IMPLEMENT SYMMETRIC KEY ALGORITHMS-DES

PROGRAM:

import [Link].*;
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
import [Link].*;
import [Link];
import [Link];
import [Link];
public class Des {
public static void main(String[] args) throws IOException, NoSuchAlgorithmException,
InvalidKeyException, InvalidKeySpecException, NoSuchPaddingException, IllegalBlockSizeException,
BadPaddingException {
String message="good morning, Have a nice day";
byte[] myMessage =[Link]();
KeyGenerator Mygenerator = [Link]("DES");
SecretKey myDesKey = [Link]();
Cipher myCipher = [Link]("DES");
[Link](Cipher.ENCRYPT_MODE, myDesKey);
byte[] myEncryptedBytes=[Link](myMessage);
[Link](Cipher.DECRYPT_MODE, myDesKey);
byte[] myDecryptedBytes=[Link](myEncryptedBytes);
String encrypteddata=new String(myEncryptedBytes);
String decrypteddata=new String(myDecryptedBytes);
[Link]("Message : "+ message);
[Link]("Encrypted - "+ encrypteddata);
[Link]("Decrypted Message - "+ decrypteddata);
}
}

OUTPUT:

Message : good morning, Have a nice day

Encrypted Message: [B@504bae78
Decrypted Message: good morning, Have a nice day
 IMPLEMENT SYMMETRIC KEY ALGORITHMS-AES

PROGRAM:

import [Link];
import [Link];
import [Link];
import [Link];
import [Link].Base64;
public class Main {
public static void main(String[] args) throws Exception {
SecretKey secretKey = [Link]("AES").generateKey();
String originalMessage = "Hello, world!";
Cipher cipher = [Link]("AES");
[Link](Cipher.ENCRYPT_MODE, secretKey);
byte[] encryptedMessage = [Link]([Link](StandardCharsets.UTF_8));
String encodedMessage = [Link]().encodeToString(encryptedMessage);
[Link]("Original Message: " + originalMessage);
[Link]("Encrypted Message: " + encodedMessage);
[Link](Cipher.DECRYPT_MODE, secretKey);
byte[] decryptedMessage = [Link]([Link]().decode(encodedMessage));
[Link]("Decrypted Message: " + new String(decryptedMessage, StandardCharsets.UTF_8));
}
}

OUTPUT:
Original Message: Hello, world!
Encrypted Message: iWohhm/c89uBVaJ3j4YFkA==
Decrypted Message: Hello, world!
 IMPLEMENT ASYMMETRIC KEY ALGORITHMS

PROGRAM:
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
public class Asymmetric {
private static final String RSA= "RSA";
private static Scanner sc;
public static KeyPair generateRSAKkeyPair()throws Exception
{
SecureRandom secureRandom = new SecureRandom();
KeyPairGenerator keyPairGenerator= [Link](RSA);
[Link](2048, secureRandom);
return [Link]();
}
public static byte[] do_RSAEncryption(String plainText,PrivateKey privateKey)
throws Exception
{
Cipher cipher = [Link](RSA);
[Link](Cipher.ENCRYPT_MODE, privateKey);
return [Link]([Link]());
}

public static String do_RSADecryption(byte[] cipherText,PublicKey publicKey)throws Exception

{
Cipher cipher= [Link](RSA);
[Link](Cipher.DECRYPT_MODE,publicKey);
byte[] result= [Link](cipherText);
return new String(result);
}
public static void main(String args[])throws Exception
{
KeyPair keypair= generateRSAKkeyPair();
String plainText = "This is the PlainText "+ "I want to Encrypt using RSA.";
byte[] cipherText= do_RSAEncryption(plainText,[Link]());
[Link]("The Public Key is: "+ [Link](
[Link]().getEncoded()));
[Link]("The Private Key is: "+[Link](
[Link]().getEncoded()));
[Link]("The Encrypted Text is: ");
[Link]([Link](cipherText));
String decryptedText= do_RSADecryption(cipherText,[Link]());
[Link]("The decrypted text is: "+ decryptedText);
}
}
OUTPUT:

