Computer Science / Wireshark

Packet Sniffing with Wireshark: Create Your First Filters

بواسطة: Coursera

Overview

This guided project, Packet Sniffing with Wireshark: Create Your First Filters, will help an intermediate security analyst who is looking to use packet sniffing with Wireshark to capture, display, and observe specific HTTP and HTTPS packets. In this 1.5-hour long project-based course, you will learn how to use Wireshark for packet sniffing; to capture and observe certain network packets using display filters and capture filters.

To achieve this, you will be taking on the role of helping an IT manager who wants to detect unwanted network traffic on their server and enforce a web surfing policy. Your task is to demonstrate Wireshark’s packet sniffing capabilities.

In order to be successful in this project, you will need some basic Linux Command Line Knowledge and some exposure to Computer Networks.

Syllabus

Project Overview

In this guided project, you will learn how to use Wireshark for packet sniffing; to capture and observe certain network packets using display filters and capture filters.

Taught by

David Dalsveen

Computer Science / Wireshark

Packet Sniffing with Wireshark: Create Your First Filters

الذهاب الي الدورة

Packet Sniffing with Wireshark: Create Your First Filters

بواسطة: Coursera

Coursera
مدفوعة
الإنجليزية
متاح شهادة
متاح في أي وقت
intermediate
English

Messages Timeline Exceptions Views14 Route Queries7 Models6 Gate Session Request

8.1.2294ms2MBGET ar/الدورات/{slug}

Booting (184ms)
Application (110ms)
1 x Booting (62.51%)
183.97ms
1 x Application (37.24%)
109.60ms

14 templates were rendered

public.courses.show (resources/views/public/courses/show.blade.php)3bladefile
Params
0
course
1
links
2
config
public.courses.partials.breadcrumbs (resources/views/public/courses/partials/breadcrumbs.blade.php)6bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
public.courses.partials.heading (resources/views/public/courses/partials/heading.blade.php)7bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
6
classes
public.courses.partials.details (resources/views/public/courses/partials/details.blade.php)6bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
public.courses.partials.breadcrumbs (resources/views/public/courses/partials/breadcrumbs.blade.php)6bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
public.courses.partials.heading (resources/views/public/courses/partials/heading.blade.php)7bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
6
classes
public.layouts.main (resources/views/public/layouts/main.blade.php)6bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
public.layouts.partials.meta (resources/views/public/layouts/partials/meta.blade.php)6bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
public.layouts.partials.navbar (resources/views/public/layouts/partials/navbar.blade.php)6bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
public.auth.profile.partials.links (resources/views/public/auth/profile/partials/links.blade.php)6bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
public.auth.profile.partials.link (resources/views/public/auth/profile/partials/link.blade.php)8bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
6
route
7
title
public.auth.profile.partials.link (resources/views/public/auth/profile/partials/link.blade.php)8bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
6
route
7
title
public.auth.profile.partials.link (resources/views/public/auth/profile/partials/link.blade.php)8bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config
6
route
7
title
public.layouts.partials.flash-session (resources/views/public/layouts/partials/flash-session.blade.php)6bladefile
Params
0
__env
1
app
2
errors
3
course
4
links
5
config

uri: GET ar/الدورات/{slug}
middleware: web, localize:ar
controller: App\Http\Controllers\CourseController@show
as: ar.courses.show
namespace
prefix: /ar
where
file: app/Http/Controllers/CourseController.php:17-35

7 statements were executed5.32ms

select * from `courses` where `slug_ar` = 'packet-sniffing-with-wireshark:-create-your-first-filters' limit 1

3.81ms/app/Http/Controllers/CourseController.php:20corspedia

Metadata
Bindings	0. packet-sniffing-with-wireshark:-create-your-first-filters
Backtrace	17. /app/Http/Controllers/CourseController.php:20 18. /vendor/laravel/framework/src/Illuminate/Routing/Controller.php:54 19. /vendor/laravel/framework/src/Illuminate/Routing/ControllerDispatcher.php:43 20. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:260 21. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:205

update `courses` set `visitors` = `visitors` + 1, `courses`.`updated_at` = '2025-04-13 04:18:36' where `id` = 1417

