>\n\n\n\n 36 Packets captured with 36 packets displayed.<\/p>\n\n\n\n Q2<\/strong>. Apply \u201cICMP\u201d as a display filter in Wireshark. Then repeat the previous question (Q1).<\/strong><\/p>\n\n\n\n 36 Packets were captured with 32\/36 being ICMP protocols.<\/p>\n\n\n\n Q3. <\/strong>Select an Echo (reply) message from the list. What are the source and destination IPs of this packet? What are the sequence number and the size of the data? What is the response time?<\/p>\n\n\n\n \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Source IP is 192.168.10.10 Q4. <\/strong>Apply \u201cDNS\u201d as a display filter in Wireshark. How many packets are displayed?<\/p>\n\n\n\n Q5. <\/strong>Find a DNS query packet. What is the domain name this host is trying to resolve? What is the source IP and port number, destination IP and port number?<\/p>\n\n\n\n \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <\/strong>Host name being resolved is wpad.mshome.net Q6. <\/strong>Find the corresponding <\/strong>DNS response to the query you selected at the previous step, and what is the source IP and port number, destination IP and port number? What is the message replied from the DNS server?<\/p>\n\n\n\n \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Source is IP 192.268.217.2 Port 53 Open two terminals on External Kali VM. Use one ping Ubuntu VM and use the other ping Internal Kali.<\/p>\n\n\n\n Login to Ubuntu VM, and create a file in your home directory, named \u201cYOUR_MIDAS.txt\u201d. Put the current timestamp and your name in the file.<\/p>\n\n\n\n Once you have the file ready in Ubuntu, switch back to External Kali<\/strong>. Get the file you just created with FTP protocol remotely.<\/p>\n\n\n\n Old Dominion University CYSE 301 Cybersecurity Techniques and Operations Assignment 2: Traffic Tracing and Sniffing Edwin C Wells IV Task A \u2013 Get started with Wireshark Q1. How many packets are captured in total? How many packets are displayed? 36 Packets captured with 36 packets displayed. Q2. Apply \u201cICMP\u201d as a display filter in Wireshark…. <\/p>\n![\"\"](\"https:\/\/sites.wp.odu.edu\/edwin-wells-4\/wp-content\/uploads\/sites\/30994\/2024\/11\/image-2.png\")
<\/a><\/figure>\n\n\n\n<\/a><\/figure>\n\n\n\n
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Destination IP is 192.198.217.3
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sequence number (BE) is 7 and (LE) is 1792
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Size is 48 bytes
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Response time is 1.984 ms<\/p>\n\n\n\n<\/a><\/figure>\n\n\n\n\n
\n
<\/a><\/figure>\n\n\n\n
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Source is IP 192.168.217.3 Port 50795
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Destination is IP 192.168.217.2 Port 53<\/p>\n\n\n\n<\/a><\/figure>\n\n\n\n
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Destination is IP 192.168.217.3 Port 50795
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Response to standard query is \u201cRefused\u201d.<\/p>\n\n\n\n<\/a><\/figure>\n\n\n\nTask B: Sniff LAN traffic<\/h1>\n\n\n\n
1.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sniff ICMP traffic<\/h1>\n\n\n\n
\n
\n
<\/a><\/figure>\n\n\n\n\n
\n
<\/a><\/figure>\n\n\n\n2.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sniff FTP traffic<\/h1>\n\n\n\n
\n
\n
\n
<\/a><\/figure>\n\n\n\n\n
\n
<\/a><\/figure>\n\n\n\nTask C \u2013 Extra credit: Steal files with Wireshark<\/h1>\n\n\n\n
<\/a><\/figure>\n\n\n\n\n
<\/a><\/figure>\n\n\n\n\n
\n
<\/a><\/figure>\n\n\n\n\n
<\/a><\/figure>\n\n\n\n\n
\n
<\/a><\/figure>\n","protected":false},"excerpt":{"rendered":"