Skip to main content

Posts

Showing posts from November, 2014

Packet Analysis 4 : Bacic HTTP Authentication

 "This tutorial should be used for educational purpose only. I won't be responsible if you misuse this techniques and get yourself in trouble.The pcap file used in this example is from a CTF challenge " Protocol - Hypertext Transfer Protocol - Used for exchanging or transfer hypertext  Connection Type - TCP  So the challenge scenario is something like this .  Find the username and passport for the bacis http authentication. So to solve this challenge I will use Wireshark. First I load the pcap file in Wireshark. In the filter bar I will write "http" so that it displays the packets matching the HTTP protocol only. Now we will analyze the first capture and right click on it and select "Follow TCP Stream". After analyzing the we will find that the page is protected by Basic Http Authentication.  GET / HTTP/1.1 Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */* Accept-Language: en-us Accept-Encoding: gzip, def

Packet Analysis 3 : SMTP Authentication

 "This tutorial should be used for educational purpose only. I won't be responsible if you misuse this techniques and get yourself in trouble.The pcap file used in this example is from a CTF challenge " Protocol - Simple Mail Transfer Protocol - Used for sending emails Connection Type - TCP Commonly Used Commands : HELO , MAIL , RCPT ,  So the challenge scenario is something like this .  Find the username and password of the SMTP authentication. So to solve this challenge I will use Wireshark. First I load the pcap file in Wireshark. In the filter bar I will write "smtp" so that it displays the packets matching the SMTP protocol only. In SMTP we need to authenticate before we can send any mail . After applying the filter we can see the details of the SMTP . We can find the info by looking at the output or we can also get the details by following the TCP stream at "Authentication Successful" . So I will right click on that and selec