Saturday, June 5, 2010
Project 4-1: Using the Wireshark Protocol Analyzer
In this project, i am going to use wireshark to capture and decode packets to analyze its contentsFirst, lets go to http://www.wireshark.org/
Next place our mouse over wireshark and click download
Download "Windows Installer (32-bit)"
After download is done, run the program and follow the on-screen directions.
After installed go into Start, all programs and click on wireshark
Next click on Capture and then Interfaces
Next select your network adapter and press start
Next lets just go to https://www.bluehost.com/cgi-bin/uftp and type a domain "loner" & pass "123456" and press enter
It would shows Login Failed like the diagram above
Next, go back to WireShark and press Ctrl + Find and as shown in the diagram below click on String and
in the text box type in "loner" and click Find.
No text will be found as the page has been encrypted and this prevents us from finding it.
Lets test another website http://www.jobboy.com/login.php and type in "loner" in the email and "123456" in the password and press enter
Go back to WireShark and press Ctrl + F again and type in "loner" in the text box and click "Find".
It should be shown like the diagram below and in the box it shows
" .....Email=lon er&Password=1234 56"
Next click on "Capture" and click "Interfaces..." and click "STOP"
Reflection for Project 4-1:
In this project, I have learnt that packet sniffers can gain private information which may be private to a user. Hackers could use this to steal user's credentials by just using a packet sniffer. Therefore websites should encrypt their data as packet sniffers would not display the exact data and the hacker may not get the information and this would allow users to enter their private information save and secure.