number of web sessions, DNS interactions information from a capture file
Hi all, I have a capture file and i want to know some information from it to answer the following questions. How many web sessions have been captured in the file? Are there any DNS interactions in the file? If no explain why you reached that conclusions, else show samples. Can you find any usernames and/or passwords (you have permission to look for such information in this file
Presumably this is a homework question. What have you tried so far?
I get only number of TCP and UDP sessions But i could not know how determine number of web session and know its contents.
So what defines a web session, maybe the protocol?
HTTP right ?? and how to detect DNS interactions?
Correct, DNS is a protocol as well and Wireshark display filters can be used to limit the display to a particular protocol and then the Statistics -> Conversations dialog can be used to get a summary of the interactions (check the "Limit to display filter" box).