2015-02-24 - TRAFFIC ANALYSIS EXERCISE

PCAP:

NOTE: ZIP files are password-protected with the standard password.  If you don't know it, look at the "about" page of this website.

 

ANSWER CHECK - ROUND 1

See the image below for the answers:

 

The pcap generated the following Snort events:



Shown above:  EmergingThreats snort events from Sguil on Security Onion


Shown above:  Talos/VRT events from Snort 2.9.7.0

 

SECOND BREAK POINT

See the image below for some follow-up questions for your report:

 

Click here to return to the main page.