Lab 10 Instructions

docx

School

Community College of Baltimore County *

*We aren’t endorsed by this school

Course

134

Subject

Information Systems

Date

Dec 6, 2023

Type

docx

Pages

4

Uploaded by usmanarshad443

Report
Lab 10 Part 1: eBook Quiz Chapter 12: (5 points) Complete the eBook quiz for Chapter 12 until you achieve at least 90%. Paste in a screen print below. To access the quizzes, open the eBook from the Jones & Bartlett website, then click the Assessments tab. Paste the screen print here for the completed Chapter 12 eBook Quiz: (you MUST achieve 90% to receive credit)
Part 2: Activity: (10 points) Click this link to see 10 Free Tools for Digital Forensic Investigations. https://www.qa.com/about-qa/our-thinking/top-10-free-tools-for-digital-forensic- investigation/ .Read through each tool to become familiar with tools that are being used and how they can be used in cyber attacks. 1. Research a recent cyber attack within the last two months. Summarize the attack in 2-3 sentences. Recently, on September 6, the Dunghill Leak ransomware gang claimed to have launched a cyber-attack against Sabre, a travel booking company. The attackers asserted that they successfully stole 1.3 terabytes of data from Sabre. This compromised data reportedly included corporate financial information, passenger turnover, and ticket sales data, as well as personal employee information such as email addresses, work locations, names, nationalities, passport and visa numbers, and certain employees' US I- 9 forms. 2. Choose one tool and describe HOW this tool could be used to gather evidence in this type of attack? If I were to use the tool "Autopsy" from the provided list in the context of the recent cyber attack on Sabre, I could employ it to gather evidence by conducting a thorough analysis of the compromised systems. How Autopsy could be used: Timeline Analysis: Autopsy provides timeline analysis capabilities, allowing me to reconstruct events over time. This feature can help me understand when the attack occurred and trace the sequence of events. Keyword Searching: Autopsy supports keyword searching, enabling me to search for specific terms related to the attack, such as file names, ransomware indicators, or specific employee information. Data Carving: In cases where data might have been altered or deleted, Autopsy's data carving features can assist in recovering deleted or hidden files. Indicator of Compromise (IoC) Analysis: Autopsy can help me analyze indicators of compromise, such as patterns or signatures associated with the ransomware attack, aiding in identifying the extent of the compromise. Using Autopsy, I could perform a comprehensive analysis to understand the attack vectors, identify affected systems, and gather evidence necessary for further investigation and response.
Save Part 1 and Part 2 of this document and upload it into Brightspace. Part 3 Hands-On-Lab (25 points) The labs for the course are designed to give you hands on experience using various security tools. There are two parts to each lab: Section 1: Hands-On Demonstration -this section will offer more instruction and guidance in completing lab tasks Section 2: Applied Learning -this section will provide less guidance and instruction and allow you to practice the skills and apply what you have learned in Section 1. NOTE: You do NOT have to complete Section 3: Challenge and Analysis To Begin the Lab: 1. Click the Labs & Lab Quizzes link on the course menu to the left. Click the link to go to the lab website. Alternatively, click this link to go to the lab website: https://www.jblearning.com/ 2. Launch the Virtual Lab for this chapter . 3. Review the Lab Instructions document found in Content, Lab & Lab Quizzes link in Brightspace for specific information about using the lab website. 4. Work through the lab, take screen prints and type responses when necessary. Download the Lab report. To Submit the lab: Click the link for the lab. Scroll to the bottom to the Submit Assignment section and click Add a File . Attach both the completed Lab Report and this document, the Lab Instruction document that contains the Part 1: eBook quiz screen prints and Part 2: Activity into Brightspace.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help
Note: Both files should be attached BEFORE you click submit. You must upload BOTH files in order to receive full credit. Click Submit when both files can be seen in the submission box. You only have 1 attempt to submit both files.

Related Documents

PLC.docx
sbuckle9_cybr7930_SecurityOperationDesign_Final.pdf
sbuckle9_cybr7930_serviceplan.pdf
4-1 Entrepreneurial Approaches.docx
CSCI501 Quiz_Security Operations.pdf
Assignment 1.docx
Assignment2.docx
IT Proposal_2_Chloe Kalsi.docx
Module 1 Practice Quiz.docx
WK 5 Forensic Methodology Paper.docx
E-Bike-Rental.docx
WK 5 LAB.docx