STEP 1
Click capture then interface where we can select network interface card and then click START button at the bottom of the Wireshark Capture option menu.
STEP 7
Showing input command ftp server ! in command Prompt.
STEP 8
Below is a screenshot of a website www.bluehost.com/cgi-bin/uftp which show the account login box.
STEP 9
I tried to login with Gerald as Username and happy as passwork but it showed invalid login.
STEP 14
I tried to capture username & passwork from www.bluehost.com/cgi-bin/uftp but it didn't work because http use port 443 which uses encryption layer called Transport laver security(TLS) and
secure sockets layer (ssl) but http use port 80. So i have another wev address (http://en.wikipedia.org/). Here Wireshark is successful to capture the username and password that were typed.
How can you prevent Wireshark capturing these data ?
As we know, from above scenerio it is very easy to obtain sensitive data from snooping using software like wireshark which is very dangerous so to prevent this from happening we have to encode the data that's being sent in a manner that an outsider cannot decode it, which is known as encryption. Commonly use encryption method on the internet is SSL and TLS.
No comments:
Post a Comment