Presentation Erasmus "Wireshark"

<

>

Presentation

Wireshark

Introduction

and

mini manual guide

start >

>

>

<Before to start>

WE need to focus something:

What is Wireshark?

What is an internet traffic?

An example of internet traffic

Protocols

<What is WIRESHARK?>

Wireshark is a network protocol analyzer that allows you to capture and analyze network traffic in real-time. It's a powerful tool for understanding how network protocols work, diagnosing network problems, and optimizing network performance. It works by capturing packets of network data as they're transmitted between computers on a network. It can capture packets from a variety of sources, including wired and wireless networks, and it can capture packets from a wide range of protocols, including TCP/IP, HTTP, FTP, and many others. Once Wireshark has captured packets, it allows you to view the data in a variety of ways. You can view individual packets and analyze their contents, or you can view statistics about the traffic on the network as a whole.

>

>

>

>

//What is an Internet traffic?

Internet traffic refers to the flow of data packets across the internet between computers and other devices. This traffic is generated when we access websites, send emails, download files, stream videos, and perform other online activities. Internet traffic is composed of various protocols and data types, such as HTTP, TCP, DNS, and more.

//But Why we need to use this tool?

By capturing internet traffic using Wireshark, you can analyze the traffic and gain insights into what is happening on the network. For example, you can use Wireshark to troubleshoot network issues, such as slow website performance, by analyzing the network traffic and identifying potential bottlenecks. Wireshark can also help you to detect and diagnose network security issues, such as unauthorized access or malware infections.

>

>

//EXAMPLE Of INTERNET Traffic

EXAMPLE: If you are browsing the web using your computer. When you visit a website, your computer sends a request to the website's server over the internet. The request is sent using the HTTP protocol, which is used for web traffic. The website's server receives the request and sends a response back to your computer. The response contains the web page content that you requested, such as text, images, and videos. The response is also sent using the HTTP protocol.

>

>

01

00

02

<

>

<

>

<

>

Start to use

Installation

Capture

03

04

05

>

<

<

>

>

<

Information

Filtrage

Conclusion

<HOW TO INSTALL WIRESHARK>

Step 1: Go to the official Wireshark website at https://www.wireshark.org/ and click on the "Download" link.

Step 2: Select the appropriate installer for your operating system. Wireshark is available for Windows, macOS, and Linux.

Step 3: Once you have installed, click and a setup screen will appear with the license agreement...

>

>

<HOW TO INSTALL WIRESHARK>

Step 5: During the installation process, you may be prompted to install additional components such as WinPcap or Npcap also USBPCap<--(don't install), which are required for packet capture on every O.S.

Step 4: Once you accepted the license agreement, install all the components

Step 6: Before to install, it appears another license agreement and click "I agree". In the next screen is about different installing options of npcap, don’t do anything click on Install.

>

>

<HOW TO INSTALL WIRESHARK>

Step 7-8: After the installation is complete, you can launch Wireshark and start capturing and analyzing network traffic.

Note: the name of the file estension is .pcapng...

>

>

>

>

//HOW to use wireshark: CAPTURE

>

>

//How to filter a specific protocol

There are many protocols: HTTP,TCP,ICMP,ARP,SSH,UDP exc...

But how to filter a specific protocol?

Completed?!Thank you for listening!

>

<

>

>

//Protocols definition and examples

In computing, a protocol is a set of rules and standards that govern the communication between two or more devices or programs. Protocols ensure that devices and programs can communicate effectively and efficiently, regardless of the hardware or software they use. An example of a protocol is the Transmission Control Protocol (TCP),is a widely used protocol that governs the communication between devices over the internet. It ensures that data is reliably transmitted and received by breaking it up into packets, sending them across the network, and reassembling them at the receiving end. TCP also includes mechanisms for flow control, congestion avoidance, and error detection and correction, which help to ensure that data is transmitted efficiently and without errors.