July 27, 2024

TASK MISP WALKTHROUGH

Tahir May 13, 2024 0
TASK MISP WALKTHROUGH
Post Views: 113

TASK MISP WALKTHROUGH

Task 1
Read all that is in this task and press complete

Task 2
Read all that is in this task and press complete.

MISP is effectively useful for the following use cases:

  • Malware Reverse Engineering: Sharing of malware indicators to
    understand how different malware families function.
  • Security Investigations: Searching, validating and using indicators in investigating security breaches.
  •  Intelligence Analysis: Gathering information about adversary groups and their capabilities.
  •  Law Enforcement: Using indicators to support forensic investigations.
  •  Risk Analysis: Researching new threats, their likelihood and occurrences.
  •  Fraud Analysis: Sharing of financial indicators to detect financial fraud.

    Task 3

    Start the machine attached to this task. One started, Use the credentials
    provided to log in to the Analyst Account

    3.1 How many distribution options does MISP provide to share threat
    information?
    Answer: 4

    # check down the screen shot in the below:

    3.2 Which user has the role to publish events?
    Answer: organization admin

  • Task 4

    Read all that is in this task and press complete.

    Task 5

    5.1 What event ID has been assigned to the PupyRAT event?
    Answer: 1145

    # Go to home and click on List events. In the filter search box type in PupyRat
    # check down the screen shot in the below:

    5.2 The event is associated with the adversary gaining ______ into
    organisations.
    Answer: Remote Access

    # Look at the tags the find the answer.
    # check down the screen shot in the below:

    5.3 What IP address has been mapped as the PupyRAT C2 Server
    Answer: 89.107.62.39

    # Scroll down in the event and look for ip-dst.
    # check down the screen shot in the below:

    5.4 From the Intrusion Set Galaxy, what attack group is known to use this form
    of attack?
    Answer: Magic Hound

    # check down the screen shot in the below:

    5.5 There is a taxonomy tag set with a Certainty level of 50. Which one is it?
    Answer: OSINT

    # check down the screen shot in the below:

    Please check the next page for screen short:


    Task 6

    Read all that is in this task and press complete

    Read more article here

    Proving Grounds BTRSys2.1- Walkthrough

    Money Box Proving Grounds : Walkthrough

About Author

Tahir

See author's posts

Tags: , , , , ,

More Stories

Lame HTB Machine Walkthrough

Lame HTB Machine Walkthrough | Penetration Testing | Ethical Hacking

Tahir July 3, 2024 0
Proving Grounds BTRSys2.1

Proving Grounds BTRSys2.1- Walkthrough

Tahir April 30, 2024 0

Money Box Proving Grounds : Walkthrough

Tahir April 30, 2024 0

Leave a Reply

Your email address will not be published. Required fields are marked *

You may have missed

CrowdStrike Offers $10 Uber Eats Gift Vouchers

CrowdStrike Offers $10 Uber Eats Gift Vouchers as an Apology for the Microsoft Windows Global Outage

Tahir July 25, 2024 0
Telegram App Vulnerability

Telegram App Vulnerability Abused to Spread Malware Encrypted in Videos

Tahir July 25, 2024 0
A Security Firm has Discovered that a Remote Employee is a North Korean Hacker

A Security Firm has Discovered that a Remote Employee is a North Korean Hacker

Tahir July 25, 2024 0

An Elderly from Bengaluru Duped of ₹1.2 crore After Receiving a Fake Call from a Fake Telecom Department Officer

Tahir July 24, 2024 0

WazirX, the Famous Crypto Exchange, Offering ₹180 Crores Hefty Bounty After the Major Cyberattack On Its Servers

Tahir July 23, 2024 0
en_USEnglish
en_USEnglish
Open chat
Hello
Can we help you?