This assignment contains a scenario where you are the analyst in the security operations center. Your task is to perform an investigation based on the three (3) files that are given to you. Use all the tools you have been exposed to so far as part of your investigation. After completing your analysis, please submit one PDF document of your analysis. This report needs to be professional and use the incident response template attached to complete your report.
Please read the PacketAnalysis_Assignment.pdf for instructions.
There are a total of 5 documents for this assignment.
- Template to be used to submit your report
- Assignment instructions PDF document
- Packet Capture file – evidence file
- Snort capture file – evidence file
- Surricata capture file – evidence file