How to Solve the LetsDefend HTTP Basic Auth Lab | SOC Analyst PCAP Analysis Walkthrough

Are you working through the LetsDefend SOC Analyst path? In this video, we dive deep into the HTTP Basic Auth lab to uncover how an attacker managed to compromise a web server. We’ll use Wireshark to pull credentials right out of the air! What You’ll Learn: In this step-by-step walkthrough, we cover the essential skills every SOC Analyst needs: Packet Filtering: How to cut through the noise in Wireshark to find HTTP traffic. Server Fingerprinting: Identifying OS and Web Server versions (FreeBSD/Apache) from packet headers. Analyzing User-Agents: Figuring out what tools the attacker used (Lynx Browser). Decoding Basic Auth: Why "Basic Authentication" isn't secure and how to decode Base64 strings to find plaintext passwords. Resources Mentioned: Lab Platform: LetsDefend.io Tools: Wireshark, CyberChef #Letsdefend #cybersecurity #socanalyst #wireshark #blueteam #ethicalhacking