Homework
Your boss has had an intrusion (or so she says) on his home network. She has brought in a packet capture file for you to analyze.
She says:
"Something has happened on my home network. I use my network for internet access so I can access read email (remember my AT&T email account). I am not sure whether this event(s) should cause me concern or not, but I was lucky to be running Wireshark when the event occurred. I will email you the Wireshark capture file so you can analyze the capture file and tell me what occurred during the internet session."
I. Open the capture file using any tools you see fit
II. Perform an analysis on the captured traffic. Some things you should consider are the following (not all of these happened and may not be all inclusive either):
i. How long did the session capture last?
ii. How many packets were captured?
iii. How many bytes were captured?
iv. What protocols were observed?
v. When did the bulk of the data get transmitted?
vi. What caused this transmission spike?
vii. Were any ISP sites accessed? If so which ones? What accounts?
viii. What is the name of the host computer? It's IP address?
ix. What Operating system is it using?
x. What does the local network look like?
xi. What device names are on the local network?
xii. Did I access any other computes on the local area network?
xiii. Are any other devices on the network?
III. What "story" does the capture file tell?
IV. Run the capture file through SNORT. What alerts are triggered?
Provide a lab report, which will includes the answers to the questions above and an analysis of what actually happened during the network session. Identify the key events and either prove or disapprove that a malicious event occurred.
When referencing the answer to questions or providing proof of your analysis it might be helpful to reference the actual packet number that proves your point.
Format your homework according to the following formatting requirements:
i) The answer should be typed, using Times New Roman font (size 12), double spaced, with one-inch margins on all sides.
ii) The response also includes a cover page containing the title of the homework, the student's name, the course title, and the date. The cover page is not included in the required page length.
iii) Also include a reference page. The Citations and references must follow APA format. The reference page is not included in the required page length.