User Account

All Pages

When did the bulk of the data get transmitted

Assignment Help Computer Network Security
Reference no: EM131309749

Assignment

Your boss has had an intrusion (or so she says) on his home network. She has brought in a packet capture file for you to analyze.

She says:

"Something has happened on my home network. I use my network for internet access so I can access read email (remember my AT&T email account). I am not sure whether this event(s) should cause me concern or not, but I was lucky to be running Wireshark when the event occurred. I will email you the Wireshark capture file so you can analyze the capture file and tell me what occurred during the internet session."

1) Open the capture file (by clickingHere) using any tools you see fit

2) Perform an analysis on the captured traffic. Some things you should consider are the following (not all of these happened and may not be all inclusive either):

a. How long did the session capture last?
b. How many packets were captured?
c. How many bytes were captured?
d. What protocols were observed?
e. When did the bulk of the data get transmitted?
f. What caused this transmission spike?
g. Were any ISP sites accessed? If so which ones? What accounts?
h. What is the name of the host computer? It's IP address?
i. What Operating system is it using?
j. What does the local network look like?
k. What device names are on the local network?
l. Did I access any other computes on the local area network?
m. Are any other devices on the network?

3) What "story" does the capture file tell?

4) Run the capture file through SNORT. What alerts are triggered?

Provide a lab report, which will includes the answers to the questions above and an analysis of what actually happened during the network session. Identify the key events and either prove or disapprove that a malicious event occurred.

When referencing the answer to questions or providing proof of your analysis it might be helpful to reference the actual packet number that proves your point.

Reference no: EM131309749

Questions Cloud

Estimated replacement cost : Your firm must replace its packing machine in 20 years when it's expected to wear out. The estimated replacement cost is $1,350,000. How much must the company save (invest) each year at 4% to accumulate enough to replace the machine?
What are the net cash flows of the project each year : H. Cochran, Inc., is considering a new three-year expansion project that requires an initial fixed asset investment of $2,250,000. The fixed asset will be depreciated straight-line to zero over its three-year tax life. The project is estimated to gen..
How many people do you need to participate in the study : If you wanted the 95% confidence interval for the mean number of medical conditions for that group to be no wider than 3 medical conditions, and you use a standard deviation of 4.0, how many people do you need to participate in the study who would..
What is you profit or loss on the contract if premium : If you buy a put option on a $100,000 dollar Treasury Bond futures contract with an exercise price of 95 and the price of the Treasury Bond is 120 at expiration, is the contract in the money, out of the money, or at the money? What is you profit or l..
When did the bulk of the data get transmitted : When did the bulk of the data get transmitted? What caused this transmission spike? Were any ISP sites accessed? If so which ones? What accounts?
Considering new three-year expansion project : H. Cochran, Inc., is considering a new three-year expansion project that requires an initial fixed asset investment of $2,490,000. The fixed asset will be depreciated straight-line to zero over its three-year tax life, after which time it will be wor..
Could a religious employee ever be considered a hindrance : What aspects of religions or belief systems may come into play in the workplace?What aspects of a religion or belief system would be helpful to know when managing a person with this particular set of beliefs?How would you managed a situation where a..
What is the capital gains yield : You are an investor in company which is an auto parts supplier. They will pay a dividend next year of $0.80 per share and are expected to grow at an annual rate of 2%. The price of the stock is currently $37.24. What is the capital gains yield?
Considering the sale of new sound board : Rolston Music Company is considering the sale of a new sound board used in recording studios. The new board would sell for $26,900, and the company expects to sell 1,540 per year. The company currently sells 2,040 units of its existing model per year..

Reviews

Write a Review

Computer Network Security Questions & Answers

  Strategies and recommendations to the cio

Explain in detail why you believe the risk management, control identification, and selection processes are so important, specifically in this organization and draft a one page Executive Summary that details your strategies and recommendations to t..

  Encrypt the plaintext by using vigenere cipher

Encrypt the following Plaintext using Vigenere cipher: Plaintext: stocks market is falling Key : one. Is Vigenere cipher monoalphabetic or polyalphabetic? Why?

  Create and describe a comprehensive security policy

Present the rationale for the logical and physical topographical layout of the planned network. Create and describe a comprehensive security policy for this data-collection and analysis company.

  Relationship between infrastructure and security

Justify and support the relationship between infrastructure and security as it relates to this data-collection and analysis company

  Describe the triple data encryption standards

Describe the Triple Data Encryption Standards

  How are encryption and authentication related

Discuss at least two different encryption methods and corresponding encryption keys. How are encryption and authentication related? Be sure to provide examples of how encryption is used in your organization.

  Define security infrastructure and protocols

The SSL protocol uses (X.509) certificates to create a secure session between a server and a client in a web session. Discuss the browser-based trust model assumed in SSL, and compare it with the trust model used in Kerberos.

  Cryptography problem

Alice, Bob, and Carol want to use secret key cryptography to authenticate each other. Compare the security of having a single shared secret that they all share, with the security of having each of them use their own secret

  Implementing information systems security policies

Describe the roles and responsibilities of those implementing information systems security policies.

  Explain why shared accounts is considered bad practice

In your own words, explain why each of the following is considered bad practice:

  Secure communication if organization uses symmetric cipher

An organization has 300 members. It is desired that each member of the organization be able to communicate securely with any other member. The organization uses a symmetric cipher.

  Potential logical threats that require attention

Information Systems Security, Suppose you are the IT professional in charge of security for a small pharmacy that has recently opened within a shopping mall. Determine the impact of at least five (5) potential logical threats that require attention

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd