Full video of my thought process/research for this walkthrough below. I started the recording during the final task even though the earlier tasks had some challenging scenarios. However, most of the room was read and click done. All questions and answers beneath the video. Format: Question Answer Task 4: Cutting out the Noise How many event…

Filter Wireshark for the FTP packets. Now if you already know the format of the file you are looking for great, if not, find the packet that says “Transfer OK” or “Transfer Complete”. Work backwards from that packet and find the name of the file and format. Google the format’s…

Full video of my thought process/research for this walkthrough below. All tasks/questions and answers beneath the video. Format: Question Answer Tasks 1–6 No answers needed Task 7 When did the scan start in Case 001? Feb 28, 00:04:46 When did the scan end in Case 001? Feb 28, 00:21:02 How many ports are open…

Full video of my thought process/research for this walkthrough below. All questions and answers beneath the video. Format: Question Answer Task 2: Event Viewer For the questions below, use Event Viewer to analyze Microsoft-Windows-PowerShell/Operational log. no answer needed What is the Event ID for the first event? 40961 Filter on Event ID 4104. What…