欢迎来到天天文库
浏览记录
ID:45769292
大小:225.23 KB
页数:15页
时间:2019-11-17
《北邮网络及其内容安全Wireshark实验报告HTTP协议及攻击分析》由会员上传分享,免费在线阅读,更多相关内容在工程资料-天天文库。
1、网络及其内容安全Wireshark实验报告HTTP协议及攻击分析姓名:曹爽学号:2013210640班级:20132111242016年10月31日一、Wireshark实验过程3二、HTTP协议格式简介9三、针对HTTP协议的攻击分析111.基于头部的攻击112.基于协议的攻击113.基于验证的攻击114.基于流量的攻击12四、参考文献13Wireshark实验过程1.安装并打开Wireshark网络分析器,并选择要分析的网络(如图所示,木实验中为WLAN),双击Z后软件自动开始抓包。Wireshirk网堵分析H文件€)分析(A)电信00应(W)UKD♦助(H)▲■f•:铀尺uq&p荃了
2、qqu•3、机IP为10.8.181.189,教务系统的IP为103.255.178o••:bupt.edu.cn••:2001:da8:215:6901:a827:ac45:aa29:6e0f••:2001:da8:215:6901:888c:68c2:b8e3:8a0••:fe80::a827:ac45:aa29:6e0f%6••:10.8.181.189••:255.255.224.0••:fe80::5639:dfff:fece:e9ad%610.8.160.1•178]具有32字节的数据:B]=2msTTL=250I0]=12msHL=2500]=2msTTL=250Bl=16msHL=254、064J4J4J4J5BnMHBB2•222233333•==z=10节节节节—壬土土于M1R回回回回T-6a-GaUP8888B7777•1111t••••X5555W5555•J2222IS3.3.3.3.n••••ioooop1111亠ttnTTnrmrmrT(o%>=4=):均信芳为ms电秒16统4,逐=赞似长pi送舉孑导ms78••估2.1包的=55曙盘.2数行.3返:lJsersAngy>pingjwxt.bupt.edu.cn1.开始抓包后登录北邮教务系统,输入用户名、密码、验证码,点击登录(如图)。登陆成功后停止抓包。mIB»ro-•xQ品•D0•土O书址专松犬阜本科生5、urp教务£S理熹统aitt4»60。Qioaw2.设置过滤器,过滤从10.8.181.189发往10.3.255.178的HTTP数据包,输入http&&ip.src==10.8.181.189&&ip.dst==10.3.255.178即可完成过滤,如下图所示。文件€)mi)M(^)Ml茯g分析(A)跑么00无強(W)UUD号期(H)4■®%TixSmrc*DestinationProtocolLengthIafo3562.116S8610.8.181.18910.3.255.178HTTP847POST13682.17637910.8.181.18910.3.25S.178HTTP66、91GET3692.177M910.8.181.18910.3.255.178HTTP695GET3822.25341610.8.181.18910.3.255.178HTTP694GET3832.25726310.8.181.18910.3.255.178HTTP692GET3842.26186310.8.181.18910.3.255.178HTTP694GET4582.42750610.8.181.18910.3.255.178HTTP600GET4702.47382410.8.181.18910.3.255.178HTTP928POST/jwLoginAction.doHTTP/17、.1(oppllc./«enu/s_top.jspHTTP/1.1/menu/mainPraBe.jspHTTP/1.1/menu/s_»enu.jspHTTP/1.1/«enu/left.jspHnP/1.1/menu/s_«ain.jspHTTP/1.1/dwr/interface/ajaxtool•jsHTTP/1.1/dwr/call/plalncdll/ajaxtool.getMes-.Fra®e356:847
3、机IP为10.8.181.189,教务系统的IP为103.255.178o••:bupt.edu.cn••:2001:da8:215:6901:a827:ac45:aa29:6e0f••:2001:da8:215:6901:888c:68c2:b8e3:8a0••:fe80::a827:ac45:aa29:6e0f%6••:10.8.181.189••:255.255.224.0••:fe80::5639:dfff:fece:e9ad%610.8.160.1•178]具有32字节的数据:B]=2msTTL=250I0]=12msHL=2500]=2msTTL=250Bl=16msHL=25
4、064J4J4J4J5BnMHBB2•222233333•==z=10节节节节—壬土土于M1R回回回回T-6a-GaUP8888B7777•1111t••••X5555W5555•J2222IS3.3.3.3.n••••ioooop1111亠ttnTTnrmrmrT(o%>=4=):均信芳为ms电秒16统4,逐=赞似长pi送舉孑导ms78••估2.1包的=55曙盘.2数行.3返:lJsersAngy>pingjwxt.bupt.edu.cn1.开始抓包后登录北邮教务系统,输入用户名、密码、验证码,点击登录(如图)。登陆成功后停止抓包。mIB»ro-•xQ品•D0•土O书址专松犬阜本科生
5、urp教务£S理熹统aitt4»60。Qioaw2.设置过滤器,过滤从10.8.181.189发往10.3.255.178的HTTP数据包,输入http&&ip.src==10.8.181.189&&ip.dst==10.3.255.178即可完成过滤,如下图所示。文件€)mi)M(^)Ml茯g分析(A)跑么00无強(W)UUD号期(H)4■®%TixSmrc*DestinationProtocolLengthIafo3562.116S8610.8.181.18910.3.255.178HTTP847POST13682.17637910.8.181.18910.3.25S.178HTTP6
6、91GET3692.177M910.8.181.18910.3.255.178HTTP695GET3822.25341610.8.181.18910.3.255.178HTTP694GET3832.25726310.8.181.18910.3.255.178HTTP692GET3842.26186310.8.181.18910.3.255.178HTTP694GET4582.42750610.8.181.18910.3.255.178HTTP600GET4702.47382410.8.181.18910.3.255.178HTTP928POST/jwLoginAction.doHTTP/1
7、.1(oppllc./«enu/s_top.jspHTTP/1.1/menu/mainPraBe.jspHTTP/1.1/menu/s_»enu.jspHTTP/1.1/«enu/left.jspHnP/1.1/menu/s_«ain.jspHTTP/1.1/dwr/interface/ajaxtool•jsHTTP/1.1/dwr/call/plalncdll/ajaxtool.getMes-.Fra®e356:847
此文档下载收益归作者所有
