1 What was the first connection made, to where, and via what protocol 1 5 4 0 1 9 5 7 1 0 3 2 IP 1 9 2 1 6 8 2 6 2 4 4 3 8 9 1 9 2 1 6 8 2 1 0 4 2 2 S 1 2 7 3 0 0 7 9 2 8 1 2 7 3 0 0 7 9 2 8 ( 0 ) win 5 8 4 0 1 5 4 0 1 9 5 7 1 7 2 0 IP 1 9 2 1 6 8 2 1 0 4 2 2 1 9 2 1 6 8 2 6 2 4 4 3 8 9 S 1 3 1 2 7 5 4 1 9 1 1 3 1 2 7 5 4 1 9 1 ( 0 ) ack 1 2 7 3 0 0 7 9 2 9 win 5 7 9 2 1 5 4 0 1 9 5 7 1 8 1 2 IP 1 9 2 1 6 8 2 6 2 4 4 3 8 9 1 9 2 1 6 8 2 1 0 4 2 2 ack 1 win 9 2 1 5 4 0 1 9 6 0 4 6 3 5 IP 1 9 2 1 6 8 2 1 0 4 2 2 1 9 2 1 6 8 2 6 2 4 4 3 8 9 P 1 4 0 ( 3 9 ) ack 1 win 9 1 1 5 4 0 1 9 6 1 1 6 8 7 IP 1 9 2 1 6 8 2 6 2 4 4 3 8 9 1 9 2 1 6 8 2 1 0 4 2 2 ack 4 0 win 9 2 1 5 4 0 1 9 6 1 2 8 4 4 IP 1 9 2 1 6 8 2 6 2 4 4 3 8 9 1 9 2 1 6 8 2 1 0 4 2 2 P 1 4 0 ( 3 9 ) ack 4 0 win 9 2 2 What website did the user visit What port did it connect to 1 5 4 2 3 1 0 6 3 1 4 9 IP 1 9 2 1 6 8 2 6 2 3 6 1 8 2 1 9 2 1 6 8 2 1 5 3 6 4 5 1 6 A google com ( 2 8 ) 1 5 4 2 3 1 0 8 0 1 6 3 IP 1 9 2 1 6 8 2 1 5 3 1 9 2 1 6 8 2 6 2 3 6 1 8 2 6 4 5 1 6 6 0 0 A 7 4 1 2 5 9 5 1 0 3 , domain 1 5 4 2 3 1 1 2 6 1 2 8 IP 1 9 2 1 6 8 2 6 2 6 0 1 7 5 7 4 1 2 5 9 5 1 0 3 8 0 S 3 3 4 7 2 0 3 0 1 1 3 3 4 7 2 0 3 0 1 1 ( 0 ) win 5 8 4 0 1 5 4 2 3 1 1 5 1 6 5 8 IP 7 4 1 2 5 9 5 1 0 3 8 0 1 9 2 1 6 8 2 6 2 6 0 1 7 5 S 1 9 6 1 4 2 8 0 3 9 1 9 6 1 4 2 8 0 3 9 ( 0 ) ack 3 3 4 7 2 0 3 0 1 2 win 5 6 7 2 1 5 4 2 3 1 1 5 1 9 2 3 IP 1 9 2 1 6 8 2 6 2 6 0 1 7 5 7 4 1 2 5 9 5 1 0 3 8 0 ack 1 win 9 2 1 5 4 2 3 1 1 5 2 6 9 8 IP 1 9 2 1 6 8 2 6 2 6 0 1 7 5 7 4 1 2 5 9 5 1 0 3 8 0 P 1 4 6 5 ( 4 6 4 ) ack 1 win 9 2 1 5 4 2 3 1 1 8 5 8 7 3 IP 7 4 1 2 5 9 5 1 0 3 8 0 1 9 2 1 6 8 2 6 2 6 0 1 7 5 ack 4 6 5 win 1 0 6 1 5 4 2 3 1 1 8 6 9 3 0 IP 7 4 1 2 5 9 5 1 0 3 8 0 1 9 2 1 6 8 2 6 2 6 0 1 7 5 P 1 5 1 2 ( 5 1 1 ) ack 4 6 5 win 1 0 6 1 5 4 2 3 1 1 8 6 9 6 9 IP 1 9 2 1 6 8 2 6 2 6 0 1 7 5 7 4 1 2 5 9 5 1 0 3 8 0 ack 5 1 2 win 1 0 8 3 What is different about this connection to the same site Explain what was different, and what this would mean to a security analyst performing packet captures 1 5 4 7 4 9 2 7 3 8 2 4 IP 1 9 2 1 6 8 2 6 2 4 2 9 3 7 1 9 2 1 6 8 2 1 5 3 3 0 3 8 2 A www google com ( 3 2 ) 1 5 4 7 4 9 2 9 2 5 8 7 IP 1 9 2 1 6 8 2 1 5 3 1 9 2 1 6 8 2 6 2 4 2 9 3 7 3 0 3 8 2 7 0 0 CNAME www l google com , domain 1 5 4 7 4 9 2 9 3 7 3 6 IP 1 9 2 1 6 8 2 6 2 4 4 1 9 0 2 0 9 8 5 2 2 5 1 0 4 4 4 3 S 4 0 3 2 2 7 2 1 8 3 4 0 3 2 2 7 2 1 8 3 ( 0 ) win 5 8 4 0 1 5 4 7 4 9 3 2 0 7 7 6 IP 2 0 9 8 5 2 2 5 1 0 4 4 4 3 1 9 2 1 6 8 2 6 2 4 4 1 9 0 S 9 0 1 1 7 9 0 5 4 9 0 1 1 7 9 0 5 4 ( 0 ) ack 4 0 3 2 2 7 2 1 8 4 win 5 6 7 2 1 5 4 7 4 9 3 2 0 8 4 2 IP 1 9 2 1 6 8 2 6 2 4 4 1 9 0 2 0 9 8 5 2 2 5 1 0 4 4 4 3 ack 1 win 9 2 1 5 4 7 4 9 3 2 1 7 0 2 IP 1 9 2 1 6 8 2 6 2 4 4 1 9 0 2 0 9 8 5 2 2 5 1 0 4 4 4 3 P 1 1 6 4 ( 1 6 3 ) ack 1 win 9 2 1 5 4 7 4 9 3 5 1 5 6 9 IP 2 0 9 8 5 2 2 5 1 0 4 4 4 3 1 9 2 1 6 8 2 6 2 4 4 1 9 0 ack 1 6 4 win 1 0 6 1 5 4 7 4 9 3 5 2 9 4 0 IP 2 0 9 8 5 2 2 5 1 0 4 4 4 3 1 9 2 1 6 8 2 6 2 4 4 1 9 0