650μs/app/Http/Controllers/CourseController.php:21corspedia

Metadata
Bindings	0. 2025-04-13 04:18:36 1. 1417
Backtrace	17. /app/Http/Controllers/CourseController.php:21 18. /vendor/laravel/framework/src/Illuminate/Routing/Controller.php:54 19. /vendor/laravel/framework/src/Illuminate/Routing/ControllerDispatcher.php:43 20. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:260 21. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:205

select `id`, `name_en`, `name_ar`, `topic_id`, `slug_en`, `slug_ar` from `subjects` where `subjects`.`id` in (116)

170μs/app/Http/Controllers/CourseController.php:23corspedia

Metadata
Backtrace	20. /app/Http/Controllers/CourseController.php:23 21. /vendor/laravel/framework/src/Illuminate/Routing/Controller.php:54 22. /vendor/laravel/framework/src/Illuminate/Routing/ControllerDispatcher.php:43 23. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:260 24. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:205

select `id`, `name_en`, `name_ar`, `slug_en`, `slug_ar` from `topics` where `topics`.`id` in (1)

140μs/app/Http/Controllers/CourseController.php:23corspedia

Metadata
Backtrace	25. /app/Http/Controllers/CourseController.php:23 26. /vendor/laravel/framework/src/Illuminate/Routing/Controller.php:54 27. /vendor/laravel/framework/src/Illuminate/Routing/ControllerDispatcher.php:43 28. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:260 29. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:205

select * from `institutions` where `institutions`.`id` in (106) and `institutions`.`deleted_at` is null

160μs/app/Http/Controllers/CourseController.php:23corspedia

Metadata
Backtrace	20. /app/Http/Controllers/CourseController.php:23 21. /vendor/laravel/framework/src/Illuminate/Routing/Controller.php:54 22. /vendor/laravel/framework/src/Illuminate/Routing/ControllerDispatcher.php:43 23. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:260 24. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:205

select * from `providers` where `providers`.`id` in (2) and `providers`.`deleted_at` is null

150μs/app/Http/Controllers/CourseController.php:23corspedia

Metadata
Backtrace	20. /app/Http/Controllers/CourseController.php:23 21. /vendor/laravel/framework/src/Illuminate/Routing/Controller.php:54 22. /vendor/laravel/framework/src/Illuminate/Routing/ControllerDispatcher.php:43 23. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:260 24. /vendor/laravel/framework/src/Illuminate/Routing/Route.php:205

select * from `html_files` where `html_files`.`id` = 1410 limit 1

240μs/app/Models/Course.php:84corspedia

Metadata
Bindings	0. 1410
Backtrace	21. /app/Models/Course.php:84 28. view::public.courses.show:29 30. /vendor/laravel/framework/src/Illuminate/Filesystem/Filesystem.php:125 31. /vendor/laravel/framework/src/Illuminate/View/Engines/PhpEngine.php:58 32. /vendor/laravel/framework/src/Illuminate/View/Engines/CompilerEngine.php:72

App\Models\HtmlFile: 1
App\Models\Provider: 1
App\Models\Institution: 1
App\Models\Topic: 1
App\Models\Subject: 1
App\Models\Course: 1

_token: 7bS7BOGAGXWyL83IvkmrlkrrlYl5oBcLmi88EtEc
locale: ar
_previous: array:1 [ "url" => "https://www.corspedia.com/ar/%D8%A7%D9%84%D8%AF%D9%88%D8%B1%D8%A7%D8%AA/packet...
_flash: array:2 [ "old" => [] "new" => [] ]
PHPDEBUGBAR_STACK_DATA: []

path_info

/ar/%D8%A7%D9%84%D8%AF%D9%88%D8%B1%D8%A7%D8%AA/packet-sniffing-with-wireshark:-create-your-first-filters

status_code

status_text

OK

format

html

content_type

text/html; charset=UTF-8

request_query

[]

request_request

[]

request_headers

  0 of 0   
array:24 [▼
  "sec-ch-ua-mobile" => array:1 [▶
    0 => "?0"
  ]
  "sec-ch-ua" => array:1 [▶
    0 => ""HeadlessChrome";v="129", "Not=A?Brand";v="8", "Chromium";v="129""
  ]
  "cache-control" => array:1 [▶
    0 => "no-cache"
  ]
  "pragma" => array:1 [▶
    0 => "no-cache"
  ]
  "upgrade-insecure-requests" => array:1 [▶
    0 => "1"
  ]
  "priority" => array:1 [▶
    0 => "u=0, i"
  ]
  "user-agent" => array:1 [▶
    0 => "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
  ]
  "cf-ipcountry" => array:1 [▶
    0 => "US"
  ]
  "cf-connecting-ip" => array:1 [▶
    0 => "3.17.66.55"
  ]
  "accept" => array:1 [▶
    0 => "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7"
  ]
  "sec-fetch-site" => array:1 [▶
    0 => "none"
  ]
  "cf-visitor" => array:1 [▶
    0 => "{"scheme":"https"}"
  ]
  "sec-fetch-mode" => array:1 [▶
    0 => "navigate"
  ]
  "sec-fetch-user" => array:1 [▶
    0 => "?1"
  ]
  "x-forwarded-proto" => array:1 [▶
    0 => "https"
  ]
  "cdn-loop" => array:1 [▶
    0 => "cloudflare; loops=1"
  ]
  "accept-encoding" => array:1 [▶
    0 => "gzip, br"
  ]
  "sec-fetch-dest" => array:1 [▶
    0 => "document"
  ]
  "sec-ch-ua-platform" => array:1 [▶
    0 => ""Windows""
  ]
  "x-forwarded-for" => array:1 [▶
    0 => "3.17.66.55"
  ]
  "cf-ray" => array:1 [▶
    0 => "92f8290d2e1598b9-ORD"
  ]
  "host" => array:1 [▶
    0 => "www.corspedia.com"
  ]
  "content-length" => array:1 [▶
    0 => ""
  ]
  "content-type" => array:1 [▶
    0 => ""
  ]
]

request_server

  0 of 0   
array:50 [▼
  "USER" => "www-data"
  "HOME" => "/var/www"
  "HTTP_SEC_CH_UA_MOBILE" => "?0"
  "HTTP_SEC_CH_UA" => ""HeadlessChrome";v="129", "Not=A?Brand";v="8", "Chromium";v="129""
  "HTTP_CACHE_CONTROL" => "no-cache"
  "HTTP_PRAGMA" => "no-cache"
  "HTTP_UPGRADE_INSECURE_REQUESTS" => "1"
  "HTTP_PRIORITY" => "u=0, i"
  "HTTP_USER_AGENT" => "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
  "HTTP_CF_IPCOUNTRY" => "US"
  "HTTP_CF_CONNECTING_IP" => "3.17.66.55"
  "HTTP_ACCEPT" => "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7"
  "HTTP_SEC_FETCH_SITE" => "none"
  "HTTP_CF_VISITOR" => "{"scheme":"https"}"
  "HTTP_SEC_FETCH_MODE" => "navigate"
  "HTTP_SEC_FETCH_USER" => "?1"
  "HTTP_X_FORWARDED_PROTO" => "https"
  "HTTP_CDN_LOOP" => "cloudflare; loops=1"
  "HTTP_ACCEPT_ENCODING" => "gzip, br"
  "HTTP_SEC_FETCH_DEST" => "document"
  "HTTP_SEC_CH_UA_PLATFORM" => ""Windows""
  "HTTP_X_FORWARDED_FOR" => "3.17.66.55"
  "HTTP_CF_RAY" => "92f8290d2e1598b9-ORD"
  "HTTP_HOST" => "www.corspedia.com"
  "REDIRECT_STATUS" => "200"
  "SERVER_NAME" => "corspedia.com"
  "SERVER_PORT" => "443"
  "SERVER_ADDR" => "141.95.147.152"
  "REMOTE_USER" => ""
  "REMOTE_PORT" => "17534"
  "REMOTE_ADDR" => "172.69.17.57"
  "SERVER_SOFTWARE" => "nginx/1.18.0"
  "GATEWAY_INTERFACE" => "CGI/1.1"
  "HTTPS" => "on"
  "REQUEST_SCHEME" => "https"
  "SERVER_PROTOCOL" => "HTTP/2.0"
  "DOCUMENT_ROOT" => "/var/www/corspedia/public"
  "DOCUMENT_URI" => "/index.php"
  "REQUEST_URI" => "/ar/%D8%A7%D9%84%D8%AF%D9%88%D8%B1%D8%A7%D8%AA/packet-sniffing-with-wireshark:-create-your-first-filters"
  "SCRIPT_NAME" => "/index.php"
  "CONTENT_LENGTH" => ""
  "CONTENT_TYPE" => ""
  "REQUEST_METHOD" => "GET"
  "QUERY_STRING" => ""
  "SCRIPT_FILENAME" => "/var/www/corspedia/public/index.php"
  "PATH_INFO" => ""
  "FCGI_ROLE" => "RESPONDER"
  "PHP_SELF" => "/index.php"
  "REQUEST_TIME_FLOAT" => 1744517915.9669
  "REQUEST_TIME" => 1744517915
]

