Analisis Network Incident Packet Capture (PCAP) Menggunakan Wireshark

Authors

  • Nurwan Reza Fachrur Rozi

DOI:

https://doi.org/10.52661/j_ict.v5i2.239

Abstract

Pada artikel ini, penulis mengembangkan kerangka analisis kausal peristiwa kritis dalam penelitian studi kasus. Peristiwa penting didefinisikan sebagai peristiwa kontinjensi yang mempunyai dampak sebab akibat terhadap hasil suatu kasus tertentu. Penulisan ini menggunakan analisis teori himpunan untuk memberikan definisi dan alat pengukuran untuk menguji kontingensi dan signifikansi kausal dalam penelitian studi kasus. Seperangkat alat tersebut terdiri dari pedoman untuk menyimpulkan tingkat kontinjensi kejadian dengan menggunakan ekspektasi teoretis. Perangkat lainnya adalah pedoman untuk menggunakan kasus-kasus kontrafaktual guna menentukan sejauh mana peristiwa-peristiwa tertentu diperlukan dan cukup untuk menghasilkan hasil tertentu dalam kasus-kasus tertentu. Menyadari bahwa situasi akses jaringan menjadi sangat lambat. Praduga ada aktivitas yang tidak biasa terjadi di jaringan, dan aktivitas serangan mungkin telah terjadi. Untuk mengetahui penyebabnya, menganalisis hasil sniffing trafik menggunakan Wireshark. Dua kali penggalian data dilakukan pada waktu dan kesempatan yang berbeda. Menyelidiki kejadian tersebut dengan melakukan analisis pada data PCAP pada File Attack a.pcap atau Attack a.pcap. Hasil analisa dibahas dengan mengamati trafik yang dihasilkan pada jaringan dengan menangkap file PCAP.

References

I. P. Bolodurina and D. I. Parfenov, "Development of network security models in the software-defined infrastructure of virtual data center," in 2018 IEEE Conference of Russian Young Researchers in Electrical and Electronic Engineering (EIConRus), 2018: IEEE, pp. 16-20, doi: 10.1109/EIConRus.2018.8316858.

L. Chen, X. Dong, Z. Wu, Z. Liu, and B. Chen, "Evaluating the reliability and security of power

distribution wireless network," CIRED-Open Access Proceedings Journal, vol. 2017, no. 1, pp. 1102-

, 2017.

A. Dvir, Y. Haddad, and A. Zilberman, "Wireless controller placement problem," in 2018 15th IEEE Annual Consumer Communications & Networking Conference (CCNC), 2018: IEEE, pp. 1-4.

P. Patil and A. Sonawane, "Environment sniffing smart portable assistive device for visually impaired individuals," in 2017 International Conference on Trends in Electronics and Informatics (ICEI), 2017: IEEE, pp. 317-321.

M. Karpiński, A. Korchenko, P. Vikulov, R. Kochan, A. Balyk, and R. Kozak, "The etalon models of linguistic variables for sniffing-attack detection," in 2017 9th IEEE International Conference on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications (IDAACS), 2017, vol. 1: IEEE, pp. 258-264.

R. Das and G. Tuna, "Packet tracing and analysis of network cameras with Wireshark," in 2017 5th International Symposium on Digital Forensic and Security (ISDFS), 2017: IEEE, pp. 1-6.

P. Goyal and A. Goyal, "Comparative study of two most popular packet sniffing tools-Tcpdump and Wireshark," in 2017 9th International Conference on Computational Intelligence and Communication Networks (CICN), 2017: IEEE, pp. 77-81.

I. B. Prasetyo, "Analisa Sniffing Paket ICMP Menggunakan Wireshark," Jurnal SISTEMASI, vol. 8, no. 1, p. 221, 2019.

W. Ali, J. Sang, H. Naeem, R. Naeem, and A. Raza, "Wireshark window authentication based packet captureing scheme to pervent DDoS related security issues in cloud network nodes," in 2015 6th IEEE International Conference on Software Engineering and Service Science (ICSESS), 2015: IEEE, pp. 114-118.

P. Arote and K. V. Arya, "Detection and prevention against ARP poisoning attack using modified ICMP and voting," in 2015 International conference on computational intelligence and networks, 2015: IEEE, pp. 136-141.

I. Gunawan, "Analisis keamanan wifi menggunakan wireshark," JES (Jurnal Elektro Smart), vol. 1, no. 1, pp. 7-9, 2021.

M. Gregorczyk, P. Żórawski, P. Nowakowski, K. Cabaj, and W. Mazurczyk, "Sniffing detection based on network traffic probing and machine learning," IEEE Access, vol. 8, pp. 149255-149269, 2020.

T. Chowdhury and M. J. Alam, "Performance evaluation of TCP Vegas over TCP Reno and TCP NewReno over TCP Reno," JOIV: International Journal on Informatics Visualization, vol. 3, no. 3, pp. 275-282, 2019.

T. O. Aro, S. A. Adekeye, H. B. Akande, and B. O. Funso, "Application of Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) in Teleconference System," Journal of Computer Science and Control Systems, vol. 12, no. 2, pp. 15-19, 2019.

R. M. Farhan and G. H. A. Kusuma, "Teknik Sniffing Jaringan Menggunakan Wireshark," Journal of Informatics and Advanced Computing (JIAC), vol. 4, no. 1, pp. 87-93, 2023.

P. ÖZTÜRK, H. ALİSOY, and R. MUTLU, "CAT 6A U/FTP Data Kablosunun Yüksek Frekans Parametrelerinin YSA ile Tahmin Modeli," Nevşehir Bilim ve Teknoloji Dergisi, pp. 16-30, 2020.

C. E. Lutton, "Use of packet capture (PCAP) software for virtual access point correlation," Monterey, CA; Naval Postgraduate School, 2019.

Y. Mulyanto, H. Herfandi, and R. C. Kirana, "Analisis Keamanan Wireless Local Area Network (Wlan) Terhadap Serangan Brute Force Dengan Metode Penetration Testing (Studi Kasus: Rs H. Lmanambai Abdulkadir)," Jurnal Informatika Teknologi dan Sains (Jinteks), vol. 4, no. 1, pp. 26-35, 2022.

T. A. Tamsir, E. Saputra, and M. T. Farizky, "ANALISIS PAKET ICMP WEBSITE UNIVERSITAS BINADARMA MENGGUNAKAN WIRESHARK," STORAGE: Jurnal Ilmiah Teknik dan Ilmu Komputer, vol. 2, no. 2, pp. 55-60, 2023.

P. T. Mahmud, "Sniffing Jaringan Menggunakan Wireshark," 2020.

R. Li, K. Makhijani, and L. Dong, "New ip: A data packet framework to evolve the internet," in 2020 IEEE 21st International Conference on High Performance Switching and Routing (HPSR), 2020: IEEE, pp. 1-8.

S. Wani, M. Imthiyas, H. Almohamedh, K. M. Alhamed, S. Almotairi, and Y. Gulzar, "Distributed denial of service (DDoS) mitigation using blockchain—A comprehensive insight," Symmetry, vol. 13, no. 2, p. 227, 2021.

S. Wang et al., "Detecting flooding DDoS attacks in software defined networks using supervised learning techniques," Engineering Science and Technology, an International Journal, vol. 35, p. 101176, 2022.

Downloads

Published

2023-12-26

How to Cite

Nurwan Reza Fachrur Rozi, N. R. F. R. (2023). Analisis Network Incident Packet Capture (PCAP) Menggunakan Wireshark. Journal of Informatics and Communication Technology (JICT), 5(2), 163–176. https://doi.org/10.52661/j_ict.v5i2.239

Issue

Vol. 5 No. 2 (2023)

Section

Telecommunication

License

Copyright (c) 2023 Muhamad Royhan, Nurwan Reza Fachrur Rozi, Pietra Dorand, Andri Agustac Wirabudi

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.

Authors who publish with this journal agree to the following terms:

  1. Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
  2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
  3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work.