Cover up

Event ECSC2019

Tags Network traffic Log analysis

Difficulty

Medium

Provider https://cyber.services/

Additional Info

Description

As member of a computer network administration team you received a network traffic file recording a network communication. This file contains recorded traffic from your organization’s DMZ. Analyze the pcap file to investigate the events and figure out if there has been and data breach at the time of the incident.

Write-ups

Cover Up_Solution.pdf

Other artefacts

trafficdump1905230941.zip
network topology.PNG

Tasks

Task 1: What is the IP address of the malicious server data has been transmitted to?

Task 2: To how many pieces the leaked data has been sliced during transmission?

Task 3: What kind of illness affects Ms. Susan Martin according to the leaked data??

Task 4: What is Ms. Dorothy Perez's birthdate according to the leaked data?

Task 5: How can packets originating from 192.168.0.128/25 and sent to a TPlink device filtered?

2020 EUROPEAN CYBER SECURITY CHALLENGE