Kibata

Sign In

Our Services

Get 15% Discount on your First Order

Order Now
[rank_math_breadcrumb]

CS

CPTR 494 final Project

Part 1: Setting Up Wireshark and Initial Capture

1. Install Wireshark (if not already installed):

Download and install Wireshark from

Ensure that the user has appropriate privileges to capture network traffic

(admin/root access may be required).

2. Start Wireshark:

Open Wireshark.

Select the network interface that you will capture from (e.g., Ethernet, Wi-Fi).

Click on the Start Capturing Packets button (the blue shark fin icon).

3. Generate Traffic:

Open a browser and visit a few websites.

Perform a file download or stream a video to generate more traffic.

4. Stop the Capture:

After a few minutes, click the Stop Capturing Packets button (the red square).

Part 2: Analyzing Network Traffic

1. Examine Protocols:

In the Wireshark window, notice the Protocol column.

Identify common protocols like HTTP, HTTPS, TCP, UDP, DNS, etc.

Use the filter bar to focus on specific protocols:

Example: http to view only HTTP packets.

Example: dns to view only DNS queries.

2. Follow TCP Streams:

Select any packet from the TCP protocol.

Right-click and choose Follow → TCP Stream.

This feature will show you the complete conversation between two hosts in a

session.

Identify any readable content (especially in unencrypted protocols like HTTP).

Part 3: Identifying Security Concerns

1. Unencrypted Data:

Use the HTTP filter (http) to locate HTTP traffic.

Select a packet and inspect its details in the packet content section.

You should be able to see the request and response sent over HTTP. Look for

plain-text data like usernames, passwords, or sensitive information.

2. DNS Queries:

Use the DNS filter (dns) to view DNS query and response traffic.

Analyze what domain names are being requested and to which IP addresses they

are resolved.

3. SSL/TLS Traffic:

Use the HTTPS filter (ssl) to find encrypted HTTPS traffic.

Notice the difference from HTTP traffic — you cannot see the actual content of

encrypted communication, but you can still analyze the structure of the

handshake.

4. Man-in-the-Middle Vulnerabilities (Discussion):

Discuss how unencrypted traffic (like HTTP) can be intercepted by attackers.

Explain how HTTPS prevents eavesdropping but also highlight the risk of

SSL/TLS attacks (e.g., SSL stripping).

Part 4: Practical Task – Password Capture (Simulated)

Note: This section should be conducted in a controlled environment to avoid capturing sensitive

real-world data.

1. Simulated Login Capture:

Open a website or local service that uses plain HTTP for login (set up in a local

environment, e.g., a demo website using HTTP).

Enter dummy credentials (e.g., username: admin, password: password123).

2. Capture and Analyze the Traffic:

In Wireshark, use the filter http to locate the HTTP POST request.

Look into the packet details and identify the credentials sent in plain text.

Discuss the implications of sending credentials over unencrypted channels.

Part 5: Exporting and Reporting

1. Export Packet Capture:

Go to File → Export Specified Packets to save the capture file for further

analysis or report writing.

2. Lab Report:

Based on your capture, write a brief report discussing:

The types of protocols captured.

Any security concerns you observed (e.g., unencrypted credentials).

The importance of encryption in network security.

Lab Wrap-Up and Discussion

1. Reflection:

Discuss the importance of using tools like Wireshark to monitor network traffic.

How could an attacker exploit insecure network communications?

Resource:

Cisco Packet Tracer

To create a beginner lab in Cisco Packet Tracer that focuses on IPv6 and ICMP, you can

configure devices to use IPv6, and then analyze how ICMP works for network diagnostics. The

video link is a tutorial on Cisco Packet Tracer, explaining the software’s functions, features, and

how to use it for networking simulations. It covers setting up basic network devices, configuring

routers and switches, creating topologies, and using the simulation mode to visualize packet

flows. This video is ideal for beginners looking to understand networking and practice network

configurations in a virtual environment.

You can watch it here:

Part 1: Network Topology Design

Cisco Packet Tracer installed.

Basic understanding of networking concepts like IP addressing, routers, and pings.

Familiarity with the Cisco Packet Tracer environment.

Step 1: Create the Network

Use two PCs (PC0 and PC1) and two Routers (Router0 and Router1).

Interconnect the devices with Ethernet cables.

PC0 should connect to Router0.

PC1 should connect to Router1.

Router0 and Router1 should be connected to each other via a Serial Connection

(if using older router models) or via Ethernet for newer models

(GigabitEthernet).

Step 2: Configure Network Settings

Assign IP addresses to the routers and PCs using IPv6.

Part 2: Configuring IPv6 on Routers and PCs

Step 1: Configure Router0 and Router1

1. Configure Router0:

Click Router0 > CLI.