The Public Key is:

30820122300D06092A864886F70D01010105000382010F003082010A0282010100925F07F0ABC2BF1F0
AD6C1EC5BAB25408F33B3D837196921DB70B790CFE7EF456AD518AE17B379171D93C934F73AFD5
AE72A1E1D65004CB2467895D534D18F36DAC8DB0E8FD956154773B13F7244D397CCB395756A5090
E6FFC506699894D95B90FB4597E6815CA8B4E4EC80910E88599E44314042611F37E17795895F6CF911
6FADC53A4F4F97C35BCD04EC16DE6D9B4E45AE2534FD4A15B406970EF9A4C1166512CF65BADE2
8F8E6950E6F86F0CDBD6CFB3625ABA12BF7844B605C7D0D5E1D94DF3177293707D1E9B6CA8A377
DEA758355B819509AF96FC7942FDACAB361837447EAD9502D340B720E037650EDC64B0281FE566E
612D86EE9C160D6B9C974B0203010001
The Private Key is:
308204BD020100300D06092A864886F70D0101010500048204A7308204A30201000282010100925F07F0
ABC2BF1F0AD6C1EC5BAB25408F33B3D837196921DB70B790CFE7EF456AD518AE17B379171D93C
934F73AFD5AE72A1E1D65004CB2467895D534D18F36DAC8DB0E8FD956154773B13F7244D397CCB
395756A5090E6FFC506699894D95B90FB4597E6815CA8B4E4EC80910E88599E44314042611F37E1779
5895F6CF9116FADC53A4F4F97C35BCD04EC16DE6D9B4E45AE2534FD4A15B406970EF9A4C116651
2CF65BADE28F8E6950E6F86F0CDBD6CFB3625ABA12BF7844B605C7D0D5E1D94DF3177293707D1
E9B6CA8A377DEA758355B819509AF96FC7942FDACAB361837447EAD9502D340B720E037650EDC6
4B0281FE566E612D86EE9C160D6B9C974B020301000102820100318A1260E5713B48615DC032A3EFE
FE2C2D4E7E8A4F567BCBACD928363AA8734026D6F35F4F59C6533708267F7C93258A2E6815CC783
6B71E72206EC2B3D45F075EA07220D93AC6BF54BF5D098772CFA32A11153B510E18A1D44ECDFAE
71AA833035AB1F3737CF499637E8C7B6D0A95B539296ECBDCAAB4B397744D842C0DA27047F34BF
BFB0298853420A232964BA57F61ED16C89F7E0F2A458F466EBF72A910659D499B9CB2B3395BEC836
65A30DF4EA5B3981246359541A0987755B916E0DFFE3EDC3AED165A0F6234574559CA1BDD2F0E8
FAC1F1B32E4ADCCAE5D3E15570FA11F320F0D7DB1468DE5AD3EFB94846DC0F903B90F0F495F35
4261A00B20B1902818100E735DF7B74DB3F5A607389DD6AE0138B3DD87857163B357A6BC5C84545
D817973A52936109D11E9452130DB7042268098A689C101D871FCC44B941C336B973A3F4474CA9C0
9B0822B6F7BBE4BA8A1E6EAF4424371E4FC460DD19075E70BBB90DD8A2421B4A7A6B81F2169D7
996F184B1A9AE63C486270F96453A24D8A6F04F8502818100A2108A91A3FDD8DF33F1C3D8BE87C4
510975486AD61F8B362D13EA2184455B23D1546A480AEFC87E898FF4F53E5C47CF8EC7C94BBE451
9AACCBCEEB4040F39CE48C0A39032A40CAD05043DBA783882ACFE64E26D3C9850607A845325AD
924F28F1AD786B6EA8861FF157234C2EC82B7BE998DDBD4D031AC17845D286FDD93C8F028180388
81B947C05FF7F8185BE77BCE1FCE556C1CEEABC2CCDEE98DB4B1464F7690D38DD67DB9A22DF6
F34822420538A76159F19E4CEABE99604C3E8E8036B25FCF86189ED5CB41333F208FA999E5B5DDA
0306278B134EFE01EE0D214983F5DC706ACA452214BA29249029390E57E46839219773644170EBAC0
BF9F1358123902E610281800EC5DF3BC36D2255C650657FDE6E55D0E541D1A61B7AA89FF99FF519B
50AF571E065078325AC11E4A6F97E64D49868DB5CB28D80E009407BB74A09A0533668188BBD33AB
B3520CEDC0A550532D1E499B275D
The Encrypted Text is:
82D4179BAEB4A39422E5E872106AED4153573B3E532289551CFB999300EBDCAB1E6BC694A7B06B
81D4FEB8C352B8E28822848D5E752F9C36419583F5BA5D656E30EAC8693F786560E0BCC056D852D5
A8BB29324994273F5B78F6678C7A55FF5B13912F157C0E34D0A02A5AD19FAB311D746FF3FEFE5B7
3E0F45B01B31D52F8691551CC45BB251E812F1109A1CBB867C37D053BBF382C30D8928B1781D2334
07D853A53D213531C32CAAD22A1A66DBEBDBF0AD66E01F333779A781F17845EF9B170F1A520744
D0B0F972A1F53CA55633607FCCE55FD2DC7EF9B34367BC5CF7CB4D5FDEA56D82CFC8D021EA2C
A08CE580378C8837D35D4E07165E4481A725F8ED
The decrypted text is: This is the PlainText I want to Encrypt using RSA.
 IMPLEMENT KEY EXCHANGE ALGORITHMS
PROGRAM:

