CST 640 Project 1
jrbasagic
HereisthescenarioforProject1.docxHere is the scenario for Project 1:
A recently hired website administrator maintains and manages multiple websites across the country. Their reputation is good, and they are relatively inexpensive. Mercury USA, the small company you work for, just hired them. Their contract states that they may only access the Windows system through RDP (Remote Desktop Protocol - 3389). You are their Forensic Analyst for Mercury USA. Your IT specialist provided the website administrator with an account with administrative access so they can change and update their settings. The website administrator has many sites to maintain. As a shortcut, they added a hidden folder to the website. Within that folder there is a file where they stored their credentials so they can easily access the system. No one should be able to find this hidden folder and the file with the credentials, since it is not indexed. And, just as an extra precaution, the website administrator encoded the password with Base64 encoding on the off chance that someone with a lot of time on their hands would figure out the hidden URL. An attacker who regularly scans websites with directory buster, or dirb (a built in Kali Linux tool), finds the hidden URL and then decodes the base64 password.
|
Evaluation Criteria |
Exceeds Performance Requirements 30 points |
Meets Performance Requirements 20 points |
Does Not Meet Performance Requirements 0 points |
Criterion Score |
|
Screenshots Slides 3-13 |
In slides 3-11, student includes all of the screenshots of the initial configurations that will lead to a Network Intrusion. Names, and Date and Time Stamps that are reflective of this course. |
In slides 3-11, student includes most of the screenshots of the initial configurations that will lead to a Network Intrusion. Names, and Date and Time Stamps that are reflective of this course. |
Student is missing most or all of the screenshots for slides 3-11 in this Project |
Score of Screenshots Slides 3-13, / 30 |
|
Evaluation Criteria |
Exceeds Performance Requirements 50 points |
Meets Performance Requirements 40 points |
Does Not Meet Performance Requirements 0 points |
Criterion Score |
|
Bullet Points in PowerPoint slides 3-11 |
In slides 3-11, student includes detailed and relevant explanations in their bullet points that show their understanding of the configurations and settings that will lead to to a Network Intrusion. |
In slides 3-11, student includes explanations in their bullet points that show their understanding of the configurations and settings that will lead to to a Network Intrusion. |
Student is missing most or all of the descriptions or bullet points for slides 3-11 in this Project |
Score of Bullet Points in PowerPoint slides 3-11, / 50 |
|
Evaluation Criteria |
Exceeds Performance Requirements 5 points |
Meets Performance Requirements 4 points |
Does Not Meet Performance Requirements 0 points |
Criterion Score |
|
Title Slide |
Title Slide has all relevant information and graphic |
Title Slide has all relevant information but is missing graphic |
Title Slide is not present |
Score of Title Slide, / 5 |
|
Introduction Slide |
Introduction Slide fully sets the stage for the materials covered in the slide deck |
Introduction Slide sets the stage for the materials covered in the slide deck, but lacks some detail
|
Introduction Slide is not present |
Score of Introduction Slide, / 5 |
|
Summary Slide |
Summary Slide is comprehensive |
Summary Slide is there but could be more comprehensive |
Summary Slide Slide is not present |
Score of Summary Slide, / 5 |
|
Reference Slide |
Reference Slide is there with at least 2 properly formatted APA references |
Reference Slide is there with at least 1 properly formatted APA references |
Reference Slide is not present |
Score of Reference Slide, / 5 |
Total
Score of Project 1 - A Network Intrusion,
/ 100
