Scribd Logo
Upload

Welcome to Scribd!

  • MLC Capturing Network Trafik

    Uploaded by

    ouafa
    0 views3 pages
    This document provides instructions for a lab on capturing network traffic. The lab demonstrates how to capture and inspect network traffic using PyShark, a Python library, and Wireshark. Students are instructed to install PyShark and Wireshark, configure PyShark's path to work with Wireshark, run a Python script to capture traffic for a specified duration and write it to a file, and then open the captured file in Wireshark to examine the network traffic. The goal of the lab is to help students understand how to monitor network traffic for purposes such as troubleshooting, analysis, and detecting malicious activity.

    Original Description:

    Original Title

    MLC_Capturing_Network_Trafik

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides instructions for a lab on capturing network traffic. The lab demonstrates how to capture and inspect network traffic using PyShark, a Python library, and Wireshark. Students are instructed to install PyShark and Wireshark, configure PyShark's path to work with Wireshark, run a Python script to capture traffic for a specified duration and write it to a file, and then open the captured file in Wireshark to examine the network traffic. The goal of the lab is to help students understand how to monitor network traffic for purposes such as troubleshooting, analysis, and detecting malicious activity.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    0 views3 pages

    MLC Capturing Network Trafik

    Uploaded by

    ouafa
    This document provides instructions for a lab on capturing network traffic. The lab demonstrates how to capture and inspect network traffic using PyShark, a Python library, and Wireshark. Students are instructed to install PyShark and Wireshark, configure PyShark's path to work with Wireshark, run a Python script to capture traffic for a specified duration and write it to a file, and then open the captured file in Wireshark to examine the network traffic. The goal of the lab is to help students understand how to monitor network traffic for purposes such as troubleshooting, analysis, and detecting malicious activity.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 3

    Intelligent Systems for Cybersecurity

    MACHINE LEARNING CYBERSECURITY


    CUPTURING NETWORK TRAFFIC

    LAB 3: CUPTRING NETWORK TRAFFIC


    Lab Description: Capturing network traffic is important for troubleshooting,
    analysis, and software and communications protocol development. For the security-
    minded individual, monitoring network traffic is crucial for detecting malicious
    activity or policy violation. In this lab, we will demonstrate how to capture and
    inspect network traffic.

    Getting Ready: In preparation for this recipe, observe the following steps: 1.
    Install pyshark: pip install pyshark 2. Install wireshark. The latest version can be
    found at https://www.wireshark. org/download.html.

    How to do it…

    In the following steps, we utilize a Python library named PyShark, along


    with Wireshark, to capture and examine network traffic.

    1. You must add tshark to PyShark's configuration path. Tshark is a


    command line variant of Wireshark. To do this, run the following command:

    pip show pyshark

    Note the location of the package. In the pyshark directory in this location,
    find the file, config.ini. Edit tshark_path to the location of tshark inside your
    wireshark installation folder. Similarly, edit dumpcap_path to the location of
    dumpcap inside your wireshark installation folder

    Steps 2 and 4 should be executed in a Python environment. Note that, as of


    the current version, pyshark may have some bugs when run in a Jupyter notebook.

    2. Import pyshark and specify the duration of the capture:

    Pr. Meryeme Ayache Page | 1


    Intelligent Systems for Cybersecurity

    3. Specify the name of the file to output the capture, to:

    4. Capture network traffic:

    5. To examine the capture, open the pcap file in Wireshark:

    Q1: How it works…

    Write a small paragraph explaining the main steps of the lab you just
    have finished before.

    Pr. Meryeme Ayache Page | 2


    Intelligent Systems for Cybersecurity

    WHAT TO SUBMIT

    You should submit a lab report file which includes:


     The steps for how you preprocessed data
     The screenshot of the results
     You can name your report "Lab_NeworkTraffic_yourname.doc".

    Pr. Meryeme Ayache Page | 3

    You might also like