The Answer is in the image, click to view ...

Answered step by step

Verified Expert Solution

Link Copied!

Question

1 Approved Answer

Posted on Sep 10, 2024

1 . What was the first connection made, to where, and via what protocol? 1 5 : 4 0 : 1 9 . 5 7

1 .

What was the first connection made, to where, and via what protocol?

15

40

19.571032

192.168.2.62.44389 > 192.168.2.104.22

: S

1273007928

1273007928 (0)

win

5840

15

40

19.571720

192.168.2.104.22 > 192.168.2.62.44389

: S

1312754191

1312754191 (0)

ack

1273007929

win

5792

15

40

19.571812

192.168.2.62.44389 > 192.168.2.104.22

.

ack

1

win

92

15

40

19.604635

192.168.2.104.22 > 192.168.2.62.44389

: P

1

40 (39)

ack

1

win

91

15

40

19.611687

192.168.2.62.44389 > 192.168.2.104.22

.

ack

40

win

92

15

40

19.612844

192.168.2.62.44389 > 192.168.2.104.22

: P

1

40 (39)

ack

40

win

92

2 .

What website did the user visit? What port did it connect to

?

15

42

31.063149

192.168.2.62.36182 > 192.168.2.1.53

64516 +

?

google.com.

(28)

15

42

31.080163

192.168.2.1.53 > 192.168.2.62.36182

64516 6 / 0 / 0

74.125.95.103, [|

domain

]

15

42

31.126128

192.168.2.62.60175 > 74.125.95.103.80

: S

3347203011

3347203011 (0)

win

5840

15

42

31.151658

74.125.95.103.80 > 192.168.2.62.60175

: S

1961428039

1961428039 (0)

ack

3347203012

win

5672

15

42

31.151923

192.168.2.62.60175 > 74.125.95.103.80

.

ack

1

win

92

15

42

31.152698

192.168.2.62.60175 > 74.125.95.103.80

: P

1

465 (464)

ack

1

win

92

15

42

31.185873

74.125.95.103.80 > 192.168.2.62.60175

.

ack

465

win

106

15

42

31.186930

74.125.95.103.80 > 192.168.2.62.60175

: P

1

512 (511)

ack

465

win

106

15

42

31.186969

192.168.2.62.60175 > 74.125.95.103.80

.

ack

512

win

108

3 .