Enter the following commands:

Router> enable

Router# configure terminal

Router(config)# interface gigabitethernet0/0

Router(config-if)# ipv6 address 2001:0db8:1::1/64

Router(config-if)# no shutdown

Router(config-if)# exit

Router(config)# interface serial0/0/0 (for serial interface)

Router(config-if)# ipv6 address 2001:0db8:2::1/64

Router(config-if)# no shutdown

Router(config-if)# exit

Router(config)# ipv6 unicast-routing

Router(config)# exit

Router# copy running-config startup-config

1. Configure Router1:

Click Router1 > CLI.

Enter the following commands:

Router> enable

Router# configure terminal

Router(config)# interface gigabitethernet0/0

Router(config-if)# ipv6 address 2001:0db8:3::1/64

Router(config-if)# no shutdown

Router(config-if)# exit

Router(config)# interface serial0/0/0 (for serial interface)

Router(config-if)# ipv6 address 2001:0db8:2::2/64

Router(config-if)# no shutdown

Router(config-if)# exit

Router(config)# ipv6 unicast-routing

Router(config)# exit

Router# copy running-config startup-config

Step 2: Configure PCs

1. Configure PC0:

Click PC0 > Desktop > IP Configuration.

Set the IPv6 address to 2001:0db8:1::2/64 and the default gateway to

2001:0db8:1::1.

2. Configure PC1:

Click PC1 > Desktop > IP Configuration.

Set the IPv6 address to 2001:0db8:3::2/64 and the default gateway to 2001:0db8:3::1.

Part 3: Testing Connectivity with ICMP (Ping)

Step 1: Ping between PCs

Go to PC0 > Desktop > Command Prompt and use the following command to ping

PC1:

ping 2001:0db8:3::2

Go to PC1 and ping PC0:

ping 2001:0db8:1::2

Expected Result: The ping should succeed if the routing and interfaces are correctly configured.

Task:

Test the ping to verify connectivity between the devices.

Troubleshoot any issues that might occur (e.g., no connection due to incorrect IP

addresses or interfaces not being enabled).

Part 4: Viewing and Analyzing ICMPv6 Traffic

Step 1: Capture ICMPv6 Traffic

Cisco Packet Tracer allows you to capture and view packets.

Click on the Simulation tab at the bottom.

Choose ICMP from the filters on the right side.

Start a new ping from PC0 to PC1 or vice versa.

Watch the simulation and observe the ICMP packets.

Step 2: Analyze the Packet

Click on one of the captured ICMP packets to open it.

Review the packet contents, specifically the ICMP message types (128 for Echo Request,

129 for Echo Reply).

Task:

Identify the fields in the ICMPv6 packet (Type, Code, Checksum).

Explain the function of an ICMP Echo Request and Reply.

Part 5: Traceroute and ICMP Error Messages (Optional)

Step 1: Traceroute

On PC0, run the tracert command to trace the path to PC1:

tracert 2001:0db8:3::2

Observe how ICMP Time Exceeded messages are generated at each hop.

Task:

Explain how traceroute uses ICMP messages to map the route between devices.

View and analyze the Time Exceeded ICMP messages in the simulation mode.

Lab Steps: Vulnerability scanning

Part 1: Setup Nessus

1. Install Nessus:

• Download and install Nessus from the Tenable website.

2. Configure Nessus:

• Start Nessus and log into the web interface.

• Navigate to Settings > Scans and click New Scan.

Part 2: Run a Scan

1. In Nessus, set up a Basic Network Scan.

• Target: ( localhost or specific individual IPs).

• Leave default settings, or choose specific scan types (e.g., vulnerability scan).

2. Start the Scan and monitor progress.

Part 3: Analyze Results

1. Review Vulnerabilities:

• Once the scan completes, review the report.

• Categorize findings (Critical, High, Medium, Low).

2. Document Vulnerabilities:

• For each vulnerability, take note of:

• CVE (Common Vulnerabilities and Exposures) ID.

• Description.

• Solution or recommended actions.

  • CPTR 494 final Project
  • Part 1: Setting Up Wireshark and Initial Capture
  • Part 2: Analyzing Network Traffic
  • Part 3: Identifying Security Concerns
  • Part 4: Practical Task – Password Capture (Simulated)
  • Part 5: Exporting and Reporting
  • Lab Wrap-Up and Discussion
  • Cisco Packet Tracer
  • Part 2: Configuring IPv6 on Routers and PCs
  • Part 3: Testing Connectivity with ICMP (Ping)
  • Part 4: Viewing and Analyzing ICMPv6 Traffic
  • Part 5: Traceroute and ICMP Error Messages (Optional)
  • Lab Steps: Vulnerability scanning
    • Part 1: Setup Nessus
    • Part 2: Run a Scan
    • Part 3: Analyze Results

Share This Post

Email
WhatsApp
Facebook
Twitter
LinkedIn
Pinterest
Reddit

Order a Similar Paper and get 15% Discount on your First Order

Order Now

Related Questions

Wk4_300

Need help with a question. Due 3/10/2025 @ 9PM n the Week 4 labs, you performed tasks such as creating a cluster, restoring files, configuring account lockout policies, and verifying RAM usage.  Note: Ensure you have completed all lab exercises from Week 4 before completing this assessment. Assessment Details Write a 350-

Event Khusus dan Promosi di Witching Pot

“Saya sangat puas dengan pengalaman taruhan di situs ini. Setiap elemen, dari navigasi hingga pembayaran, berjalan dengan mulus. Ini menunjukkan profesionalisme dan kualitas layanan mereka. Saya pasti akan kembali lagi!”

