Incident Response - Pentesting Lab

The development of this document is funded by the Boston Area Advanced Technological Education Connections (BATEC) Grant No. NSF-0703097 thru Bunker Hill Community College. This lab is all about incident response using the tools that are available on the Windows 8 workstation to show me what you’ve got. Your task will be to analyze the malware on t...

Time
1 hour 30 minutes
Difficulty
Intermediate
3.0
Share
NEED TO TRAIN YOUR TEAM? LEARN MORE
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Sign up with Google
Sign up with Apple
Sign up with Microsoft
View all SSO options

Already have an account? Sign In »

Overview

The development of this document is funded by the Boston Area Advanced Technological Education Connections (BATEC) Grant No. NSF-0703097 thru Bunker Hill Community College.

This lab is all about incident response using the tools that are available on the Windows 8 workstation to show me what you’ve got. Your task will be to analyze the malware on the system using the tools that are available on the system (Wireshark, procexp, etc.) and following a standardized guideline (NIST.SP.800-61r2 section 3.2.4 Incident Analysis). This document is readily available on the web as well information pertaining to the usage of the tools on the infected Admin workstation. In this lab you only have access to the infected station.

Learning Partner
Infosec Learning

Infosec Learning provides businesses, colleges, governments, and K-12 school districts a feature rich information technology training and skill assessment service via an advanced, cloud based, virtual machine powered platform, capable of significant customization with unlimited scale and growth potential.

Similar Content
Certified Information Systems Security Professional (CISSP) 2021
Course
Certified Information Systems Security Professional (CISSP) 2021
4.77
CISSP is the basis of advanced information assurance knowledge for information security professionals. Often referred ...
16CEUs
Log Correlation & Analysis to Identify Potential IOC
Virtual Lab
Log Correlation & Analysis to Identify Potential IOC
4.33
When defending networked digital systems, attention must be paid to the logging mechanisms set in ...
Wireshark
Virtual Lab
Wireshark
3.9
This lab exercise is designed to allow the trainee become familiar with the use of ...