Project Overview
This project involved setting up and using Wireshark to capture and analyze network traffic on a virtual machine. The process included updating the system, installing Wireshark, configuring it, and performing detailed analysis of network traffic.
Key Steps
- System Update: Used
sudo apt updateto refresh package lists for upgrades and new installations. - Wireshark Installation: Installed Wireshark using
sudo apt install wireshark. - Wireshark Configuration:
- Selected
enp0s3as the network interface for capturing traffic. - Enabled promiscuous mode to capture all packets on the network.
- Selected
- Permission Configuration:
- Reconfigured Wireshark to allow non-superusers to capture packets using
sudo dpkg-reconfigure wireshark-common. - Added the user to the Wireshark group with
sudo usermod -a -G wireshark hasan.
- Reconfigured Wireshark to allow non-superusers to capture packets using
- Packet Capture and Analysis:
- Started capture on
enp0s3and used filters (e.g.,http,ip.addr,tcp.port) to focus on specific traffic. - Analyzed protocols such as TCP and ICMP in detail.
- Reviewed protocol hierarchy and conversations between network devices.
- Started capture on
Key Skills Acquired
- Proficiency in configuring Wireshark for packet capture.
- Understanding of network protocols and traffic analysis.
- Managing Linux user permissions and groups effectively.
Tools Used
Operating System
Network and Analysis Tools
-3B3B3B?&style=for-the-badge&logo=linux&logoColor=white){kind=icon}
Virtualization Platform
