Created
June 28, 2018 17:42
-
-
Save hungnt0013/23cd860ff0ed3c1750237026ca623d45 to your computer and use it in GitHub Desktop.
IAR ASSIGNMENT _HUNGNTSE03913
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| How many total packets are in the packet capture file? .................................................309 | |
| Which packet number initiates the TCP 3-way handshake? .................................................23 | |
| What is the value of the Acknowledgement number for the packet in question 2? ..........................0 | |
| Which TCP flags are set in the packet in question 2? ...................................................0x02 (SYN) | |
| Which packet number is the response to the packet in question 2? .......................................24 | |
| What is the value of the Sequence number for the responding packet? ....................................0 | |
| What is the value of the Acknowledgement number for the responding packet? .............................1 | |
| Which TCP flags are set in the responding packet? ......................................................0x012 (SYN, ACK) | |
| Which packet represents the third phase of the TCP 3-way handshake? ....................................25 | |
| What is the value of the Sequence number for the third phase? ................................1 | |
| What is the value of the Acknowledgement number for the third phase? ............................1 | |
| What is the MAC address of the host sending the request? ..........................00:19:B9:4A:6A:6E | |
| Who is the vendor of the host NIC sending the request? ............................Dell Inc | |
| What is the MAC address of the MAC address of the server? ...........................00:13:72:4C:C9:84 | |
| Who is the vendor of the web server NIC? .............................................Dell Inc | |
| What service is the server running? ...................................................FTP | |
| What protocol is being used to transfer the data? .........................................TCP | |
| What is the user name of the account accessing the server? ...........................ftp_user | |
| What is the password of the user account being used? .................................P@ssw0rd | |
| What is the file that is being transferred? .......................................picture.jpg | |
| What is the size of the file being transferred? ....................................183370 bytes | |
| What is the IP ID for the first packet that contains the file transferred? ...............0x0311 (785) | |
| What is the IP ID for the last packet that contains the file transferred? ................0x03b0 (944) | |
| What is the picture of that is transferred? ......................................picture.jpg | |
| Answer the following questions regarding the image (use Phil Harvey’s EXIF tool for best results) | |
| 1. What is the make and model of the device that took the picture? ........................ SM-G900v | |
| 2. What software was used to edit the picture? ..................................Adobe Photoshop CS6 | |
| 3. Who is the author (artist) of the picture? ......................................Anonymous | |
| 4. When was the picture taken? .....................................................22/07/2015 | |
| 5. What is the physical address of where the picture was taken? .......25921 Ridge Rd, Damascus, MD 20872 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment