• Log In
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • HomePage
  • Instructor
  • Syllabus
  • Lecture & Notes
    • Lecture 1: Introduction to Incident Response and Intrusion management
    • Lecture 2: CIRT
    • Lecture 3: Wireshark / Packet Captures
    • Lecture 4: IDS/IPS
    • Lecture 5: Detecting Intrusion
    • Lecture 6: Escalation
    • Lecture 7: LOGS / SIEM
    • Lecture 8: LOGS where to get them
    • Lecture 9: SOC : How to build a SOC for Incident Response Center
    • Lecture 10: SPLUNK
    • Lecture 11: Executive Brief
    • Lecture 12: Final
  • Assignments
    • Short Paper 1
    • Short Paper 2
    • Short Paper 3
    • Term Paper
    • Executive Brief: Presentation
  • Blog Post
    • Welcome
    • Week 2 Blog
    • Week 3 Blog
    • Week 4 Blog
    • Week 8 blog
  • LABS
    • LAB 1
    • LAB 2
    • LAB 3
    • LAB 4
    • LAB 5
    • LAB 6
  • Webex
  • Gradebook

Intrusion Detection & Response

Temple University

LAB 5

LAB 5 – Outbound traffic

https://www.sans.org/reading-room/whitepapers/detection/detecting-preventing-unauthorized-outbound-traffic-1951

http://commons.oreilly.com/wiki/index.php/Snort_Cookbook/Rules_and_Signatures

  • Disable or comment out the rules previously created:
  • Create a rule to monitor for outbound traffic
  • Connect to my dropbox link shown here: https://www.dropbox.com/sh/x8p4c32wupfuult/AADdNLF8v0aWra_8e4rVt6k1a?dl=0
  • Try to upload the logfiles to my dropbox à the rules should be configured to flag the traffic.
  • It should be configured to log and alert on this. Keep in mind that your connection to dropbox may be encrypted.
  • Submit your log files on blackboard to show you completed the assignments. Please also submit your rule that you created.  Please ensure that your logs have the following naming convention:  LastName-FirstInitial-Lab5

ALL LABS WILL BE SUBMITTED IN BLACKBOARD

Primary Sidebar

Weekly Discussions

  • Week 01
  • Week 02
  • Week 03
  • Week 04
  • Week 06
  • Week 08
  • Week 09

Copyright © 2025 · Magazine Pro Theme on Genesis Framework · WordPress · Log in