import [Link].*;

class Diffie_Hellman
{
public static void main(String args[])
{
Scanner sc=new Scanner([Link]);
[Link]("Enter modulo(p)");
int p=[Link]();
[Link]("Enter primitive root of "+p);
int g=[Link]();
[Link]("Choose 1st secret no(Alice)");
int a=[Link]();
[Link]("Choose 2nd secret no(BOB)");
int b=[Link]();
int A = (int)[Link](g,a)%p;
int B = (int)[Link](g,b)%p;
int S_A = (int)[Link](B,a)%p;
int S_B =(int)[Link](A,b)%p;
if(S_A==S_B)
{
[Link]("ALice and Bob can communicate with each other!!!");
[Link]("They share a secret no = "+S_A);
}
else
{
[Link]("ALice and Bob cannot communicate with each other!!!");
}
}
}

OUTPUT:
Enter modulo(p) : 9
Enter primitive root of 9: 5
Choose 1st secret no(Alice): 6
Choose 2nd secret no(BOB):5
ALice and Bob can communicate with each other!!!
They share a secret no = 1
 IMPLEMENT DIGITAL SIGNATURE SCHEMES
PROGRAM:
import [Link];
import [Link];
import [Link];
import [Link];
import [Link];
public class CreatingDigitalSignature {
public static void main(String args[]) throws Exception {
Scanner sc = new Scanner([Link]);
[Link]("Enter some text");
String msg = [Link]();
KeyPairGenerator keyPairGen = [Link]("DSA");
[Link](2048);
KeyPair pair = [Link]();
PrivateKey privKey = [Link]();
Signature sign = [Link]("SHA256withDSA");
[Link](privKey);
byte[] bytes = "msg".getBytes();
[Link](bytes);
byte[] signature = [Link]();
[Link]("Digital signature for given text: "+new String(signature, "UTF8"));
}
}

OUTPUT:
Enter some text:network security
Digital signature for given text: 0<^????8??vn
?QJ??=?O??? ?D?????4h?mx???D25:M?3?
 INSTALLATION OF WIRE SHARK
INSTALLATION PROCEDURE:
STEP 1: GO TO WIRE SHARK DOWNLOAD

CLICK
THIS
WEBSITE

STEP 2: Click on Download, a new webpage will open with different installers of Wireshark.

CLICK THE
WINDOW X64
INSTALLER
STEP 3: It will prompt confirmation to make changes to your system. Click on Yes.

click

STEP 4: Wireshark Setup

click

STEP 5: The next screen will be of License Agreement, click on Noted.

 click

STEP 6:This screen is for choosing components, all components are already marked so don’t change
anything just click on the Next button.

NEXT

STEP 7:This screen is of choosing shortcuts like start menu or desktop icon along with file extensions
which can be intercepted by Wireshark, tick all boxes and click on Next button.
 NEXT

STEP 8: The next screen will be of installing location so choose the drive

NEXT

STEP 9: After this installation process will start.

STEP 10: Click on Finish after the installation process of Wireshark is complete.

CLICK

Wireshark is successfully installed on the system and an icon is created on the desktop
as shown below:
 OBSERVE DATA TRANSFERRED IN CLIENT-SERVER COMMUNICATION USING UDP/TCP
AND IDENTIFY THE UDP/TCP DATAGRAM USING WIRESHARK

PROCEDURE:

STEP 1: Launch Wireshark by entering Wireshark in the “ask my anything” search box in Windows.

STEP 2: Once Wireshark starts, select the Ethernet or any inrerface that can capture the traffic.

CLICK

STEP 4 :Wireshark will automatically start capturing packets on the network.

STEP 5 : enter a filter of UDP. When the capture is started, it will collect UDP traffic automatically.

STEP 6: Use the Wireshark menus or buttons to stop the capture

STEP 7: enter a filter of TCP. When the capture is started, it will collect TCP traffic automatically.
STEP 8: Search for packets with the SYN flag on using the filter expression “[Link]==1”.

STEP 9: Under the Statistics menu select an “IO Graph”

STEP 10: TCP Stream Graph
 OBSERVE DATA TRANSFERRED IN CLIENT-SERVER COMMUNICATION USING UDP/TCP
AND IDENTIFY THE UDP/TCP DATAGRAM USING TCPDUMP

INSTALLATION PROCEDURE:
STEP 1: GO TO TCPDUMP DOWNLOAD FOR WINDOWS

CLICK

STEP 2: DOWNLOAD THE LATEST VERSION

CLICK

STEP 3: Extract file

STEP 4: Run the tcpdump

Right click
and run as
admn

STEP 5: tcpdump license

STEP 6: capture of Packet UDP/TCP
 CHECK MESSAGE INTEGRITY AND CONFIDENTIALITY USING SECURE SOCKET LAYER(SSL)

PROCEDURE:

Download openssl

Step 1 – Download OpenSSL from [Link]

Click here

click
Step 2 : Setup Environment Variables

Now set the environment variables to function OpenSSL properly on your system.
C:\Program Files\OpenSSL-Win64\bin
Go to “Advanced” tab and click on “Environment variables“
 click

Paste the openssl

 Step 4 – Run OpenSSL Binary

Open a command prompt on your system and type openssl to open OpenSSL prompt. After that type version
to get the installed OpenSSL version on your system.

MESSAGE INTEGRITY AND CONFIDENTIALITY

Step 1 : create a word document with secret information. Encrypt the file using the command
openssl aes-256-cbc -a -salt -pbkdf2 -in [Link] -out [Link]
and type password .
Step 6: Delete the old file and Decrypt the file with the password using the command.

openssl aes-256-cbc -d -a -pbkdf2 -in [Link] -out [Link]

Generate a new private key and Certificate Signing Request:
Step 1: To Generate a new private key and Certificate Signing Request the following command
openssl req -out [Link] -new -newkey rsa:2048 -nodes -keyout [Link]
Step 2: Check a Certificate Signing Request (CSR)

openssl req -text -noout -verify -in [Link]

Step 3: Check a private key
openssl rsa -in [Link] -check
 DICTIONARY ATTACK
PROCEDURE:

STEP 1: Boot the kali-linux and install and setup hydra

Install kali linux:

Method 1 : wsl 1 : [Link]

Method 2: virtual box: [Link]

install hydra using sudo apt-get install hydra.

