Show page

Differences

This shows you the differences between two versions of the page.

--- ep:labs:09:contents:tasks:ex3 [2021/12/04 19:25]
andrei.mirciu [03. [30p] Network Monitoring]
+++ ep:labs:09:contents:tasks:ex3 [2021/12/07 23:16] (current)
andrei.mirciu [03. [30p] Network Monitoring]
@@ Line 11: / Line 11: @@
 </spoiler>
+:!: Monitor the network traffic generated by //Winhttp.exe// using **Task Manager**, **Windows Performance Recorder** and **Microsoft Network Monitor**.
 :!: Using **Wireshark**, capture all the frames generated after running this program. Is it possible to extract the conversation data from the packet exchange? Justify your answer.
@@ Line 17: / Line 18: @@
   - Click the //Start// button and run //Winhttp.exe//. After //Winhttp.exe// stops, click the Stop button in Wireshark.
   - Use the ping command to get the IP address of the previously mentioned [[http://www.sociouman-usamvb.ro/ | URL]].
-  - Switch back to Wireshark and add a filter for ip.addr = <ip_address> (make sure to use the IP address identified using the ping command).
+  - Switch back to Wireshark and add a filter for ip.addr == <ip_address> (make sure to use the IP address identified using the ping command).
   - Right click on the **GET /documents** request and choose Follow -> TCP Stream.
   - In the bottom part of the Wireshark window, at the "//Show and save data as//" option, choose "Raw". Save the capture using the "Save as" button.

General Information

ep/labs/09/contents/tasks/ex3.1638638726.txt.gz · Last modified: 2021/12/04 19:25 by andrei.mirciu