What This Document Is
This document is a cover sheet and partial results for Project 2 in Arizona State University’s Network Forensics (IFT 482) course. It details a network analysis activity using VMware and Wireshark to investigate network traffic related to a scenario involving a disgruntled employee ("Pete") and concerns about the actions of their boss.
Why This Document Matters
This assignment is for students enrolled in IFT 482. It serves as a practical application of network forensics skills, requiring students to analyze a PCAP file to identify potentially suspicious activity. It’s used to assess a student’s ability to use Wireshark, interpret network data, and document findings.
Common Limitations or Challenges
This document represents a *partial* submission. It provides a cover sheet, a brief summary, and a few key results from the analysis. It does *not* include the full report, the complete analysis of the PCAP file, or the student’s overall conclusions.
What This Document Provides
This preview includes: the assignment cover sheet, a two-sentence summary of the project, a checklist of included items, and screenshots demonstrating the protocol hierarchy in Wireshark. It also presents specific findings, such as the percentage of TCP packets, confirmation of the boss accessing a specific website (www.harveycartel.org), related frame numbers, the boss’s IP address and port number, and the approximate time elapsed during the capture. It does *not* include the full procedure used for the analysis, the complete results data, detailed diagrams, or the final summary and conclusions.