5 Questions
What are the two parts of a packet sniffer?
Packet capture library and packet analyzer
What action initiates packet capture in Wireshark?
Selecting the Capture pull down menu
What is the purpose of the packet capture library in a packet sniffer?
Receives a copy of every link layer frame sent or received
What is the initial view when starting Wireshark for packet capture?
A window similar to that shown in slide 5
Study Notes
Packet Sniffer Components
- A packet sniffer consists of two main parts: the capture driver and the packet capture library.
Wireshark
- Wireshark can be downloaded from the official Wireshark website.
- Initiating a capture in Wireshark is done by clicking the "Start" button or selecting "CaptureOptions" from the "Capture" menu.
- The initial view when starting Wireshark for packet capture is the "Start Page" or "Welcome Screen".
Packet Capture Library
- The purpose of the packet capture library in a packet sniffer is to analyze and decode the captured packets, presenting the data in a human-readable format.
"Wireshark Basics: Test Your Packet Sniffing Skills Quiz" Test your knowledge of Wireshark with this quiz that covers topics such as obtaining and utilizing Wireshark, and conducting packet analysis.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free