User Account

All Pages

When did the bulk of the data get transmitted

Assignment Help Computer Network Security
Reference no: EM131309749

Assignment

Your boss has had an intrusion (or so she says) on his home network. She has brought in a packet capture file for you to analyze.

She says:

"Something has happened on my home network. I use my network for internet access so I can access read email (remember my AT&T email account). I am not sure whether this event(s) should cause me concern or not, but I was lucky to be running Wireshark when the event occurred. I will email you the Wireshark capture file so you can analyze the capture file and tell me what occurred during the internet session."

1) Open the capture file (by clickingHere) using any tools you see fit

2) Perform an analysis on the captured traffic. Some things you should consider are the following (not all of these happened and may not be all inclusive either):

a. How long did the session capture last?
b. How many packets were captured?
c. How many bytes were captured?
d. What protocols were observed?
e. When did the bulk of the data get transmitted?
f. What caused this transmission spike?
g. Were any ISP sites accessed? If so which ones? What accounts?
h. What is the name of the host computer? It's IP address?
i. What Operating system is it using?
j. What does the local network look like?
k. What device names are on the local network?
l. Did I access any other computes on the local area network?
m. Are any other devices on the network?

3) What "story" does the capture file tell?

4) Run the capture file through SNORT. What alerts are triggered?

Provide a lab report, which will includes the answers to the questions above and an analysis of what actually happened during the network session. Identify the key events and either prove or disapprove that a malicious event occurred.

When referencing the answer to questions or providing proof of your analysis it might be helpful to reference the actual packet number that proves your point.

Reference no: EM131309749

Questions Cloud

Estimated replacement cost : Your firm must replace its packing machine in 20 years when it's expected to wear out. The estimated replacement cost is $1,350,000. How much must the company save (invest) each year at 4% to accumulate enough to replace the machine?
What are the net cash flows of the project each year : H. Cochran, Inc., is considering a new three-year expansion project that requires an initial fixed asset investment of $2,250,000. The fixed asset will be depreciated straight-line to zero over its three-year tax life. The project is estimated to gen..
How many people do you need to participate in the study : If you wanted the 95% confidence interval for the mean number of medical conditions for that group to be no wider than 3 medical conditions, and you use a standard deviation of 4.0, how many people do you need to participate in the study who would..
What is you profit or loss on the contract if premium : If you buy a put option on a $100,000 dollar Treasury Bond futures contract with an exercise price of 95 and the price of the Treasury Bond is 120 at expiration, is the contract in the money, out of the money, or at the money? What is you profit or l..
When did the bulk of the data get transmitted : When did the bulk of the data get transmitted? What caused this transmission spike? Were any ISP sites accessed? If so which ones? What accounts?
Considering new three-year expansion project : H. Cochran, Inc., is considering a new three-year expansion project that requires an initial fixed asset investment of $2,490,000. The fixed asset will be depreciated straight-line to zero over its three-year tax life, after which time it will be wor..
Could a religious employee ever be considered a hindrance : What aspects of religions or belief systems may come into play in the workplace?What aspects of a religion or belief system would be helpful to know when managing a person with this particular set of beliefs?How would you managed a situation where a..
What is the capital gains yield : You are an investor in company which is an auto parts supplier. They will pay a dividend next year of $0.80 per share and are expected to grow at an annual rate of 2%. The price of the stock is currently $37.24. What is the capital gains yield?
Considering the sale of new sound board : Rolston Music Company is considering the sale of a new sound board used in recording studios. The new board would sell for $26,900, and the company expects to sell 1,540 per year. The company currently sells 2,040 units of its existing model per year..

Reviews

Write a Review

Computer Network Security Questions & Answers

  An overview of wireless lan security - term paper

Computer Science or Information Technology deals with Wireless LAN Security. Wireless LAN Security is gaining importance in the recent times. This report talks about how vulnerable are wireless LAN networks without any security measures and also talk..

  Computer networks and security against hackers

This case study about a company named Magna International, a Canada based global supplier of automotive components, modules and systems. Along with the company analysis have been made in this assignment.

  New attack models

The Internet evolution is and is very fast and the Internet exposes the connected computers to attacks and the subsequent losses are in rise.

  Islamic Calligraphy

Islamic calligraphy or Arabic calligraphy is a primary form of art for Islamic visual expression and creativity.

  A comprehensive study about web-based email implementation

Conduct a comprehensive study about web-based email implementation in gmail. Optionally, you may use sniffer like wireshark or your choice to analyze the communication traffic.

  Retention policy and litigation hold notices

The purpose of this project is to provide you with an opportunity to create a document retention policy. You will also learn how to serve a litigation hold notice for an educational institute.

  Tools to enhance password protection

A report on Tools to enhance Password Protection.

  Analyse security procedures

Analyse security procedures

  Write a report on denial of service

Write a report on DENIAL OF SERVICE (DoS).

  Phising email

Phising email It is multipart, what are the two parts? The HTML part, is it inviting the recepient to click somewhere? What is the email proporting to do when the link is clicked?

  Express the shannon-hartley capacity theorem

Express the Shannon-Hartley capacity theorem in terms of where is the Energy/bit and is the psd of white noise.

  Modern symmetric encryption schemes

Pseudo-random generators, pseudo-random functions and pseudo-random permutations

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd