devskim blog
Search
Http Basic Auth (WireShark)

Http Basic Auth (WireShark)

sections
포렌식
포렌식
Tags
forensic
Created
May 1, 2023 09:21 AM
Last Updated
Jul 30, 2023 09:49 AM
 
 
사전 준비문제참고
 

사전 준비

 

문제

Q1. How many HTTP GET requests are in pcap?
  • http.request.method 검색
      • notion image
정답
5
 
Q2. What is the server operating system?
  • Source가 1.1.1.5인 데이터의 Hypertext Transfer Protocol 정보 확인
      • notion image
정답
FreeBSD
 
Q3. What is the name and version of the web server software?
  • 2번과 동일한 풀이
정답
Apache/2.2.15
 
Q4. What is the version of OpenSSL running on the server?
  • 2번과 동일한 풀이
정답
OpenSSL/0.9.8n
 
Q5. What is the client's user-agent information?
  • Source가 로컬인 Hypertext Transfer Protocol 정보 확인
      • notion image
정답
Lynx/2.8.7rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8n
 
Q6. What is the username used for Basic Authentication?
  • GET 통신의 Hypertext Transfer Protocol 정보 확인
      • notion image
정답
webadmin
 
Q7. What is the user password used for Basic Authentication?
  • 6번과 동일한 풀이
정답
W3b4Dm1n
 
 
 

참고

Getting Started to LetsDefend
Register to soc analyst/incident response training platform
Getting Started to LetsDefend
https://app.letsdefend.io/challenge/http-basic-auth
Getting Started to LetsDefend
Http Basic Auth - LetsDefend Challenge
Http Basic Auth - LetsDefend Challenge
https://www.youtube.com/watch?v=qKXcBsit5jE
Http Basic Auth - LetsDefend Challenge
PREVPrintNightmare
NEXT모바일 포렌식 추출 방법론