T1595
T1595 is a blue team lab that falls under the Network Forensics category and will cover the following subjects: Wireshark, VirusTotal, Reconnaissance.
Learning Objectives
Analyze the PCAP file to identify malicious activity, using tools like Wireshark to detect threats, IP origins, and attacker techniques.
Categories: Network Forensics.
MITRE ATT&CK Tactics: Reconnaissance.
Tools: Wireshark, VirusTotal.
Difficulty: easy.
This website uses cookies to ensure you get the best experience on our
website.
Learn more