Discuss the four different types of suspicious traffic signatures.
Discuss the four different types of suspicious traffic signatures.
June 16, 2020 Comments Off on Discuss the four different types of suspicious traffic signatures. Uncategorized Assignment-help1. On your personal computer, download, install, and run Wireshark (found at http://www.wireshark.org/). Wireshark is a network protocol analyzer that let’s you capture and view network traffic. You may want to watch the videos found on that site first. With wireshark running, go to a standard website (e.g., Google, Yahoo, Amazon, etc.) and report what it shows you. Do you see the standard TCP/IP handshake? Do you see your http traffic? How could a network administrator use wireshark? Include screen captures of the wireshark showing your results. 2. On your personal computer, download, install, and run Nmap (found at http://nmap.org/). Nmap or “Network Mapper” is a free, open-source tool for network discovery, system security testing, port availability, and system monitoring. Before using nmap, you should study the Reference Guide (http://nmap.org/book/man.html). If you are using a Windows operating system, you’ll need to download ZenMap (http://nmap.org/zenmap/). For this exercise, run three different types of scans on another computer in your local network. MAKE SURE YOU HAVE THE SYSTEM OWNER’S PERMISSION FIRST! Provide screenshots of the command used and the results. What do the results tell you? How can a network security administrator use a tool like nmap?3. Using your book and other resources from the Internet, define and discuss the following network protocols: TCP, UDP, IP, and ICMP. Include the differences between TCP & UDP and IP & ICMP. Why is this important for network security? Make sure you list any outside references in APA format.4. Discuss the four different types of suspicious traffic signatures:InformationalReconnaissanceUnauthorized accessDenial of service .5. Provide a detailed description of how each of the following TCP flags are utilized:SYN (Synchronize)ACK (Acknowledgement)PSH (Push)URG (Urgent)RST (Reset)FIN (Finished)