2015-06-30 - TRAFFIC ANALYSIS EXERCISE

 

SCENARIO

You're working as an analyst at your organization's Security Operations Center (SOC).  One of the other analysts was investigating alerts on a Windows host, and the computer is infected.  That analyst retrieved a pcap of network traffic from the associated IP address.

You've been asked to review the pcap and answer the following questions:

 

 

ANSWERS