5-2 Discussion: Mindset: Incident Response Procedures, Forensics, and Forensic Analysis

 

In the lab activity for this discussion, you assumed different roles. After logging into the lab environment, you proceeded to “Launching an Attack” as a hacker. Once you completed that portion of the lab, you assumed the role of a defender and began the “Collecting Incident Response Data” portion of the lab. You then completed the lab as a defender by collecting log data and analyzing it. For this discussion, let’s add to the scenario as follows:

As part of your system audit, you realize that you have identified a successful remote login from a suspicious IP address located in North Korea. This is a suspicious address because your organization has no ties to North Korea, and no personnel are over there for vacation or business-related travel.

In your initial post, discuss what next steps you should take as a defender.

Are you struggling with your paper? Let us handle it - WE ARE EXPERTS!

Whatever paper you need - we will help you write it

Get started

Starts at $9 /page

How our paper writing service works

It's very simple!

  • Fill out the order form

    Complete the order form by providing as much information as possible, and then click the submit button.

  • Choose writer

    Select your preferred writer for the project, or let us assign the best writer for you.

  • Add funds

    Allocate funds to your wallet. You can release these funds to the writer incrementally, after each section is completed and meets your expected quality.

  • Ready

    Download the finished work. Review the paper and request free edits if needed. Optionally, rate the writer and leave a review.