2015-08-31 - TRAFFIC ANALYSIS EXERCISE - WHAT'S THE EK? - WHAT'S THE PAYLOAD?

TRAFFIC:

 

NOTES:

 

SCENARIO

Examine the pcap to determine the exploit kit (EK), the payload, and the compromised website that kicked off this infection chain.

 

QUESTIONS

For a full incident report, you'll want to include the following:

 

 

ANSWERS