request_cookies

[]

response_headers

  0 of 0   
array:5 [▼
  "content-type" => array:1 [▶
    0 => "text/html; charset=UTF-8"
  ]
  "cache-control" => array:1 [▶
    0 => "no-cache, private"
  ]
  "date" => array:1 [▶
    0 => "Sun, 13 Apr 2025 04:18:36 GMT"
  ]
  "set-cookie" => array:2 [▶
    0 => "XSRF-TOKEN=eyJpdiI6Ii84Z2RqRFZUUkwvVGlyU09MNjltWVE9PSIsInZhbHVlIjoicW9GMjFyU1BDR0hIVTUraGprWUd5M1F1Y3FSQm1tSnBWQk1BQytvc1dQZ2VKb1lmNVBEc0NQVVhiSHBOeDVOWmpML2VyQ1RMbzM2K2VmZm1la0NNanVYREF3Rk9KRDM2VDBqVFBYZk8wZDJlcHhEM28rS1VzcUZobWhCYlpLSjMiLCJtYWMiOiI4OWE3NWQ3MDNkNjdkYzI5YWQyZDI1NTdlYTFmYzI4ZGRhZDQwYWZmNjBlYWYyOTNiOWI3ZjY0YzM5OWM1NjI1IiwidGFnIjoiIn0%3D; expires=Sun, 13 Apr 2025 06:18:36 GMT; Max-Age=7200; path=/; samesite=lax ◀XSRF-TOKEN=eyJpdiI6Ii84Z2RqRFZUUkwvVGlyU09MNjltWVE9PSIsInZhbHVlIjoicW9GMjFyU1BDR0hIVTUraGprWUd5M1F1Y3FSQm1tSnBWQk1BQytvc1dQZ2VKb1lmNVBEc0NQVVhiSHBOeDVOWmpML2VyQ ▶"
    1 => "laravel_session=eyJpdiI6IlVsSmxKYVppL2FTeVUraGxnRWJuY1E9PSIsInZhbHVlIjoidVIrNGllTlB1Um9JbmFYWnFyc1FzN0psdWtQcjF6bEw0WldJMEhNQW5UczlzZ3NkYm5hVTVtQkk0aFNWWHE3VityZDBDWDhlRVBmVm9tamszWUdVc3Z1bldKekxNVFQ1OE1IWFRpZDltSGExc3ZpY21KaDdSTis1NVdrWWFaWmEiLCJtYWMiOiI0Yzk3OThlMjdiMDQ1YmMwM2Q0MzdjMDJhZjIxYjM0MWRmNDE4NTMzMDAyYjgxODhhYWE0MDk0YWNjMDY4ODdlIiwidGFnIjoiIn0%3D; expires=Sun, 13 Apr 2025 06:18:36 GMT; Max-Age=7200; path=/; httponly; samesite=lax ◀laravel_session=eyJpdiI6IlVsSmxKYVppL2FTeVUraGxnRWJuY1E9PSIsInZhbHVlIjoidVIrNGllTlB1Um9JbmFYWnFyc1FzN0psdWtQcjF6bEw0WldJMEhNQW5UczlzZ3NkYm5hVTVtQkk0aFNWWHE3Vity ▶"
  ]
  "Set-Cookie" => array:2 [▶
