This section includes a lab for Wireshark, a sniffer tool, that we will use in this class. The tool is installed on the standard VM image used in the College of Computing and Software Engineering Lab and is also available at Wireshark.org. You can safely install Wireshark on your computer, but please be advised that you should not run Wireshark and capture traffic from a network that is not owned by you. It is considered unethical to do so and in some cases also criminal trespass. I will give you capture files that you will use for the exercises in this class, therefore, you will not have to create the network situations I wish for you to analyze. Complete the lab and explore Wireshark resources. I have included 2 videos, a capture file (HTTP traffic), and a word document explaining a little about it.
1. Download and install Wireshark OR use the Wireshark on the VM image in the lab
2. Download http.zip and unzip the file to obtain the file http.cap .
3. Start Wireshark, open the http.cap file as your capture.
4. Watch the videos and make changes to your Wireshark as you watch the video.
5. Search for the HTTP packet. Open the Hypertext Transfer Protocol section in the details pane with the HTTP packet selected. The details will show the site that the GET requests is coming from as well as other details.
6. You will take a screenshot of the Hypertext Transfer Protocol details and submit the screenshot to this dropbox.