Question: 1.Examine the alert and understand the content such as source and destination IP addresses, the Alert (ICMP packet found messages). Then interpret and analyze the

1.Examine the alert and understand the content such as source and destination IP addresses, the Alert (ICMP

packet found messages). Then interpret and analyze the triggered alert in the context of network security with

respect to inbound and outbound ICMP traffic to and from the Kali.

2.

Considering the run time for ICMP packet processing (200.767911 seconds), packets processed by Snort (2426),

Snort ran time of 3 minutes 20 seconds, and Pkts/min (808), and Pkts/sec (12), how can that that support your

interpretations and analysis above?

3.

Examine the FTP alert and understand the content such as source and destination IP addresses, the Alert (ICMP

packet found messages). Then interpret the triggered alert in the context of network security with respect to

ftp login attempt to the Kali.

4.

Examine the SSH alert and understand the content such as source and destination IP addresses, the Alert (ICMP

packet found messages), as well as the SSH command in the PowerShell command prompt.

5.

After using the ping command instead of nmap command in the previous task to ping the Kali VM, determine

why do you think no an alert was triggered with the ping utility in the context of intrusion detections

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Computer Network Questions!

Q:

Planning is one of the most important management functions in any business. A front office managers first step in planning should involve determine the departments goals. Planning also includes...

Q:

Googles ease of use and superior search results have propelled the search engine to its num- ber one status, ousting the early dominance of competitors such as WebCrawler and Infos- eek. Even later...

Q:

Managing Scope Changes Case Study Scope changes on a project can occur regardless of how well the project is planned or executed. Scope changes can be the result of something that was omitted during...

Q:

INTRODUCING THE WIRESHARK NETWORK ANALYZER 1.1. Work description When diagnosing network problems and studying the behavior of network applications, traffic analysis data is an invaluable source of...

Q:

CHAPTER 12 Privacy \"If everybody minded their own business,\" the Dutchman said in a hoarse growl, \"the world would go round a deal faster than it does.\" Lewis Carroll, Alice's Adventures in...

Q:

CHAPTER 12 Privacy \"If everybody minded their own business,\" the Dutchman said in a hoarse growl, \"the world would go round a deal faster than it does.\" Lewis Carroll, Alice's Adventures in...

Q:

What are the biggest ah-ha! moments from Oracy Development? 6 English-Language Oracy Development Learning Outcomes After reading this chapter, you should be able to ... . Describe the basics of...

Q:

After Reading the Case. Clearly answer the following questions in a single post. 1) In your opinion , How did ChassisCo contribute to the cause of crisis at Athens in 2004? How did Toyota contribute...

Q:

Task due by Sunday 6/15/18: The answers should be relating to SNORT and the SNORT rules. Please and Thank you. Q1. How can we write a rule to send an alert when source and destination are same? Use...

Q:

Exercise \#1b Rule to send alert when the source and destination addresses are the same. alert IP 192.168.1.1 any 192.168.1.1 any (msg: "Source / Destination Addresses same.";) alert any any 80 any...

Q:

Kabelo has ventured into a restaurant business. The business is located in a mall with a high traffic and is in an upmarket area. Because it is in the mall there are many other restaurants in the...

Q:

Suppose the term structure of interest rates is shown below: Term 1 year 2 years 3 years 5 years Rate (EAR%) 4.80% 4.60% 4.50% Consider an investment that pays $1,400 certain at the end of each of...

Q:

Dupont identity shows a firm's ROE is a product of asset turnover, profit margin, and leverage ratio. Thue or False

Q:

Wu Inc. operates a retail computer store. To improve its delivery services to customers, the company purchased four new trucks on April 1, 2017. The terms of acquisition for each truck were as...

Q:

DAC Manufacturing Inc. is installing a new plant at its production facility. It has incurred these costs: Cost of the manufacturing plant (cost per supplier's invoice plus taxes) ..............

Q:

For the following production functions, Write an equation and graph the isoquant for Q = 100. Find the marginal rate of technical substitution and discuss how MRTSLK changes as the firm uses more...

Q:

Speedy Printing uses photocopiers (K) and printers (L). Its production function is Q = K0.75L0.25, where Q is the number of pages per day. Suppose that the rental rate on copiers is $48 per day and...

Q:

Lili Corporation acquires new equipment at a cost of $ 100,000 plus 7% provincial sales tax and 5% GST. (GST is a recoverable tax.) The company paid $1,700 to transport the equipment to its plant....

Q:

6 Theory of Machines 5. A shaft carries five masses A, B, C, D and E which revolve at the same radius in planes which are equidistant from one another. The magnitude of the masses in planes A, C and...

Q:

Consider Fig 4.42. B would never forward traffic destined to Y via X based on BGP routing. But there are some very popular applications for which data packets go to X first and then flow to Y....

Q:

Three camps were discussed for improving the Internet so that it better supports multimedia applications. Briefly summarize the views of each camp. In which camp do you belong?

Q:

Print out the header of an e-mail message you have recently received. How many Received: header lines are there? Analyze each of the header lines in the message.

Q:

Child labor in diamond mines. The role of child laborers in Africas colonial-era diamond mines was the subject of research published in the Journal of Family History (Vol. 35, 2010). One particular...

Q:

View of rotated objects. Perception & Psychophysics (July 1998) reported on a study of how people view threedimensional objects projected onto a rotating two- dimensional image. Each in a sample of...

Q:

Evaluation of an imputation method for missing data. When analyzing large data sets with many variables, researchers often encounter the problem of missing data (e.g., non-response). Typically, an...