STEP 2: Create a basic list of username and passwords such as "password," "123abc" and "test”, Save as
[Link] and [Link]

STEP 3: Find the vulnerable parameter by Open the browser and go to [Link] .Find the
parameter in website using networking tab or burp suite

STEP 4: run the hydra by following command

sudo hydra -L [Link] -P ./[Link] [Link] http-post-form
"/[Link]:uname=^USER^&pass=^PASS^":"you must login" -Vv
OUTPUT:
 EAVES DROPPING

Procedure:
Step 1: Launch the Wireshark software on your computer and choose the ‘eth0’ option

Step 2:After selecting ‘eth0’, the packets captured by this interface will appear on the screen.

Step 3: Now, within your web browser, we will input the URL we want to capture login credentials from. The URL

we’ll be using for this demonstration is [Link] Please note that this is a PHP application

deliberately designed to be vulnerable to web attacks, making it suitable for testing various tools and honing manual

hacking [Link], input the login credentials, which are ‘test’, and then click on the login button.
Step 4: Proceed to Wireshark and click on the stop button. This action will halt Wireshark from capturing any further

network packets.
Step 5 : As HTTP is utilized by [Link] we will apply a filter.

Step 6:After entering ‘http’ in the filter section, the captured packets using the HTTP protocol will be shown.
Step 7: At this point, perform a right-click and choose ‘Follow’ to access additional options, then select ‘http stream’

from the available choices.

 MAN IN MIDDLE ATTACK

PROCEDURE:
STEP 1: To know which network interface is used we can simply type ifconfig and here is what it shows us.

STEP 2: In my case it is wlan0, so I’m just gonna type bettercap -iface wlan0 and press enter.

STEP 3: Now we have some information about this tool, but our concern here is the module. For more information we
can type help followed by module’s name for example help [Link].
STEP 4: So, this module consist of several parameter, but for now let just keep it default and turn on the module by
typing [Link] on.

STEP 5: Now the module is already running, what actually happen is the module scanning all the devices connected to
the same network as our pc, including it’s ip address, mac address and vendor’s name. To make things clearer we can
type [Link] for further information.
STEP 6: So, Raspberry Pi is my device used to perform this attack and my ip address is [Link]. The router ip
address is [Link] knew it by Name column that is shows gateway and the rest is client connected to this network.
Now we can choose which one to be our victim, for example im gonna choose [Link] which is my own laptop
running windows 10. Now lets see the module named [Link].

STEP 7: Just like previous module it’s consist of several parameter.

First lets take a look at [Link] parameter. In order to be the man in the middle we need to fool both the
victim and the router by telling the router that victim’s mac address is our mac address and telling victim that router’s
mac address is our mac address. So we need to set this parameter to true by typing set [Link]
true. Secondly we need to

set [Link] parameter by simply giving it ip address of our victim. So in my case it will be set
[Link] [Link].

STEP 8: After setting these 2 parameter we are ready to fire up this module by typing [Link] on. But wait a second
lets go to windows 10 and type arp -a.

STEP 9: Like we already know when we type [Link] command that my router ip’s is [Link] and its mac is
e4:**:**:**:**:e4 which is the real one. So weird thing have not happened. Lets go back to raspberry pi and fire up
[Link] by typing [Link] on.
STEP 10: Now we already in the middle of our victim which is my windows 10 and my router. To make sure lets open
up cmd on windows 10 and type arp -a, here is what it shows us.

STEP 11: As we can see that the mac address of our router changed to b8:**:**:**:**:08 which is my raspberry pi
mac addresses, in other word we successfully fools windows 10 by telling it that ‘i am the router’ so that every request
windows 10 make will go through raspberry pi. Now we can do packet sniffing using [Link] module, so lets turn it on
by typing [Link] on.

Press enter and then move to windows 10 and open [Link].

 EXPERIMENT WITH SNIFF TRAFFIC USING ARP POISONING
Procedure:
Step 1: Open Wireshark

Step 2: Select the network interface you want to sniff. Note for this demonstration, we are using a
wireless network connection. If you are on a local area network, then you should select the local area network
interface.

