Description
Hi, I need help with an assignment that involves using Wireshark to analyze a pcap file (packet capture file) for unusual activity. The analysis includes creating a management summary and answering 10 questions. See attached word document for full instructions and questions. The PCAP file is in the attached zip file (Excerpt from word doc:
First, a management summary, written with no technical language, which provides a summary of what was found. The summary should be roughly a paragraph in length..
The second part will be the technical section where you will answer the following questions. Include the question and the answer.
1. What is the network address and subnet mask?)
Unformatted Attachment Preview
Purchase answer to see full attachment
Explanation & Answer
Attached.
PART 1
From the packet capture, there are 5236 packets. A packet consists of data that is shared between
the sender and the recipient on a network. Moreover, there are four hosts on the network which
are identified by their IP addresses. An IP address is a unique number separated by dots and it is
used to identify each computer in a network. The IP addresses found are: 192.168.100.5,
192.168.100.26, 192.168.100.27 and 192.168.100.28.
PART 2
1. Network address: 192.168.100.0
Subnet mask: 255.255.255.0
2.
a What is
Host 1
Host 2
Host 3
Host 4
192.168.100.5
192.168.100.26
192.168.100.27
192.168.100.28
Windows
Win...