Artifact #2: Wireshark Packet Capture

Below is the ARP spoof attack and FTP credential packet capture made from the work of the video demonstration for the TNCC Cybersecurity Conference 2019. I worked with two primary tools in the video – Ettercap and Wireshark.

Wireshark is a network protocol analyzer designed to capture live traffic and interpret packets, their flows, and other details throughout the capture. Packet captures (Pcaps) are files containing captured network traffic for further analysis.

Using Wireshark, I can capture and analyze network traffic, identify hosts communicating on any given network, identify problems for troubleshooting, and uncover suspicious network activity.