Use Tcpdump to Intercept Network Traffic
Learn On Demand Pro Series

Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.

Time
45 minutes
Difficulty
Beginner

In this IT Pro Challenge provided by Learn on Demand Systems you will use tcpdump to intercept and read network traffic. NOTE: Before you begin, please ensure you have set aside enough time to complete ...

Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.

Overview

Introduction: The Use Tcpdump to Intercept Network Traffic lab is a premium Cybrary lab from Learn on Demand Systems. This practice lab helps the student to configure FTP and intercept FTP and SSH network traffic using Tcpdump. This is important for the work role of system administrators and cyber operators. It is estimated that the practice lab takes about 30 to 45 minutes to complete it.

The lab uses two virtual machines: CentOS7 Linux and Kali Linux. However, the challenge does not require advanced experience with Linux from the student to complete. The Use Tcpdump to Intercept Network Traffic lab comes with detailed step-by-step instructions to follow. At the end of Use Tcpdump to Intercept Network Traffic lab, the student will be able to install FTP service on Linux machines and intercept and analyze network traffic.

Skill/Activity Breakdown: The Use Tcpdump to Intercept Network Traffic lab requires students to install FTP services on the Linux machine. This develops the skill of installing services on Linux machines. This is important for the work role of Cyber Operator, and System Administrator.

The Use Tcpdump to Intercept Network Traffic lab also develops the skill to use Tcpdump utility to intercept FTP and SSH network traffic. This develops skills in performing network analysis. This is important for the work role of Law Enforcement/ Counterintelligence Forensics Analyst, Cyber Defense Forensics Analyst, Cyber Defense Analyst, and Vulnerability Assessment Analyst.

The Use Tcpdump to Intercept Network Traffic lab also develops the skills to network troubleshooting and analyzing the network traffic. This is important for the work role of a Network Operations Specialist, Cyber Defense Infrastructure Support Specialist, Security Control Assessor, Cyber Instructor, and Vulnerability Assessment Analyst.

The Use Tcpdump to Intercept Network Traffic lab also develops the skills to extract useful information from packet captured using Tcpdump. This is important for the work role of Cyber Operator and Exploitation Analyst.

By completing the Use Tcpdump to Intercept Network Traffic lab, the student will learn how to install services on Linux machines, use Tcpdump to intercept network traffic, analyze the captured packets, and understand the difference between FTP and SSH. Learning these skills is important for network and system administrators.

Conclusion: The Use Tcpdump to Intercept Network Traffic lab is presented by Cybrary and created by Learn on Demand Systems. This practice lab is intended for systems administrators to develop the skills of network troubleshooting and to learn how to review the security access and ensure that authentication information is secure. This lab would be beneficial for students on the Penetration Tester, Security Operations Center (SOC) Analyst, and Cyber Security Engineer career path. Completing this lab means that students are able to use Tcpdump for various tasks of analyzing network traffic.

Click on Use Tcpdump to Intercept Network Traffic lab to learn how to use Tcmpdump utility to analyze network traffic.