What is different about this connection to the same site? Explain what was different, and what this would mean to a security analyst performing packet captures.

15

47

49.273824

192.168.2.62.42937 > 192.168.2.1.53

30382 +

?

www

.

google.com.

(32)

15

47

49.292587

192.168.2.1.53 > 192.168.2.62.42937

30382 7 / 0 / 0

CNAME www

.

.

google.com.,

[|

domain

]

15

47

49.293736

192.168.2.62.44190 > 209.85.225.104.443

: S

4032272183

4032272183 (0)

win

5840

15

47

49.320776

209.85.225.104.443 > 192.168.2.62.44190

: S

901179054

901179054 (0)

ack

4032272184

win

5672

15

47

49.320842

192.168.2.62.44190 > 209.85.225.104.443

.

ack

1

win

92

15

47

49.321702

192.168.2.62.44190 > 209.85.225.104.443

: P

1

164 (163)

ack

1

win

92

15

47

49.351569

209.85.225.104.443 > 192.168.2.62.44190

.

ack

164

win

106

15

47

49.352940

209.85.225.104.443 > 192.168.2.62.44190

Step by Step Solution

There are 3 Steps involved in it

Step: 1

Get Instant Access to Expert-Tailored Solutions

See step-by-step solutions with expert insights and AI powered tools for academic success

Step: 2

Step: 3

Ace Your Homework with AI

Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started

Recommended Textbook for

Microsoft Visual Basic 2005 For Windows Mobile Web Office And Database Applications Comprehensive

Authors: Gary B. Shelly, Thomas J. Cashman, Corinne Hoisington

1st Edition

0619254823, 978-0619254827

More Books

Students also viewed these Databases questions

Question

★★★★★

Where would you put Ford in terms of competitive position? Why? The old phrase, The bigger they are, the harder they fall, perfectly describes what has happened to the U.S. auto industry over the...

Answered: 1 week ago

Question

★★★★★

What does the labor force participation rate measure? Since 1950, how have the labor force participation rates of men and women changed?

Answered: 1 week ago

Question

★★★★★

=+5.10. 1 Minkowski's inequality is (5.40) valid for p > 1. It is enough to prove that E[(X1/P+Y1)]

Answered: 1 week ago

Question

★★★★★

Purse Corporation owns 70 percent of Scarf Companys voting shares. On January 1, 20X3, Scarf sold bonds with a par value of $600,000 at 98. Purse purchased $400,000 par value of the bonds; the...

Answered: 1 week ago

Question

★★★★★

Exercise 10-14 (Part Level Submission) Paula Boothe, president of the Sarasota Corporation, has mandated a minimum 8% return on investment for any project undertaken by the company. Given the...

Answered: 1 week ago

Question

★★★★★

Candace refuses to work on Sundays because it is against her religion to work on the Lord's Day.She has asked her employer to allow her to work every Saturday instead, and require another employee to...

Answered: 1 week ago

Question

★★★★★

Describe why it is important for a rural community\'s municpal government to perform a strategic planning process every five to seven years?

Answered: 1 week ago

Question

★★★★★

Question 21 2 pts Zapp's Inc. purchased equipment for $60,000 on January 1, 2021. The salvage value is $1,400, and the estimated useful life is 5 years. The company usually uses the double- declining...

Answered: 1 week ago

Question

★★★★★

Think about the technology you've had access to as an employee or as a student. This can include applications, systems, portals, etc. Which technology did you use the most? What types of technology...

Answered: 1 week ago

Question

★★★★★

Question 1 5 pts International trade may offer lower unit prices but at a higher risk. Consider the total cost and trade off lower production costs with higher priced transportation and more...

Answered: 1 week ago

Question

★★★★★

The structure is hingedly supported at point A. The structure is affected by a triangular load q and a point load F. Solve the symbolic expressions for the support reactions. F=qL B K 2 3L 4L

Answered: 1 week ago

Question

★★★★★

Interview a representative of a local newspaper or area radio or television station to learn how the organization uses news releases. If possible, obtain copies of one or two news releases received...

Answered: 1 week ago

Question

★★★★★

Teamwork. As your instructor directs,work independently or as a member of a team to prepare all or selected parts of a business plan designed to obtain the funding necessary to start one of the...

Answered: 1 week ago

Question

★★★★★

How can a performance appraisal help a worker? the workers organization? (Objective 7)

Answered: 1 week ago

Previous Question Next Question

~~View Answer in SolutionInn App~~