Scribd Logo
Upload

Welcome to Scribd!

  • 7 views

    Cyber Security Workshop Exp 4

    Uploaded by

    ni30vlogs
    Lab of cyber security review by h

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd

    Cyber Security Workshop Exp 4

    Uploaded by

    ni30vlogs
    7 views4 pages
    Lab of cyber security review by h

    Original Title

    CYBER SECURITY WORKSHOP EXP 4

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Lab of cyber security review by h

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    7 views4 pages

    Cyber Security Workshop Exp 4

    Uploaded by

    ni30vlogs
    Lab of cyber security review by h

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    You are on page 1of 4

    1

    EXPERIMENT 4
    Objective 1: Simulate a scenario where a password is transmitted in plaintext. Use wire shark to capture and
    analyze the packets to demonstrate the vulnerability and the importance of encryption.

    Tool Used: Wireshark

    Password Capturing/Sniffing
    Wireshark can capture not only passwords but any type of information transmitted over the network:
    usernames, email addresses, personal information, etc. As long as we can capture network traffic, Wireshark
    can sniff passing passwords.
    In sniffing can include passwords for various protocols such as HTTP, FTP, Telnet, etc. the captured data
    can be used to troubleshoot network problems, but can also be used maliciously to gain unauthorized access
    to sensitive information.
    So, here we will see how we can capture the password using the Wireshark network capture analyzer. and
    see the outputs of the following steps.
    Step 1: First of all, open your Wireshark tool in your window or in Linux virtual machine. and start
    capturing the network. suppose I am capturing my wireless fidelity.

    Step 2: After starting the packet capturing we will go to the website and login the credential on that website
    as you can see in the image.
    2

    Step 3: Now after completing the login credential we will go and capture the password in Wireshark. for that
    we have to use some filter that helps to find the login credential through the packet capturing.

    Step 4: Wireshark has captured some packets but we specifically looking for HTTP packets. so in the
    display filter bar we use some command to find all the captured HTTP packets. as you can see in the below
    image the green bar where we apply the filter.

    http
    3

    Step 5: So there are some HTTP packets are captured but we specifically looking for form data that the user
    submitted to the website. for that, we have a separate filter
    As we know that there are main two methods used for submitting form data from web pages like login forms
    to the server. the methods are-
     GET
     POST
    Step 6: So firstly for knowing the credential we use the first method and apply the filter for the GET
    methods as you can see below.
    http.request.method == "GET"

    GET method
    As you can see in the image there are two packets where the login page was requested with a GET request as
    well, but there is no form data submitted with a GET request.

    Step 7: Now after checking the GET method if we didn’t find the form data, then we will try the POST
    method for that we will apply the filter on Wireshark as you can see.

    http.request.method == "POST"
    4

    As you can see we have a packet with form data click on the packet with user info and the application URL
    encoded. and click on the down-
    HTML form URL Encoded where the login credential is found. login credential as it is the same that we
    filed on the website in step 2.
    Form item: "uname" = "Tonystark_44"
    Form item: "pass" = "tony@1234"

    You might also like

    pFad - Phonifier reborn

    Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

    Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


    Alternative Proxies:

    Alternative Proxy

    pFad Proxy

    pFad v3 Proxy

    pFad v4 Proxy