2020-09-25 - TRAFFIC ANALYSIS EXERCISE - TROUBLE ALERT
NOTICE:
- The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.
ASSOCIATED FILES:
- Zip archive of the pcap: 2020-09-25-traffic-analysis-exercise.pcap.zip 2.1 MB (2,051,483 bytes)
- 2020-09-25-traffic-analysis-exercise.pcap (2,601,907 bytes)
- Zip archive of the alerts: 2020-09-25-traffic-analysis-exercise-alerts.zip 1.4 MB (1,410,772 bytes)
- 2020-09-25-traffic-analysis-exercise-alerts.jpg (1,571,226 bytes)
- 2020-09-25-traffic-analysis-exercise-alerts.txt (4,z083 bytes)
SCENARIO
LAN segment data:
- LAN segment range: 10.0.0[.]0/24 (10.0.0[.]0 through 10.0.0[.]255)
- Domain: pascalpig[.]com
- Domain controller: 10.0.0[.]10 - Pascalpig-DC
- LAN segment gateway: 10.0.0[.]1
- LAN segment broadcast address: 10.9.25[.]255
TASK
- Write an incident report based on the pcap and the alerts.
ANSWERS
- Click here for the answers.
Click here to return to the main page.