This exercise is one of our challenges to help you learn how to analyze PCAP files

< 1 Hr.
PCAP badge


To begin this lab, you need to install Wireshark, a network protocol analyzer, which will allow you to inspect the provided network dump file. You can download the PCAP file for this exercise via the provided link. The task involves analyzing the TCP connection of a user connecting to a server using FTP. Since FTP without TLS is insecure, anyone with access to the network traffic can view sensitive information like usernames and passwords.

By following the TCP stream in Wireshark, you will be able to see the contents of the FTP connection. The exercise demonstrates that using unencrypted FTP exposes critical information. You'll find the username and password needed to connect to the server, which are essential for solving this exercise.

Want to learn more? Get started with PentesterLab Pro! GO PRO