Introduction to Wireshark

Fortunately I have TCP-IP subject in this semester and so I decided to make the subject more interesting using Wireshark sniffing. It is the second best security assessment tool according to  insecure.org.

It allows you to examine data from a live network delving down into just the level of packet detail you need.  It also supports hundreds of protocols and media types.

Follow these steps and get started.!

1. Download wireshark http://www.wireshark.org/ Direct install if you are using windows.  For ubuntu users – sudo apt-get install wireshark
2. To start capturing the network traffic click on Capture -> Interfaces. you will get a list of interfaces available. click on start to capture.
3. Packets must have started pouring..   To stop the capture. Capture -> stop.
4. Now you are ready to analyze the packets.

As you can see there are 4 different columns-

• No : indicates the order in which the packets are received.
• Time : Sec. since the last packet.  click on view -> Time display format.
• source : source IP or MAC address.
• Destination : Destination IP or MAC address.
• Protocol : Protocol used by the packet.
• Info : summarized info of the packet content.

Now you can click on packet you wanna examine and the details are shown below.

Since its an IP packet… you can see the various TCP/IP layers -

• Frame : provides the physical layer details
• Ethernet II : provides MAC details
• Internet Protocol : provides source logical IP and destination logical IP.
• TCP/UDP : displays port details.
• Data : application data.

Expand the trees and view all the details about the TCP / IP communication.

..Stay tuned for more posts on wireshark sniffing….

XAMPP/LAMPP on ubuntu

Two easy steps to install xampp on ubuntu

download xampp and save it on desktop.

• sudo tar xvfz xampp-linux-* -C /opt  (to copy all the files from archive to the /opt folder).
• /opt/lampp/lampp start  (to start xampp).. n joy

If ubuntu server edition is installed do this before installing–

sudo /etc/init.d/apache2 stop (to stop other apache)
sudo /etc/init.d/mysql stop (stopping other mysql)

and also remove the apache/PHP and mysql form System–>Administration–>Services.

Download using opera

Here is the fast and easiest way I found to download songs and movies stuff form sites that do not share.

• download and install opera
• listen to music from sites like smashits, or watch videos from youtube, metacafe, etc.. After u have finished seeing it.. (Do not close the tab)
• go to –> Tools –> Advanced –> Cache. (in a new tab)
• There will be a huge list of file.. search for the files whose size is big(in MB’s) and match it with the address in the address bar.. (Do not close any tab). and click on it.. a dialog box will appear for saving the file.. save it to the desired location.. (now u can close the tabs).

• Another way of getting the stuff is by going to the cache folder.. go to –> Documents and settings–>(Ur user name)–>Application data(Its an hidder folder)–>opera–>opera–>profile–>cache4.. Its a cache memory used by opera.. just find the appropriate file by sorting with size.. and then just copy and paste…
• See to tat the file has been downloaded fully in the opera..
• Chage the file extension to .MP3 or .FLV or any supported type (Downloaded stuff will have extensions like .temp)

Enjoy free stuff.. Plz reply if u have a better method to download the legal stuff ‘illegally forever’.