In this practical, i am going to use an protocol analyzer (sniffer) to capture packets to decode and analyze its contents, monitoring network traffic can help to identify and troubleshoot network problems.

Protocol analyzer also can be a dangerous tool if an attacker is making use of it. It can be used to intercept and view the network traffic between that connection. Attacker just simply find any false ceilings, exposed wiring or unprotected RJ-45 jacks to access into people connections.

In this practical, i am going to connect to a false FTP connection, the protocol analyzer will check for packets being sent over by my connection to the FTP "server1". Any web base access which uses IP or MAC will be recorded in the protocol analyzer. I tried bluehost.com and facebook.com, to check the string information of what i am accessing, just go to Edit -> Find Packet. Change the type to string, and type out the letters or name, it will then appear at the bottom of the program.