Instructions:
- Uncompress the challenge (pass: cyberdefenders.org)
- Load suricatarunner.exe and suricataupdater.exe in BrimSecurity.
- Uncompress suricata.zip and move suircata.rules to ".\var\lib\suricata\rules" inside suricatarunner directory.
As a soc analyst working for a security service provider, you have been tasked with analyzing a packet capture for a customer's employee whose network activity has been monitored for a while -possible insider.
Tools:
