2020-01-30 - TRAFFIC ANALYSIS EXERCISE - SOL-LIGHTNET

NOTICE:

• The zip archives on this page have been updated, and they now use the new password scheme.  For the new password, see the "about" page of this website.

ASSOCIATED FILES:

• Zip archive of the pcap:  2020-01-30-traffic-analysis-exercise.pcap.zip   7.4 MB (7,375,792 bytes)

• 2020-01-30-traffic-analysis-exercise.pcap   (8,609,402 bytes)

• Zip archive of the alerts:  2020-01-30-traffic-analysis-exercise-alerts.zip   619 kB (619,155 bytes)

• 2020-01-30-traffic-analysis-exercise-alerts.jpg   (686,661 bytes)
• 2020-01-30-traffic-analysis-exercise-alerts.txt   (4,568 bytes)

 

 

SCENARIO

LAN segment data:

• LAN segment range:  10.20.30[.]0/24 (10.20.30[.]0 through 10.20.30[.]255)
• Domain:  sol-lightnet[.]com
• Domain controller:  10.20.30[.]2 - Sol-Lightnet-DC
• LAN segment gateway:  10.20.30[.]1
• LAN segment broadcast address:  10.20.30[.]255

 

YOUR TASK

Write an incident report based on the pcap and associated alerts.

 

ANSWERS

• Click here for the answers.

 

Click here to return to the main page.