THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question

Revision history  [back]

Revision 5
grahamb's avatar
23.8k
grahamb
updated 2020-07-23 08:17:12 +0000

Wireshark question

Hi, I need help for the following questions;

An attack has been launched on a company’s server. A network trace with the attack data is provided in Network_Traffic.pcap.

Analyse the given network traffic using Wireshark.

  1. How many network attack packets were sent out to the target server? Explain on how to derive your answer.

My answer: By using (tcp.flags.reset == 1)

  1. How many attackers is/are there? ??

  2. Is this attack conducted from the same network as the company’s server? ??

  3. Based on the network traffic given, justify your answers. ??

https://drive.google.com/file/d/16Mj-H4pAP08KMLDwUGQG1q3Ko75wFSjD/view?usp=sharing

Thanks.

Revision 4
grahamb's avatar
23.8k
grahamb
updated 2020-07-18 17:18:14 +0000

Wireshark question

Hi, I need help for the following questions;

An attack has been launched on a company’s server. A network trace with the attack data is provided in Network_Traffic.pcap.

Analyse the given network traffic using Wireshark.

  1. How many network attack packets were sent out to the target server? Explain on how to derive your answer.

My answer: By using (tcp.flags.reset == 1)

  1. How many attackers is/are there? ??

  2. Is this attack conducted from the same network as the company’s server? ??

  3. Based on the network traffic given, justify your answers. ??

https://drive.google.com/file/d/16Mj-H4pAP08KMLDwUGQG1q3Ko75wFSjD/view?usp=sharing

Thanks.

Revision 3
yeoshing's avatar
1
yeoshing
updated 2020-07-18 16:01:47 +0000

Wireshark question

Hi, I need help for the following questions;

An attack has been launched on a company’s server. A network trace with the attack data is provided in Network_Traffic.pcap.

Analyse the given network traffic using Wireshark.

  1. How many network attack packets were sent out to the target server? Explain on how to derive your answer.

My answer: By using (tcp.flags.reset == 1)

  1. How many attackers is/are there? ??

  2. Is this attack conducted from the same network as the company’s server? ??

  3. Based on the network traffic given, justify your answers. ??

https://drive.google.com/file/d/16Mj-H4pAP08KMLDwUGQG1q3Ko75wFSjD/view?usp=sharing

Thanks.

Revision 2
yeoshing's avatar
1
yeoshing
updated 2020-07-18 13:31:59 +0000

Wireshark question

Hi, I need help for the following questions;

An attack has been launched on a company’s server. A network trace with the attack data is provided in Network_Traffic.pcap.

Analyse the given network traffic using Wireshark.

  1. How many network attack packets were sent out to the target server? Explain on how to derive your answer.

My answer: By using (tcp.flags.reset == 1)

  1. How many attackers is/are there? ??

  2. Is this attack conducted from the same network as the company’s server? ??

  3. Based on the network traffic given, justify your answers. ??

https://drive.google.com/file/d/16Mj-H4pAP08KMLDwUGQG1q3Ko75wFSjD/view?usp=sharing

Thanks.

Revision 1
yeoshing's avatar
1
yeoshing
asked 2020-07-18 13:17:15 +0000

Wireshark question

Hi, I need help for the following questions;

An attack has been launched on a company’s server. A network trace with the attack data is provided in Network_Traffic.pcap.

Analyse the given network traffic using Wireshark.

  1. How many network attack packets were sent out to the target server? Explain on how to derive your answer.

My answer: By using (tcp.flags.reset Ctcp.flags.reset == 1)

  1. How many attackers is/are there? ??

  2. Is this attack conducted from the same network as the company’s server? ??

  3. Based on the network traffic given, justify your answers. ??

Thanks.Thanks,