What it is:
A hands-on network analysis lab focused on monitoring, capturing, and analyzing network traffic using Wireshark within a virtualized environment to understand communication patterns and security risks.
What I did:
Captured and analyzed network traffic between virtual machines using Wireshark, including ICMP and DNS communications. Configured port mirroring to intercept LAN traffic and acted as an attacker to sniff communications between systems. Identified packet details such as IP addresses, ports, and protocols, and extracted sensitive information (FTP credentials) from unencrypted traffic to demonstrate real-world vulnerabilities.
What I learned:
Learned how network traffic can be monitored and analyzed to identify communication patterns and potential security risks. Gained insight into how unencrypted protocols like FTP expose sensitive data, reinforcing the importance of secure alternatives. Also developed skills in using filters, analyzing packet structures, and understanding how attackers can intercept data within a network.