The readings this week discusses broad context of risk and investigative forensics. Part of risk management is to understand when things go wrong, we need to be able to investigate and report our findings to management. Using this research, or other research you have uncovered discuss in detail how risk and investigate techniques could work to help the organization. ERM helps to protect an organization before an attack, where as forensics investigate technique will help us after an attack – so lets discus both this week. 

Culminating Assignment

Concept Paper:   Red Team Assessment Strategies in Cybersecurity

Directions:

1.  Read the scenario, access the resources, and review the rubric below to help you understand the assignment.  The final paper will be due in Week 7.  You should begin working on the assignment right away, and you will share your progress in Week 6.  

2.  Write a paper that follows the listed parameters, addresses the important concepts, and includes the required sections:

Parameters:  

• Ranges from 4 – 5 double-spaced pages and use IEEE formatting style. 
• Uses Times New Roman font (size 12), with one-inch margins on all sides.
• Includes at least three (3) quality resources to support your ideas.  You may use the resources provided and/or others of your choosing.  They must be cited appropriately.

Important Concepts:

• Compare and contrast red teaming versus penetration testing based on the presented case.
• Describe the approach to red team assessment.
• Discuss how different types of organizations are utilizing red teaming.

Required Sections:

• Title 
• Introduction:  Clear description of the topic, including a summary of what is already known about that topic.
• Body:  
  • Address important concepts.  
  • What evidence do you have to support your topic?  
• Conclusion:  Why is it important to study this topic? Why is this worth investigating further?
• Reference Page:  IEEE style

3.  Your paper should enable a casual reader to understand this topic and its importance.  Please make sure the following outcomes are addressed within your paper:

• Explain the common tools and tactics used in red teaming.
• Use technology and information resources to research the evolution of red team assessment techniques.

Due:  In week 7 with the specific date posted in Blackboard.  You will be directed to complete and share parts of this assignment in Week 6.  

Scenario:  A large multinational fintech wanted to conduct a Red Team Assessment to evaluate its ability to detect and respond to a real-world cybersecurity attack.

The read team started their assessment by sending a phishing email that persuaded the victim to log in to a fake portal hosted on a server to obtain valid credentials. While a small number of users clicked on the malicious link sent in the email, none of them submitted their credentials. This could be attributed to the regular social engineering tests and security awareness training delivered to staff.

After the failed phishing campaign, the team went back to the drawing board to come up with a new plan of attack.  Reviewing the company’s Twitter account, the team discovered that they host a monthly community event at one of their buildings. The team registered for the event to deploy a purpose-built device into their internal network. The device will allow the team to gain remote access to the network using either an independent wireless connection or a 3G/4G mobile connection.

Two members of the red team attended the event. They managed to slip away from the main event to see if there were any unlocked offices or conference rooms. Once a room had been found. One team member acted as a lookout while the other plugged the device and checked that he could reach it from his mobile phone. Shortly afterward the testers left the event and joined the rest of the team in a coffee shop down the road.  Once connected to the network, the team started mapping the internal network and gathering additional information. Over the next couple of days, the team captured several password hashes, which were achieved by exploiting a weakness in Windows’ broadcast protocols. However, users appeared to be using strong complex passwords and it was not possible to crack the hashes to recover clear-text passwords. The team then decided to relay a captured hash belonging to a user and use it to log in into a workstation where they had local administrative privileges. This allowed them to extract the clear-text password of the currently logged-in users from memory.

Resources to help you complete this assignment:

• Red Team Exercise. (2019, September 25). Retrieved July 11, 2021, from Sisainfosec.com website: https://www.sisainfosec.com/services/red-team-exercise/ 
• (N.d.). Retrieved July 11, 2021, from Varonis.com website: https://www.varonis.com/blog/red-teaming/ 
• Wood, B. J., & Duggan, R. A. (2002). Red Teaming of advanced information assurance concepts. Proceedings DARPA Information Survivability Conference and Exposition. DISCEX’00. IEEE Comput. Soc.

Rubric:

Points: 

Assignment: Red Team Assessment Strategies in Cybersecurity

Criteria

Needs Improvement

Below 60-70 F

Fair

70-79 C

Proficient

80-89 B

Exemplary

90-100 A

1. Compare and contrast red teaming versus penetration testing based on the presented case. Met outcomes.

Weight: 25%

Did not submit or incompletely compared and contrasted red teaming versus penetration testing based on the presented case.  Did not meet outcomes.

Partially compared and contrasted red teaming versus penetration testing based on the presented case.  Partially met outcomes.

Satisfactorily compared and contrasted red teaming versus penetration testing based on the presented case.  Met outcomes.

Thoroughly compared and contrasted red teaming versus penetration testing based on the presented case. Exceeded outcomes.