Business/computer

Isolation Discussion Thread: Cybersecurity — Layering-Abstraction-Process Isolation The NSA has identified what they call the First Principles of cybersecurity. The following lists three of these: Principle Last Name Starts With Layering A through H Abstraction I through Q Process Isolation R through Z For your discussion, describe the principle assigned

D 3 of 459

 Building Block Technologies    What is an operational technology?  How is it similar or different than Consumer IoT? What emerging risks can you identify for an operational technology in a hypothetical utilities distribution monitoring & control environment (pipelines & transmission grids)?

D 2 of 459

  Follow the attach document to complete this work. Questions: 1. Consumer Internet of Things (IoT) has become ubiquitous and represents a major vector of cyber risk. Provide examples of consumer IoT that may be found in your own home (not sharing exact details is OK) 2. Provide a high

D 1 of 459

Follow the attach document to complete this work. Building Block Technologies   1. Software, Hardware, and Network Communications are considered building block technologies for enterprises. Define what they are, how they are used and give an example. 2. What are the most notable cyber risks for each type of building block?

D 8 0f 360

Follow the attach document to complete this work. International Cooperation for Cybersecurity   Prepare a 5- to 7-paragraph briefing statement that explains why wealthy nations and developing nations should work together to improve cybersecurity for the globally connected networks referred to as “the Internet.” Your statement should address the following.

D 7 of 360

Follow the attach document to complete this work. Policy Soup: Dealing with the Aftermath of a New Cybersecurity Policy   Prepare a 5 to 7 paragraph “Expert Opinion” for local government officials. This document should present a strategy for communicating with residents about a new “cybersecurity” policy that requires a

D 6 of 360

Follow the attach document to complete this work.  Partnerships for Improving State and Local Government Cybersecurity   Before you begin, read this report:  National League of Cities ( ) (Click the Download Report link at the bottom of the page) Prepare a briefing statement (3 to 5 paragraphs) for a group

D 5 of 360

Follow the attach instruction to complete this work. Background Briefing: How will the Governor’s Initiatives Improve Cybersecurity for the State’s Critical Infrastructures?   Discussion we transition from federal to state critical infrastructure. You are working for the Chief of Staff (CoS) for a newly elected Governor. The governor asked the

D 4 of 360

Follow the attach instruction to complete this work. Panel Presentation: Privacy Impact Assessments (PIA)  Coordinators of an upcoming conference, attended by federal government IT managers and staff, invited you to participate in a panel presentation about privacy. For this activity, prepare a 5 to 7 paragraph briefing statement which answers

Proj4-final

Project 4: Postmigration Activities  Step 1: Postmigration Activities Overview  Like any software development project, migration projects require careful planning to ensure success. This planning includes the postmigration testing and maintenance phase. Start this project by researching and planning the  postmigration activities that will be required to get BallotOnline’s migrated workloads in

Discussion-4

Discussion: Postmigration Approaches and Activities Contains unread posts Now that you have completed BallotOnline’s cloud migration, you will discuss the cloud postmigration activities and approaches. You should cover the following areas: · What is the business impact after the migration? · How will you manage service-level agreements in the cloud?

D 3 of 360

Follow the attach instructions to complete this work. How does FedRAMP help agencies ensure that Digital Government services are secure?   Must post first. Subscribe The format for your week 3 discussion is a backgrounder (“briefing paper”). Background papers are summaries of issues provided to help decision-makers/leaders/managers make decisions. Decision-makers

D 2 of 360

Follow the attach document to complete this work.  Briefing Statement: Security Implications of OPEN Data   Representatives from the  Joint Committee on Cybersecurity and Information Technology have asked you to provide a briefing as part of their “Cyber Scholars Day.” The committee is sponsoring this day of briefings and outreach for

D 1 of 360

Follow the attach document to complete this work. Growing Reliance on Digital Government Services   Your 1 discussion short paper assignment is to write a  workplace newsletter article. As you work on this type of discussion item, think about the newsletters you receive in your workplace. Are they engaging? Do they

Week 3 Discussion: PUMP Versus PMBOK® Guide Approach

I put the links to both the text and the PMBOK Guide, it is through my school library so it may not come up without my login at the botton of the instructions also in bold letters is the information to both the course text and the guide please let

wk 9 distance edu

PLEASE SEE IF YOU CAN LOOK UP THE READING IN THE FILE PORTION, I WAS NOT ABLE TO PULL IT UP UNFORTUNATELY!  After reading “Applying “Design Thinking” in the Context of Media Management EducationLinks to an external site.,” think about all aspects of learning online: activities, workload, faculty-to-learner communication, and