1. Go to Wireshark ? and download and install Wireshark. 2....

1. Go to Wireshark ? and download and install Wireshark. 2. Launch Wireshark. You will see a screen similar to Figure 4.11 on p. 107. Using your screen shot software, take a picture of this screen. 3. Follow step#2, a - c, on p. 107. 4. While Wireshark is on, open a Web browser and visit www.nvcc.edu or www.google.com. At this point, Wireshark will capture some packets. Let it capture packets for about 30 seconds. Then click STOP. 5. You will have a screen similar to Figure 4-12 on p. 108. Using your screen shot software, take a picture of this screen. 6. Create a new WORD document and paste your screen captures for steps #2 and #5 in this document. Write a short essay (3 - 4 paragraphs) describing your project result and explain the contents of your screen captures. Look at the screen shot of your step 5 and answer the following questions: • How many packets did you capture? (hint: look at the first column of your captured screen). • What protocols do you see? (4.4) • List some source addresses you see. • List some of the destination addresses you see. Grading

Transcript

00:01 Hello student here nmap network topology we have to find out.

00:05 Describe the network topology you found when running nmap.

00:09 So here the network topology i found when running nmap is a star topology.

00:14 So here i will go with the star topology and this means that all the devices are connected to a central point as in the star topology such as router or the switch.

00:24 This is the most common topology used in the network and it is considered the more secure than the other topologies such as bus or the link topology.

00:33 So i have shown here the picture this is the star topology here with the help of a central unit all are connected.

00:44 So nmap network scan result give us this.

00:48 So now vulnerability found in the nmap scan.

00:51 So here i have to find the vulnerability.

00:55 The following open ports there are several open ports on the network including 22 ssh 25 smtp 80 http 443 https.

01:05 So these ports could be exploited by the attacker to gain access to the network.

01:11 Outdated services some of the services running on the open ports are outdated such as telnet and ftp.

01:17 So these outdated services are known to have the vulnerability that could be exploited by the attacker.

01:24 Misconfigured devices some of the devices on the network are misconfigured such as router.

01:29 So this could allow attacker to gain access to the network.

01:33 So these are the vulnerability with the nmap scan potential implication of the vulnerability.

01:39 The vulnerability found in the nmap scans could have the following implications data breaches attacker could exploit the open port or outdated services to gain access to the network and steal sensitive data.

01:50 So create a challenge for the security.

01:53 Denial of services attack attacker could exploit the misconfigured device to launch denial of service attack against the network which could disturb or disable network services.

02:05 Malware infections attacker could exploit the vulnerability to install malware on the network which could steal data disturbed operation or the damaged system.

02:15 Now anomalies found in the wired shark captures.

02:22 So following anomalies found a large number of the failed connection attempt.

02:27 There are a large number of the failed connection attempt to the ssh port on one of the device...

Question

Please give Ace some feedback