2. Describe the approach to red team assessment.

Weight: 30%

Did not submit or incompletely described the approach to red team assessment.

Partially described the approach to red team assessment.

Satisfactorily described the approach to red team assessment.

Thoroughly described the approach to red team assessment.

3. Discuss how different types of organizations are utilizing red teaming.

Weight: 30%

Did not submit or incompletely discussed how different types of organizations are utilizing red teaming.

Partially discussed how different types of organizations are utilizing red teaming.

Satisfactorily discussed how different types of organizations are utilizing red teaming.

Thoroughly discussed how different types of organizations are utilizing red teaming.

5. 3 References

Weight: 5%

No references were provided.

Does not meet the required number of references; some or all references poor quality choices.

Meets the number of required references; all references high-quality choices.

Exceeds the number of required references; all references high-quality choices.

6. Clarity, writing mechanics,  formatting.

Weight: 10%

More than 6 errors present

5-6 errors present

3-4 errors present

0-2 errors present

 Need to write about 350-word summary of EACH CHAPTER, so that it contains:

(part 1) important concepts of the chapter

(part 2) experience/application/opinions of the chapter.  

Total 4 chapters, 350 word for each

Hypertext Transport Protocol Secure (HTTPS) is becoming increasingly popular as a security protocol for web traffic. Some sites automatically use HTTPS for all transactions (like Google), while others require that users must configure it in their settings. Some argue that HTTPS should be used on all web traffic. What are the advantages of HTTPS? What are its disadvantages? How is it different from HTTP? How must the server be set up for HTTPS transactions? How would it protect you using a public Wi-Fi connection at a local coffee shop? Should all web traffic be required to use HTTPS? Why or why not?

Write at least a one-page paper of your research on HTTPS, 

1. Write up the problem-solving outline of what you want to present through video.

The talk needs to be equal to 5-7minutes maximum. 

2. The problem solving can be any of these topics: (CHOOSE 1 ONLY) 

-Train someone how to properly use an iPhone

-Train someone on how to use Apple Magic Mouse

-or you decide which problem-solving to write about but you MUST let me know by tomorrow which topic it is so I can approve it.

#PowerPoint_1G_Kilauea

#PowerPoint 1G Kilauea

Project Description:

In the following project, you will edit an existing presentation that describes a Kilauea Volcano tour.

#Replace   all occurrences of the text Diamond Head with Kilauea and then change the layout of Slide 1 to Title Slide.

#Apply the Retrospect theme,   using the gray variant–the third variant color in the Variants group.

Change the Slide Size to   Widescreen (16:9).

#Display Slide 3, open the Reuse   Slides pane, and then from your downloaded files browse for and display the   presentation p01G_Volcano.pptx. If   necessary, clear the Keep source formatting check box, and then insert the   last slide.
 

  Note, Mac users, after inserting the slides, delete the redundant Kilauea Volcano Tour slide.

#Display Slide 5. In either the   slide pane or in the slide outline,  increase the list level of the second   bullet point. Click at the end  of the second bullet point, and then add the following   two additional  bullet points at the same list level:
 

Wear   sturdy, covered shoes
 

Expect   uneven terrain

#With Slide 5 still displayed,   select the text in the content  placeholder, and change the line spacing to   2.0. In the Notes pane,  type the following notes: Follow all tour precautions and   guidelines.   (include the period) 

#Display Slide 2. Select the   paragraph of text, and then change the  Font Color to Black, Text 1-in the   second column, first row. Change  the Font Size to 20.

#In the same paragraph, change   the Line Spacing to 1.5, and then center the paragraph and the slide title.

#With Slide 2 still displayed, in   the content placeholder on the right, from your downloaded files, insert the   picture p01G_Lava.jpg. Format the   picture with the Metal Frame picture style and the Marker artistic effect.

#Delete Slide 3, and then move Slide   4 so that it is positioned before Slide 3.
 

Display Slide 4, and then apply   the Soft Edge Rectangle picture style.

#With Slide 4 displayed, insert a   New Slide with the Section Header layout. Type Visit Majestic Kilauea in the title placeholder. Type On Your Next   Trip to the Big Island   in the text placeholder.

#Apply the Uncover transition and   change the Effect Options to From  Top. Change the Timing by increasing the   Duration to 01.25. Apply the  transition effect to all of the slides.

#Insert a Header & Footer on   the Notes and Handouts. Include  the Date and time updated automatically, the   Page number, a Footer  with the text 1G_Kilauea and then apply to all the   slides.

Computer and Number Systems

1. You have been hired to develop a website-based sales system for a large international retail firm. List and describe at least fourfeatures that are specific to the Web design of your system and customer service important to consider if your system is to be successful at attracting and keeping customers living outside of the US. Include not only characteristics of the user interface, but those issues that must be uniquely addressed to successfully service your non-US customers.

The first characteristic concerns the need to understand the critical concept of colors and the potential significance. Red for example in a US environment may signify an error or warning whereas other cultures may use green or black for the same purpose.

Secondly, any symbols or flags should be treated with caution due to certain connotations causing problems in certain cultures – the thumbs up in Iran for example would be highly offensive.

Thirdly payment options should also take into account cultural considerations, with some countries preferring electronic payments while others are using money orders – there should be appropriate payment options for each country that is being served by the website.

It would also be advisable to create different versions of content for each specific culture/region that will be using the site – in this way relevant analogies and formatting of content can be adjusted accordingly.

2. In order to receive credit for these problems, you must show all of the steps you took to arrive at your answers.

(c) Convert the following decimal number to binary:

(d) Convert the following binary number to decimal:

(c)Convert the following hexadecimal number to decimal:

(d) Convert the following binary number to hexadecimal:

3. ASCII, Unicode, and EBCDIC are, of course, not the only numeric / character codes. The Sophomites from the planet Collegium use the rather strange code shown in the Figure below. There are only thirteen characters in the Sophomite alphabet, and each character uses a 5-bit code. In addition, there are four numeric digits, since the Sophomites use base 4 for their arithmetic. Given the following Sophomitesequence, what is the corresponding binary message being sent by the Sophomites?

4. Define memory cache write-through and write-back techniques and describe the advantages and disadvantages of each.

Input / Output

5. Answer the follow questions about interrupts.

a. Describe in detail the steps that occur when a system receives an interrupt.

b. Describe how these steps differ in the case when a system receives multiple interrupts

6. Answer the following questions about clusters.

a.Describe how you might use a cluster to provide fault-tolerant computing

b.Describe how you might use a cluster architecture to provide rapid scalability for a Web-based company experiencing rapid growth.

7. Answer the following questions about communication protocols.

a.Using the operations of UDP (User Datagram Protocol) and TCP (Transmission Control Protocol) as a basis, carefully explain the difference between connectionless and connection-oriented communication.

b. If you were ordering a number of items from an online seller, such as amazon.com, which Protocol (TCP or UDP) would you recommend and explain why.

8. In the context of network security, 

a.explain the purpose of non-repudiation. 

b.How does non-repudiation differ from authentication?

c.(4 pt) Create a business scenario that illustrates the importance of each.

9.Circleor highlight the correct answer to the following questions / statements about data communications:

(a)What characteristic of an analog signal is measured in Hertz, or cycles per second?

a. Amplitude c. Phase

b. Frequency d. Skew

(b)What measurement unit describes the speed and capacity of a communication channel?

a. Throughput c. Response Time

b. Access Time d. Data Transfer Rate

(c)____ can be produced by a variety of sources, including electric motors, radio equipment, and nearby power transmission or communication lines.

a. EMI c. Distortion

b. Attenuation d. Signal/noise (S/N) ratio

(d)A(n) ____ can extend the range of an electrical signal by boosting signal power to overcome attenuation.

a. repeater c. amplifier

b. return wire d. signal wire

(e)Which of the following does not allow multiple messages to be carried on a single channel?

a. time division multiplexing c. packet switching

b. frequency division multiplexing d. half-duplex

10. Answer the following questions about user interfaces:

(a) List and explain at least two of the definite advantages to the use of a command line interface (CLI) over other types of interfaces. 

File Management

11. Answer the following:

a.Use the following four processes that have arrived in the ready queue in the sequence shown below and answer the following about process scheduling:

• Process      1 has a total run time of 25 seconds and a priority of 2, but it will      require 15 seconds of I/O after 10 seconds of execution
• Process      2 has a total run time of 30 seconds, a priority of 1, but it will require      10 seconds of I/O after 20 seconds of execution
• Process      3 has a total run time of 15 seconds and a priority of 3
• Process      4 has a total run time of 20 seconds, a priority of 2, but it will require      15 seconds of I/O after 5 seconds of execution

(ii)If the round robinscheduling algorithm is used, which process will finish first? At what time will it complete?

(i)Both shortest job first and non-preemptive priority queue scheduling algorithms will complete all four 

 Many believe that complete security is infeasible. Therefore, we are left with incomplete security. Generally, the greater the security, the greater the cost. Discuss how one should weigh the benefits and associated costs of security. (250 words add references)

I have a format template i will send you, and we need to fix exact accordingly, and i will send the full document which i have, so your part is fill out all the heading and add the data one by one,

no plagiarism and it should be in APA format 7th edition, i believe you are aware of it.

we have 4hours to submit.

Can you make it?