Review the case study: The curious Mr. X at the end of Chapter 5. Write a forensic report to be delivered to the Arctic Nuclear Fusion Research Facility (ANFRF) that clearly outlines the findings. You need to answer the following question within your report. Your report needs to be formatted as a report and not simply a “question and answer” document. You can find a template here.
What systems have been compromised?
What did the attacker find out about the network architecture?
Was any there any data exfiltration, if so where did the data come from?
What was the duration of the attack?
What are the next steps to ensure that the organizations data is no longer at threat of being stolen?
Below is an example of a PCAP Network Packet Capture Analysis Forensic Report conducted by Sriram Raghavan on 5/22/2008.
http://securecyberspace.org/yahoo_site_admin/assets/docs/phishing-case.334153800.pdf
Review the case study: HackMe, Inc. at the end of Chapter 6 and answer the following questions.
What are the BSSID and SSID of the WAP of interest?
Is the WAP of interest using encryption?
Can you identify what encryption is being used?
What stations are interacting with the WAP and/or other stations on the WLAN?
Are there patterns of activity that seem anomalous? If so, what are they?
How are they anomalous: Consistent with a malfunction? Consistent with malicious activity?
Can you identify any potential bad actors? If so, who are they?
Can you determine if a bad actor successfully executed an attack? If so, how?
Place this order or similar order and get an amazing discount. USE Discount code “GET20” for 20% discount