I am looking for someone with strong experience in Digital Forensics and Incident Response (DFIR), specifically using Velociraptor and Splunk, to help complete a cumulative lab assignment.
IMPORTANT:
You do NOT need to complete all questions.
The assignment requires:
- Selecting a minimum of FOUR (4) questions from Part 1 (Velociraptor)
- Selecting a minimum of THREE (3) questions from Part 2 (Splunk)
You may choose the easiest or most efficient questions, but they must be completed correctly.
The lab is hands-on and requires actual execution (not just written answers).
Tasks include:
- Working with Velociraptor (client/server setup, VQL queries, hunts, artifacts)
- Writing and executing VQL queries (e.g., pslist, filtering, regex)
- Performing hunts and remote command execution
- Collecting forensic artifacts from endpoints
- Installing and configuring Splunk and Universal Forwarder
- Running SPL queries (rex, stats, timechart, etc.)
- Analyzing logs (EventCode 4104, 4688)
- Working with datasets such as BOTSv3
VERY IMPORTANT:
The assignment requires:
- Screenshots of all results (Velociraptor interface, Splunk dashboards, queries, outputs)
- Clear visibility of commands and outputs in screenshots
- Correct queries used (VQL and SPL)
- Short written explanations for each question
This is a practical lab assignment, so everything must be properly executed and documented with screenshots as proof.
Requirements:
- Experience with Velociraptor and Splunk
- Knowledge of DFIR workflows
- Ability to follow instructions carefully
- Must provide clean, accurate, and well-organized answers
Please only apply if you have done similar cybersecurity labs before.
Get this or a similar paper done in as fast as 4 hours, 24/7.
NB: We do not sell prewritten papers. All essays are written from scratch according to specific needs and instructions
Leave a Reply
You must be logged in to post a comment.