Skip to content

Commit 1c37493

Browse files
sarcbsarcb
committed
Add Unit 1 lab files
1 parent eef1770 commit 1c37493

File tree

4 files changed

+99
-0
lines changed

4 files changed

+99
-0
lines changed

Files/lab-1/DHCP.txt

+25
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,25 @@
1+
ID,Date,Time,Description,IP Address,Host Name,MAC Address
2+
3+
00,04/19/23,08:43:40,Started,,,
4+
55,04/19/23,08:43:49,Authorization(servicing),,,
5+
51,04/19/23,08:43:56,Authorization(succeeded),,,
6+
25,04/19/23,08:44:00,0 leases expired and 0 leases deleted,,,
7+
25,04/19/23,08:44:02,0 leases expired and 0 leases deleted,,,
8+
10,04/19/23,08:44:06,Assign,10.10.1.5,USER1,C9:E1:DE:B0:17:3B
9+
02,04/19/23,09:15:20,Log Paused,,,
10+
25,04/19/23,12:11:13,0 leases expired and 0 leases deleted,,,
11+
30,04/19/23,12:11:20,DNS Update Request,10.10.1.5,USER1,C9:E1:DE:B0:17:3B
12+
12,04/19/23,12:11:25,Release,10.10.1.5,USER1,C9:E1:DE:B0:17:3B
13+
10,04/19/23,12:11:27,Assign,10.10.1.4,USER2,3B:3F:E2:95:2F:89
14+
32,04/19/23,12:11:29,DNS Update Successful,10.10.1.4,USER2,3B:3F:E2:95:2F:89
15+
25,04/19/23,12:11:30,0 leases expired and 0 leases deleted,,,
16+
30,04/19/23,12:56:14,DNS Update Request,10.10.1.4,USER2,3B:3F:E2:95:2F:89
17+
12,04/19/23,12:56:16,Release,10.10.1.4,USER2,3B:3F:E2:95:2F:89
18+
10,04/19/23,12:56:21,Assign,10.10.1.4,USER2,19:0B:FF:C8:9E:D6
19+
32,04/19/23,12:56:22,DNS Update Successful,10.10.1.4,USER2,19:0B:FF:C8:9E:D6
20+
25,04/19/23,12:11:18,2 leases expired and 0 leases deleted,,,
21+
11,04/19/23,13:11:20,Renewed,10.10.1.5,USER2,C9:E1:DE:B0:17:3B
22+
24,04/19/23,13:11:24,Database Cleanup Begin,,,
23+
25,04/19/23,13:11:33,0 leases expired and 1 leases deleted,,,
24+
25,04/19/23,13:11:34,0 leases expired and 0 leases deleted,,,
25+
01,04/19/23,20:02:17,Stopped,,,

