LetsDefend : Http Basic Auth

We got some log indicates the attacker, can you gathering information from pcap file?

Log file: https://app.letsdefend.io/download/downloadfile/webserver.em0.zip
Pass: 321

Question 1

How many HTTP GET requests are in pcap?

Statistics –> HTTP –> Requests

Question 2

What is the server operating system?

Question 3

What is the name and version of the web server software?

Question 4

What is the version of OpenSSL running on the server?

Question 5

What is the client’s user-agent information?

Question 6 & 7

What is the username used for Basic Authentication?

What is the user password used for Basic Authentication?

Decode the encoded string found in the stream to find the user name and password.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Comments (



%d bloggers like this: