Cloud Incident Response & Forensics: Introductory Lab

Developed with
QA

Lab Steps

lock
Understanding the Cloud Forensics Scenario
lock
Logging into the Microsoft Azure Portal
lock
Connecting to the Attack Victim Machine Using RDP
lock
Part 1: Information Gathering
lock
Part 2: Log analysis

Ready for the real environment experience?

DifficultyBeginner
Time Limit1h 5m
Students26
Ratings
5/5
star star star star star

Description

This lab is the first in a series of three labs where you will be performing forensic analysis in a cloud environment that has fallen victim to an attack. Each lab in the series is in increasing level of difficulty:

  1. Cloud Incident Response & Forensics: Introductory Lab
  2. Cloud Incident Response & Forensics: Foundation Lab
  3. Cloud Incident Response & Forensics: Intermediate Lab

In this, the first lab, you will be performing analysis on how the attacker gained access to the system. Specifically, the lab will have you use and improve their research skills to perform some preliminary investigations. The lab will also have you perform log analysis which will introduce you to this forensic technique and how it is performed within a container.

Learning Objectives

Upon completion of this lab you will be able to:

  • Perform information gathering to gain background to the incident and methods of attack
  • Using the information gathered, be able to investigate compromised containers to figure out how the attacker gained access

Intended Audience

This lab is intended for:

  • Frontend and full-stack engineers
  • Developers who need to use Angular in real-world projects
  • Individuals who want to improve their Angular skills

Prerequisites

You should be familiar with:

  • Working at the command line in Linux
  • Docker container technology and Docker commands

About the Author

Tiarnan is a CyberFirst bursary student, working with QA as a cyber security researcher, who joined QA after successfully completing a summer placement. He is  currently studying for his computer science degree at Nottingham University.