Wireshark - Packet Capturing and Analyzing

Last Updated :
Discuss
Comments

Question 1

What special mode does Wireshark put your Network Interface Card (NIC) into to capture all network traffic?

  • Stealth mode

  • Promiscuous mode

  • Sleep mode

  • Broadcast mode

Discuss it

Question 2

Which Wireshark filter type limits which packets are recorded during capture (before analysis)?

  • Display filters

  • Capture filters

  • Color filters

  • Expert filters

Discuss it

Question 3

In Wireshark's three main analysis panes, which one shows the raw hexadecimal and ASCII representation of packet data?

  • Packet List Pane

  • Packet Details Pane

  • Packet Bytes Pane

  • Status Bar

Discuss it

Question 4

Which display filter example would show only HTTP traffic on port 80?

  • host 192.168.1.1

  • tcp.port == 80

  • ip.src == 10.0.0.0/24

  • net 192.168.0.0/16

Discuss it

Question 5

What is a key difference between capture filters and display filters in Wireshark?

  • Capture filters only work on Wi-Fi; display filters work on Ethernet

  • b) Capture filters limit packets before recording (smaller files); display filters refine after capture (no data loss)

  • Display filters require promiscuous mode; capture filters do not

  • Capture filters show hex data; display filters show protocol trees

Discuss it

There are 5 questions to complete.

Take a part in the ongoing discussion