User Account

All Pages

Creating whitelist

Assignment Help Computer Network Security
Reference no: EM132582277

Creating Whitelist / Baseline

Scenario
Students will become familiar with how to manually create a file "whitelist" from a known-good system.
MI 1. Log in to the Windows 8 machine with the creds listed in the machines tab.

This lab is equipped with an auto-scoring technology designed to track your progress as you successfully complete the lab. A short-cut is available on the Kali Linux VM Desktop to check your score. Double-click on the short-cut and a web browser window will open displaying your current score. You can periodically refresh the page as you complete more of the lab to see your current score.

The final score is calculated and recorded when you either complete or cancel the lab. If you save your lab, the score is held until you resume the lab and cancel or complete it.

Q Make sure to enter the credentials correctly, otherwise you cannot continue the lab.

2. Open a command prompt as administrator and navigate to the Hashing folder on the desktop. Then, use the tool there to generate MD5 hash values for all files currently contained on the C: drive and export the hashes to a file named MD5-Whitelist.txt.

Review the file when complete.
A This effort will take approximately 10
minutes to complete, and provide a file over 6 MBs in size.

3. Next, generate SHA256 hash values for all files currently contained on the C: drive and export the hashes to a file named SHA256-VVhitelist.txt.

Review the file as well when finished.

Find "Unauthorized" Files

Scenario
During this portion of the lab, you will be introduced to the ability to manually scan your workstation for new files and changes to files already in the baseline.
 1. Find the Mystery Files.zip file in C:\Temp and extract its contents to the desktop. Then, verify there are six files within the Suspicious folder.
 2. Next, and similar to before, generate MD5 hashes for the six "suspicious" files we just extracted. Then, generate SHA256 hashes for them as well.
 3. Lastly, generate MD5 hashes for all files in the C:\ drive to find which files have changed in the background. You should be able to run a command to only show or output the hashes of files that have changed or been added to the system. This is to illustrate that operating systems do have a fair amount of dynamic change when they are used. What do you find?

Reference no: EM132582277

Questions Cloud

What are the 3 component parts of a nucleotide : 1) Explain the relationships between the following 4 terms nucleosome, chromatin, prophase, chromosome.
Supporting documentation for a recommendation : Provide a rationale with supporting documentation for a recommendation to move to an EHR.
Discuss three exit strategies for Olive cafe : Question - Discuss three exit strategies for Olive café, a small café in my neighborhood, their advantages and disadvantages
Describe the relationship between emr : Describe the relationship between EMR (an electronic medical record), EHR and TPMS?
Creating whitelist : Calculated and recorded when you either complete or cancel the lab. If you save your lab, the score is held until you resume the lab and cancel or complete it
Evaluate the fundamental driving forces : Evaluate the fundamental driving forces that shape the organizational environment of the selected company.
Traditional activity-based costing : Analyze the major benefits and major weaknesses of traditional Activity-Based Costing (ABC) in determining accurate overhead costs over an ABC system
Focuses on the creation of implementation plan : Focuses on the creation of an implementation plan and associated change management.
Different types of crossing over generates : Show how different types of crossing over generates new combinations of alleles? You can choose any organism and three allele

Reviews

Write a Review

Computer Network Security Questions & Answers

  Analyze proper physical access control safeguards and

imagine you are an information security consultant for a small doctors office consisting of three 3 doctors two 2

  Decisions on any changes that materially affect project

It has been recommended in some quarters that for large projects, decisions on any changes that materially affect assignment milestones

  What are the various types of malware

What is buffer overflow, and how is it used against a Web server?Why does polymorphism cause greater concern than traditional malware? How does is affect detection?

  Cybercrime investigators use to investigate computer crime

Identify at least two (2) effective methods that cybercrime investigators use to investigate computer crime.

  Conduct a security analysis baseline of the it systems

Conduct a security analysis baseline of the IT systems, which will include a data-flow diagram of connections and endpoints, and all types of access points.

  Did you discover any new problems

After a computer forensics investigation, you need to meet with your department or group of fellow investigators and critique the case in an effort to improve your work

  Improvement and risk mitigation strategies associated to fdl

Purpose of this risk assessment report is to basically identify and outline all threats, weaknesses and vulnerabilities in regards to Fiji Directories Limited

  What descriptive labels might apply to this type of threat

What descriptive labels might apply to this type of threat/incident? How would the organization try to discourage, or reduce the incentives that could attract possible threat actors?

  Positive economic statement and a normative one

What is the difference between a positive economic statement and a normative one.

  Discuss the type of encryption

Identify the key reasons for selecting your wireless home router. Discuss the type of encryption it uses and explain the reason(s) why you believe this method of encryption is more superior than its contemporaries.

  Develop a listing of vulnerabilities in current security

Develop a listing of vulnerabilities (10) in the current security posture of Omega Research. A vulnerability is defined as the absence or weakness.

  Assignment on securing the scene

Imagine you are a digital forensic investigator for a healthcare organization. You learn from your internal information security department that an employee has been using password-cracking software to access confidential customer insurance inform..

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd