2018-04-11 - TRAFFIC ANALYSIS EXERCISE - DYNACCOUNTIC

ASSOCIATED FILES:

NOTES:

 

SCENARIO

Someone at Dynaccountic has infected their Windows computer.  Your manager has tasked you to write an incident report.


Your manager thinks of you as a "security accountant."

 

Here's a brief outline of associated network traffic:

 

YOUR TASK

The incident report should include:

 

Remember, a good incident report starts with an executive summary.  In this case, the executive summary should only be 2 to 3 sentences long.  See my proposed format below for this month's exercise.

 

SUMMARY:

DETAILS:

INDICATORS:

 

ANSWERS

 

Click here to return to the main page.