2020-03-14 - TRAFFIC ANALYSIS EXERCISE - MONDOGREEK

ASSOCIATED FILES:

• Zip archive of the pcap:  2020-03-14-traffic-analysis-exercise.pcap.zip   17.4 MB (17,407,798 bytes)

• 2020-03-14-traffic-analysis-exercise.pcap   (21,809,321 bytes)

• Zip archive of the alerts:  2020-03-14-traffic-analysis-exercise-alerts.zip   2.1 MB (2,100,875 bytes)

• 2020-03-14-traffic-analysis-exercise-alerts.jpg   (2,347,458 bytes)
• 2020-03-14-traffic-analysis-exercise-alerts.txt   (112,080 bytes)

NOTES:

• All zip archives on this site are password-protected with the standard password.  If you don't know it, look at the "about" page of this website.

 

 

SCENARIO

LAN segment data:

• LAN segment range:  10.3.11.0/24 (10.3.11.0 through 10.3.11.255)
• Domain:  mondogreek.com
• Domain controller:  10.3.11.3 - Mondogreek-DC
• LAN segment gateway:  10.3.11.1
• LAN segment broadcast address:  10.3.11.255

 

YOUR TASK

Write an incident report based on the pcap and the associated alerts.

 

ANSWERS

• Click here for the answers.

 

Click here to return to the main page.