    0 => "XSRF-TOKEN=eyJpdiI6Ii84Z2RqRFZUUkwvVGlyU09MNjltWVE9PSIsInZhbHVlIjoicW9GMjFyU1BDR0hIVTUraGprWUd5M1F1Y3FSQm1tSnBWQk1BQytvc1dQZ2VKb1lmNVBEc0NQVVhiSHBOeDVOWmpML2VyQ1RMbzM2K2VmZm1la0NNanVYREF3Rk9KRDM2VDBqVFBYZk8wZDJlcHhEM28rS1VzcUZobWhCYlpLSjMiLCJtYWMiOiI4OWE3NWQ3MDNkNjdkYzI5YWQyZDI1NTdlYTFmYzI4ZGRhZDQwYWZmNjBlYWYyOTNiOWI3ZjY0YzM5OWM1NjI1IiwidGFnIjoiIn0%3D; expires=Sun, 13-Apr-2025 06:18:36 GMT; path=/ ◀XSRF-TOKEN=eyJpdiI6Ii84Z2RqRFZUUkwvVGlyU09MNjltWVE9PSIsInZhbHVlIjoicW9GMjFyU1BDR0hIVTUraGprWUd5M1F1Y3FSQm1tSnBWQk1BQytvc1dQZ2VKb1lmNVBEc0NQVVhiSHBOeDVOWmpML2VyQ ▶"
    1 => "laravel_session=eyJpdiI6IlVsSmxKYVppL2FTeVUraGxnRWJuY1E9PSIsInZhbHVlIjoidVIrNGllTlB1Um9JbmFYWnFyc1FzN0psdWtQcjF6bEw0WldJMEhNQW5UczlzZ3NkYm5hVTVtQkk0aFNWWHE3VityZDBDWDhlRVBmVm9tamszWUdVc3Z1bldKekxNVFQ1OE1IWFRpZDltSGExc3ZpY21KaDdSTis1NVdrWWFaWmEiLCJtYWMiOiI0Yzk3OThlMjdiMDQ1YmMwM2Q0MzdjMDJhZjIxYjM0MWRmNDE4NTMzMDAyYjgxODhhYWE0MDk0YWNjMDY4ODdlIiwidGFnIjoiIn0%3D; expires=Sun, 13-Apr-2025 06:18:36 GMT; path=/; httponly ◀laravel_session=eyJpdiI6IlVsSmxKYVppL2FTeVUraGxnRWJuY1E9PSIsInZhbHVlIjoidVIrNGllTlB1Um9JbmFYWnFyc1FzN0psdWtQcjF6bEw0WldJMEhNQW5UczlzZ3NkYm5hVTVtQkk0aFNWWHE3Vity ▶"
  ]
]

session_attributes

  0 of 0   
array:5 [▼
  "_token" => "7bS7BOGAGXWyL83IvkmrlkrrlYl5oBcLmi88EtEc"
  "locale" => "ar"
  "_previous" => array:1 [▶
    "url" => "https://www.corspedia.com/ar/%D8%A7%D9%84%D8%AF%D9%88%D8%B1%D8%A7%D8%AA/packet-sniffing-with-wireshark:-create-your-first-filters"
  ]
  "_flash" => array:2 [▶
    "old" => []
    "new" => []
  ]
  "PHPDEBUGBAR_STACK_DATA" => []
]