User Account

All Pages

When did the bulk of the data get transmitted

Assignment Help Computer Network Security
Reference no: EM131309749

Assignment

Your boss has had an intrusion (or so she says) on his home network. She has brought in a packet capture file for you to analyze.

She says:

"Something has happened on my home network. I use my network for internet access so I can access read email (remember my AT&T email account). I am not sure whether this event(s) should cause me concern or not, but I was lucky to be running Wireshark when the event occurred. I will email you the Wireshark capture file so you can analyze the capture file and tell me what occurred during the internet session."

1) Open the capture file (by clickingHere) using any tools you see fit

2) Perform an analysis on the captured traffic. Some things you should consider are the following (not all of these happened and may not be all inclusive either):

a. How long did the session capture last?
b. How many packets were captured?
c. How many bytes were captured?
d. What protocols were observed?
e. When did the bulk of the data get transmitted?
f. What caused this transmission spike?
g. Were any ISP sites accessed? If so which ones? What accounts?
h. What is the name of the host computer? It's IP address?
i. What Operating system is it using?
j. What does the local network look like?
k. What device names are on the local network?
l. Did I access any other computes on the local area network?
m. Are any other devices on the network?

3) What "story" does the capture file tell?

4) Run the capture file through SNORT. What alerts are triggered?

Provide a lab report, which will includes the answers to the questions above and an analysis of what actually happened during the network session. Identify the key events and either prove or disapprove that a malicious event occurred.

When referencing the answer to questions or providing proof of your analysis it might be helpful to reference the actual packet number that proves your point.

Reference no: EM131309749

Questions Cloud

Estimated replacement cost : Your firm must replace its packing machine in 20 years when it's expected to wear out. The estimated replacement cost is $1,350,000. How much must the company save (invest) each year at 4% to accumulate enough to replace the machine?
What are the net cash flows of the project each year : H. Cochran, Inc., is considering a new three-year expansion project that requires an initial fixed asset investment of $2,250,000. The fixed asset will be depreciated straight-line to zero over its three-year tax life. The project is estimated to gen..
How many people do you need to participate in the study : If you wanted the 95% confidence interval for the mean number of medical conditions for that group to be no wider than 3 medical conditions, and you use a standard deviation of 4.0, how many people do you need to participate in the study who would..
What is you profit or loss on the contract if premium : If you buy a put option on a $100,000 dollar Treasury Bond futures contract with an exercise price of 95 and the price of the Treasury Bond is 120 at expiration, is the contract in the money, out of the money, or at the money? What is you profit or l..
When did the bulk of the data get transmitted : When did the bulk of the data get transmitted? What caused this transmission spike? Were any ISP sites accessed? If so which ones? What accounts?
Considering new three-year expansion project : H. Cochran, Inc., is considering a new three-year expansion project that requires an initial fixed asset investment of $2,490,000. The fixed asset will be depreciated straight-line to zero over its three-year tax life, after which time it will be wor..
Could a religious employee ever be considered a hindrance : What aspects of religions or belief systems may come into play in the workplace?What aspects of a religion or belief system would be helpful to know when managing a person with this particular set of beliefs?How would you managed a situation where a..
What is the capital gains yield : You are an investor in company which is an auto parts supplier. They will pay a dividend next year of $0.80 per share and are expected to grow at an annual rate of 2%. The price of the stock is currently $37.24. What is the capital gains yield?
Considering the sale of new sound board : Rolston Music Company is considering the sale of a new sound board used in recording studios. The new board would sell for $26,900, and the company expects to sell 1,540 per year. The company currently sells 2,040 units of its existing model per year..

Reviews

Write a Review

Computer Network Security Questions & Answers

  Analyze the itil service management guidelines and principle

Describe the software engineering process, the challenges in managing software development activities, and the potential interface issues from the software development perspective.

  Describe the main objectives of the anba drp

Explain the key ways that ANBAs DRP can help mitigate risk in the organization and defend the need for DRPs in an enterprise organization such as ANBA.

  What is the role of data mining

What is the role of data mining

  Describe common concepts in information security

Describe common concepts in information security, privacy and the law. You will learn how to present and justify risk analysis for assets in an organizational setting and will relate those findings to the basic security principles of confidentiali..

  What might be your three most important concerns

Many hackers claim to believe that "access to computers should be unlimited and total" and that "all information should be free." Do you agree with these statements? Why or why not?

  What was the volume of digital evidence

Cybersecurity or Digital Forensics- Select a real world event related to Cybersecurity or Digital Forensics. What was the volume of digital evidence

  Explaining asymmetric encryption algorithms

Using only asymmetric encryption algorithms, describe a process that would allow Alice to send a message that can only be read by Bob. You should include any steps taken by Bob that allow him to read the message.

  Describe situations where end-to-end encryption combined

Give some examples where traffic analysis could jeopardize security. Describe situations where end-to-end encryption combined with link encryption would still allow enough traffic analysis to be dangerous. about 150 words with references

  Determine with justification the equation of the curve

Determine with justification the equation of the curve and determine with justification all values oft for which there is no point (x, y) on the curve.

  Explain the nature of security assessments is changing

The motivation for security reviews and assessments is changing and, consequently, the nature of security assessments is changing. The practice of risk analysis is relatively less developed in the field of homeland security than in other areas

  Discuss in detail one vulnerability analysis tool

Discuss in detail one vulnerability analysis tool that is suitable for this (deployment) environment -  You have the liberty to consider open source or free products such as OpenVAS.

  Problem regarding the machine probability

The probability that two machines is related by , A to work is 0.7 and the probability that B works if A is working is 0.8 , and 0.35 if A fails work find that machine probability B does not work.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd