SANS Internet Storm Center posted some packets for analysis. This time they are DNS packets that had a destination of a primary DNS server. They are in raw packet format. Here is the challenge.
If you are up for a bigger challenge you could try the Scan of the Month (SOTM) over at the Honeynet Project. There hasn’t been a new scan for a while but if want to sharpen your network forensic / sleuthing skills a bit give one a try. They post the top 3 submitted analyses as well as an official explanation.
–Chris
Technorati Tags: SANS, packet analysis, DNS, honeynet
Leave a Reply