Files/lab-1/SMTP.pcap

27.2 KB
Binary file not shown.

Files/lab-1/Security_log.rtf

+62
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,62 @@
1+
{\rtf1\ansi\ansicpg1252\cocoartf2706
2+
\cocoatextscaling0\cocoaplatform0{\fonttbl\f0\fnil\fcharset0 Menlo-Regular;}
3+
{\colortbl;\red255\green255\blue255;\red255\green255\blue255;\red0\green0\blue0;}
4+
{\*\expandedcolortbl;;\cssrgb\c100000\c100000\c100000;\cssrgb\c0\c0\c0;}
5+
\margl1440\margr1440\vieww13000\viewh12980\viewkind0
6+
\deftab720
7+
\pard\pardeftab720\partightenfactor0
8+
9+
\f0\fs26 \cf0 \cb2 \expnd0\expndtw0\kerning0
10+
\outl0\strokewidth0 \strokec3 Source: Microsoft-Windows-Security-Auditing\
11+
\
12+
Date: 2023-4-19 08:44:06\
13+
Event ID: 4624\
14+
Task Category: Logon\
15+
User: Jane Doe\
16+
Computer: USER1\
17+
Subject:\cb1 \strokec3 \
18+
\cb2 \strokec3 \'a0\'a0\'a0Security ID:\'a0 SYSTEM\cb1 \strokec3 \
19+
\cb2 \strokec3 \'a0\'a0 Account Name:\'a0 \cb2 \outl0\strokewidth0 WIN-R9H529RIO4Y$\cb1 \outl0\strokewidth0 \strokec3 \
20+
\cb2 \strokec3 \'a0 \'a0Account Domain:\'a0 \cb2 \outl0\strokewidth0 BORINGOFFICE\cb1 \outl0\strokewidth0 \strokec3 \
21+
\cb2 \strokec3 \'a0 \'a0Logon ID:\'a0 0x3e7\
22+
Logon Type: 10\
23+
\
24+
\pard\pardeftab720\partightenfactor0
25+
\cf0 \cb2 \outl0\strokewidth0 Date: 2023-4-19 09:15:20\
26+
Event ID: 4634\
27+
Task Category: Logoff\
28+
User: Jane Doe\
29+
Computer: USER1\cb2 \outl0\strokewidth0 \strokec3 \
30+
\pard\pardeftab720\partightenfactor0
31+
\cf0 \cb2 \outl0\strokewidth0 Subject:\cb1 \
32+
\cb2 \'a0\'a0\'a0Security ID:\'a0 SYSTEM\cb1 \
33+
\cb2 \'a0\'a0 Account Name:\'a0 WIN-R9H529RIO4Y$\cb1 \
34+
\cb2 \'a0 \'a0Account Domain:\'a0 BORINGOFFICE\cb1 \
35+
\cb2 \'a0 \'a0Logon ID:\'a0 0x3e7\cb2 \outl0\strokewidth0 \strokec3 \
36+
\pard\pardeftab720\partightenfactor0
37+
\cf0 Logon Type: 10\
38+
\
39+
\pard\pardeftab720\partightenfactor0
40+
\cf0 \cb2 \outl0\strokewidth0 Date: 2023-4-19 12:11:13\
41+
Event ID: 4624\
42+
Task Category: Logon\
43+
User: John Doe\
44+
Computer: USER2\
45+
Subject:\cb1 \
46+
\cb2 \'a0\'a0\'a0Security ID:\'a0 SYSTEM\cb1 \
47+
\cb2 \'a0\'a0 Account Name:\'a0 WIN-S3L910SE45K!\cb1 \
48+
\cb2 \'a0 \'a0Account Domain:\'a0 BORINGOFFICE\cb1 \
49+
\cb2 \'a0 \'a0Logon ID:\'a0 0x3d6\
50+
Logon Type: 3\
51+
\
52+
Date: 2023-4-19 12:56:14\
53+
Event ID: 4634\
54+
Task Category: Logoff\
55+
User: John Doe\
56+
Computer: USER2\
57+
Subject:\cb1 \
58+
\cb2 \'a0\'a0\'a0Security ID:\'a0 SYSTEM\cb1 \
59+
\cb2 \'a0\'a0 Account Name:\'a0 WIN-S3L910SE45K!\cb1 \
60+
\cb2 \'a0 \'a0Account Domain:\'a0 BORINGOFFICE\cb1 \
61+
\cb2 \'a0 \'a0Logon ID:\'a0 0x3d6\
62+
Logon Type: 3}

Scripts/unit1_lab.sh

+12
Original file line numberDiff line numberDiff line change
@@ -30,4 +30,16 @@ if command -v wireshark >/dev/null 2>&1 ; then
3030
else
3131
echo -e "${red}[UNIT 1 LAB]${none} ERROR: Wireshark was not installed correctly!"
3232
exit 1
33+
fi
34+
35+
# Move everything in ../Files/lab-1 to ~ and rename it to lab_1
36+
if [ -e ~/lab_1 ]; then
37+
echo -e "${green}[UNIT 1 LAB]${none} lab_1 already exists."
38+
else
39+
if [ -e ~/Files/lab-1 ]; then
40+
sudo mv ~/Files/lab-1 ~/lab_1 && echo -e "${green}[UNIT 1 PROJECT]${none} Moved lab 1 files to ~/lab_1"
41+
else
42+
echo -e "${red}[UNIT 1 LAB]${none} Error: Directory ~/Files/lab-1 does not exist."
43+
exit 1
44+
fi
3345
fi

0 commit comments

Comments
 (0)