Lab 10.1.12 Analyze Email Traffic for Sensitive Data [WLOs: 1, 2, 3, 4, 5] [CLOs: 1, 2, 3]

 Lab Questions

Q1What is the email address of the account manager?

Your answer: fstone@rocks.com

Correct answer: rscam@woodspecialist.com

Q2What is the recipient's full name on the captured email?

Your answer: Lynette Pratt

Correct answer: Lynette Pratt

Q3What is the name of the company requesting payment?

Your answer: ACME, Inc

Correct answer: ACME, Inc

Explanation

In this lab, your task is to:

• Capture packets on the enp2s0 interface using Wireshark.
• Find packets containing invoice emails using display filters.
• Check to see if the following information can be seen in clear text format in the invoice emails:
  • Source and destination email addresses
  • Names of those that sent or received the emails
  • Customer information
• Answer the questions.

Complete this lab as follows:

1. From the Favorites bar, open Wireshark.
2. Under Capture, select enp2s0.
3. Select the blue fin to begin a Wireshark capture.
4. After a few seconds, select the red box to stop the Wireshark capture.
5. In the Apply a display filter field, type tcp contains Invoice and press Enter.
6. From the bottom panel, exam the packet information and locate the following:
   • The account manager's email address.
   • The recipient of the email's full name.
   • The name of the company requesting payment.
7. In the top right, select Answer Questions.
8. In the bottom pane of Wireshark, exam the packet information to answer the questions.
9. Answer the questions.
10. Select Score Lab.