Step 3: Open your web browser and type in [Link]

Step 4: The login email is admin@[Link] and the password is Password2010
Step 5: A successful logon should give you the following dashboard

Step 6: Go back to Wireshark and stop the live capture

Step 7: Filter for HTTP protocol results only using the filter textbox
Step 8: Locate the Info column and look for entries with the HTTP verb POST and click on it
Step 9 : Just below the log entries, there is a panel with a summary of captured data. Look for
the summary that says Line-based text data: application/x-www-form-url encoded.

Step 10: You should be able to view the plaintext values of all the POST variables submitted to
the server via HTTP protocol.
 DEMONSTRATE INTRUSION DETECTION SYSTEM USING ANY TOOL

PROCEDURE:
Step 1: Visit the website- [Link] to download Snort tool for 32-bit or 64-bit
Windows Operating system.

CLICK

Step 2: After downloading the Snort tool, It will show a license agreement on the users’ [Link] on
“I Agree” button.

Step 3: Select the Snort, Dynamic Modules, and Documentation components and click on Next button.
Step 4: The default path is “C:/Snort” to install the Snort tool.

STEP 5:After successful installation, a message with “snort has successfully been installed” will display
on the screen.
Step 7: Visit the website- [Link] to download .

Step 8: Open the command prompt and type C:\Snort\bin > dir

Step 9: Run [Link]

S
 Explore network monitoring tools

Networks are the fundamentals behind businesses worldwide. It plays a pivotal role in serving your
employees
for administrative purposes and your clients across the continents. The networks help you keep information
in a centralized location - accessible to those who need and restrict every other inbound request. So how do
you provide continuous top-notch end user experience and maintain your rapidly evolving network? Only
by monitoring the availability, health, and performance of your networks over time with the help of reliable,
real-time network monitoring tools.
PRTG
The Paessler PRTG network monitoring tool offers comprehensive network monitoring suitable for
businesses of many sizes. This dynamic Windows-based solution can monitor a variety of IT assets, like
firewalls, servers and databases.
Valuable features include real-time alerts through email and SMS based on custom thresholds; an
intuitive UI with customizable dashboards that display server metrics like CPU load and RAM utilization;
and failover-tolerant, distributed monitoring.

Progress WhatsUp Gold

Progress WhatsUp Gold offers robust monitoring for applications, networks and systems. Its interactive
map provides a comprehensive view of physical, virtual and wireless networks and enables users to zoom in to
see device-specific information.

After identifying connected devices through advanced discovery, admins can apply standard or
custom roles to streamline the monitoring process. WhatsUp Gold uses active monitors for real-time device
 status and passive monitors for logs.

The solution track system metrics and alert support teams of poor performance via email or SMS,
empowering them to resolve issues before they can affect the user experience. One standout feature is its action
policy for responding to state changes like router downtimes.

Nagios XI

Nagios XI is an advanced network monitoring tool built on the open-source Nagios Core software. While the
platform provides a comprehensive web interface, its complex configuration may prove a steep learning curve

for less experienced users. However, its ability to monitor everything from server RAM usage to FLEXlm
license manager tool metrics makes it a highly versatile tool for large networks.

Supported by an active community, Nagios XI offers various plug-ins and a customizable notification
mechanism via email, SMS and instant messengers. Its visual display function presents a network’s logical
layout and color-codes any issues. Although the configuration might be challenging, the server and network
insights it offers are invaluable.
LogicMonitor

LogicMonitor is a cloud-based SaaS service designed to monitor physical, virtual and cloud networks.
Admins need to install only a small client app on Linux or Windows systems to enable automated discovery of
devices like routers, servers and applications.

The ready-to-use dashboard displays real-time performance indicators, system errors and statuses,
sourced from over 20 protocols like SNMP and JMX. Service alerts can be prioritized, with customizable
escalation rules and reports available in various formats. Report configuration does require prior knowledge of
desired metrics. Offers a free trial. Pricing is based on the number of devices, not individual monitors.
Netwrix Auditor for Network Devices

Netwrix Auditor for Network Devices delivers reports and alerts detailing what was changed on each
network device, who made each change and when it happened, with the before and after values. The reports
also reveal both successful and failed attempts to log on to network devices, directly or over VPN connections.
In addition, they provide port scanning information and details about hardware issues such as a power supply
failure or critical CPU temperature. Netwrix Auditor for Network Devices enables you to detect scanning
threats before attackers can take control of the entire network infrastructure.

Netwrix Auditor has a powerful built-in search of audit data, alerts on threat patterns and behavior
anomaly discovery functionality. It supports Fortinet FortiGate, Cisco ASA, Cisco IOS, Palo Alto, SonicWall,
Cisco Meraki, HPE Aruba and Pulse Connect Secure and Juniper network devices. Plus, it has a RESTful API
engine that enables you to connect it with other software solutions, such as Nutanix, Amazon Web Services,
ServiceNow, ArchSight, IBM Qradar, Splunk, Alien Vault and LogRhythm; you can receive data from or send
data to these solutions. Product installation is straightforward, and the UI is user friendly and fast.

ntopng

ntopng is a network monitoring tool featuring an intuitive web interface. Like the Unix ‘top’ command
for processes, it displays network usage in real time. Besides providing clear graphs and tables of current and
historical traffic, its modular architecture supports numerous add-ons.

One powerful feature of ntopng is its traffic control capabilities. When network issues occur, network
support teams can swiftly identify problematic segments and responsible hosts, ensuring unparalleled network
visibility.b A free trial is available.
Datadog

Datadog is a SaaS platform offering monitoring and analytics for software developers, operations teams
and business leaders navigating the cloud era. It integrates infrastructure monitoring, application performance
monitoring and event log management. With over 120 integrations, Datadog offers comprehensive metrics
from every key tech component, facilitating data analysis and graphing.

Datadog provides a unified, real-time view of a company’s entire technology stack, including both on-
premises and cloud deployments. It monitors both Linux and Windows virtual machines, servers and
workstations, with specialized configurations for various products, including Windows services and cloud
services like AWS, Microsoft Azure and Google Cloud. Datadog offers a subscription-based model.
Lansweeper
Lansweeper specializes in the discovery and inventory of hardware and software across networked
devices for better management and auditing. It can gather information from Windows, Linux, Mac and other
IP-addressable devices. Reports, which are stored in a SQL Compact or SQL Server database on a Windows
machine, aid in problem identification.

Besides its primary discovery function, Lansweeper offers a ticket-based helpdesk for issue tracking and a
module for software updates. While it can operate without the need for installed agents, it may require them
for intricate settings.

SolarWinds Network Performance Monitor

SolarWinds Network Performance Monitor?helps IT pros efficiently detect and resolve network issues before
they can cause downtime. It includes interactive network maps and automatic component detection, facilitating
effortless scalability and alignment of critical processes. The application monitors response time, availability
and uptime of SNMP-enabled devices, overseeing factors like bandwidth, delays and CPU usage. You can
configure alerts based on device conditions to focus on crucial network matters.

The user-friendly interface gives a comprehensive network view, with statistical baselines for quick issue
resolution. The NetPath feature simplifies troubleshooting by tracing the network path from source to
destination, proving useful even when traceroute falls short.
Observium

Observium is a network monitoring platform that offers a user-friendly interface to monitor your network’s
health and status. It easily discovers a diverse range of devices and operating systems, including Cisco,
Windows and Linux. While it primarily uses SNMP for discovery and monitoring, it can incorporate data from
other protocols like syslog and IPMI.

Observium is best suited for medium to large networks. The paid version provides periodic notifications.
Observium has both a free Community edition and commercial subscriptions. For open-source enthusiasts,
LibreNMS, a fork of Observium’s last GPL-licensed version, is available.
rr

STUDY TO CONFIGURE FIREWALL

PROCEDURE:

Configuring Firewall Defender on Windows:

• Step 1: Launch Start from the taskbar.

Step 2: Search “Settings” in the search bar if you do not find the Settings icon in Start menu.
Step 3: In the left pane of Settings, click Privacy & security.

• Step 4: Click Windows Security option in Privacy & security menu.

Step 5: Select Firewall & network protection.

Step 6: Now Window’s Security window will pop up window’s. Here you can verify whether your

Defender firewall is active or not.

 Step 7: Now to configure the firewall according to your requirement, click Advanced settings. You will be
prompted by User Account Control to give Administrative access to Windows Defender to make changes.
Click Yes to proceed.

Step 8: Windows Defender Firewall with Advanced Security window will launch after giving administrative
permission.
Step 9: The left pane has several options:

o Inbound rules: Programs, processes, ports can be allowed or denied the incoming transmission
of data within this inbound rules.
o Outbound rules: Here we can specify whether data can be sent outwards by that program,
process, or port.

Step 10: To add a new inbound rule, select Inbound Rules option, then click New Rule… from the right pane.

Step 11: Now we will configure an inbound rule for a network port. A New Inbound Rule Wizard window
pops-up, select Port option and click next.

Step 12: Now select TCP and specify port number 65000.
Step 13: Now we can select the action we need to take on this port. We will block the inbound connection

by selecting Block the connection option then click Next.

Step 14: Here we can specify when should this rule come into action. We will keep only Public option selected
and move Next.

• Step 15: This is the last step. Here we provide a name to this rule so that we can keep track of it later
in the Inbound rules list. Write the name “65000 Port Block (Public)”. Click Finish.
Step 16: The inbound rule is successfully created. We can find “65000 Port Block (Public)” in the

Inbound rules list.

Step 17: Right-click the rule we just created and there are multiple options with which it can be Disabled or
Deleted.
 STUDY TO CONFIGURE VPN
PROCEDURE:

Set Up VPN on Windows 10

STEP 1 : Click the Windows Start button and select the Settings cog.

STEP 2 : Under Windows Settings, select Network & Internet.

STEP 3 : Select VPN from the left menu, then at the right, click Add a VPN connection.
STEP 4 : In the dialog box that opens:

STEP 5 : Set VPN provider to "Windows (built-in)".

STEP 6 : Set Connection name to "UWSP VPN".

STEP 7 : Set Server name or address to "[Link]".

STEP 8 : Click Save.

STEP 9: Select Change adapter options.

STEP 10 : Right-click UWSP VPN and select Properties.

STEP 11 : In the UWSP VPN Properties box select the Networking tab. Select Internet Protocol Version
6 and click Properties.
STEP 12 : Click Advanced on the Internet Protocol Version 6 Properties box that opens.

STEP 13 : In the Advanced TCP/IP Settings box:

o uncheck “Use default gateway…” on the IP Settings tab.

STEP 14 : This step is needed only for privately owned computers; UWSP owned computers do not need
this option. Select the DNS tab. In the text box labeled “DNS suffix for this connection:”
type, “[Link]” (no quotes). Note, "Append these DNS suffixes" may instead display here.
STEP 15 : Click OK.

STEP 16: Click OK to the Internet Protocol Version 6 Properties box. This returns you to the
UWSP VPN Properties box.

STEP 17 : In the UWSP VPN Properties box now select Internet Protocol Version 4 and click
Properties.

Step 18:Click Advanced on the Internet Protocol Version 4 Properties box.

Step 19 :In the Advanced TCP/IP Settings box on the IP Settings tab, uncheck “Use default
gateway…”.

STEP 20 : Click OK.

STEP 21 : Click OK to the Advanced box and OK to the Internet Protocol Version 4 Properties
box.

STEP 22: Finally, click OK on the UWSP VPN Properties box.

You have now disabled the default gateway for both Internet Protocol Version 6 and version 4. Your UWSP
VPN should be configured.

To start a UWSP VPN connection

STEP 1: Click the Windows Start button and select Settings.

STEP 2 : Under Windows Settings, select Network & Internet.

STEP 3 : Select VPN from the left menu, then at the right, click "UWSP VPN".

STEP 4: Click "Connect" and log in with your UWSP username and password. You will be asked to
authenticate with MFA.