TryHackMe: Traffic Analysis Essentials Writeup

The room: “Learn Network Security and Traffic Analysis foundations and take a step into probing network anomalies.”

https://tryhackme.com/room/trafficanalysisessentials

Task 2: Network Security and Network Data

2.1. Which Security Control Level covers contain creating security policies?

Administrative

2.2. Which Access Control element works with data metrics to manage data flow?

Load Balancing

2.3. Which technology helps correlate different tool outputs and data sources?

SOAR

Task 3: Traffic Analysis

3.1. Level-1 is simulating the identification and filtering of malicious IP addresses.

What is the flag?

IPs 10.10.99.62 and 10.10.99.69 should be blocked.

3.2. Level-2 is simulating the identification and filtering of malicious IP and Port addresses.

What is the flag?

Ports 2222, 7777, and 4444 must be blocked. These are the 3 ports that attackers use for trojans.

a

Bir yanıt yazın

E-posta adresiniz yayınlanmayacak. Gerekli alanlar * ile işaretlenmişlerdir