Overview

The CybrScore Denial of Service PCAP Analysis lab is premium lab aimed to prepare the student to take on a Denial of Service (DoS) attack. The CybrScore Denial of Service PCAP Analysis lab teaches students how to launch a Denial of Service attack and audit an organization’s existing internal firewall rules. The student will also detect and observe DoS traffic and design firewall rules to stop DoS Activity.

Upon successful completion of the CybrScore Denial of Service PCAP Analysis lab, the student will be able to simulate a DoS attack on a system server. The student will be able to conduct an audit of an organization’s internal firewall rules and confirm the activity, design a defense against it, and set the defense into motion. The CybrScore Denial of Service PCAP Analysis lab takes approximately 1 to 2 hours to complete for most students.

In the CybrScore Denial of Service PCAP Analysis lab, students will put on a black hat and learn how to conduct a DoS attack. The student will be using the torshammer python script in order to launch the attack, as part of many others, against the system's website.

In the CybrScore Denial of Service PCAP Analysis lab, students will learn how to set up a sniffer to help detect and log the telltale traffic coming from the website attacker. The student will utilize Wireshark to look at the full traffic observed by the pfSense firewall while denial of service was being captured.

In the CybrScore Denial of Service PCAP Analysis lab, students will learn how to set up a firewall in order to defend against this particular denial of service activity. The student will enter the firewall rules to stop a DoS attack on a system website. The student will also create HTTP Block Rules, WAN Rules, and ICMP Block Rules.

Completion of the CybrScore Denial of Service PCAP Analysis lab means that the student has demonstrated the ability to conduct an audit of an organization’s internal firewall rules and confirm the activity, design a defense against it and set the defense into motion to protect a systems website from attack.

Click the launch button to start the lab.