CMIT 460 CMIT460 LAB 3 ANSWERS - UMUC
https://studentoffortunefix.com/collections/papers/products/cmit-460-cmit460-lab-3-answers-umuc
UMUC CMIT 460 Lab 3 Answers
1. Parse through the PCAP file and look for IP addresses of interest. Discuss why they are of interest.
2. Is there anything in the PCAP file that would suggest suspicious activity has taken place against the system provided for this case?
3. Gather volatile data components from the RAM image and verify the findings against your volatile data provided. Are there any disparities? If so, what would cause the differences or lack of findings in one compared to the other?
4. Create an initial findings report on the information correlated between the PCAP file, the volatile data collected, and the RAM image as it pertains to a potential intrusion. Also include any interesting IP addresses or information that traversed your network within the PCAP file.
Comments
Post a Comment