Log Parsing
Using some Linux shell utilities. Using the Linux cut command, get the client IP, DNS server IP, the requested DNS name, and the response (answer) IP from the log file containg DNS information. Output these columns to a new text file using the redirect operator. Place the command in your answer file and include this text file in your submission. Building on the command from the last question, find the entries that are only for DNS queries related to the Providence Journal (keywords ‘providence’ and ‘journal’). Put the command in your answer file and output these entries to a text file and include it. Using the same command as above, find the IP of the cs.uri.edu webserver from the logs? Find all instances of this IP address in all the log files. Provide command and screenshot of output.
For the second part i need help with creating the bro cut commands for the following
Generate bro-cut commands for each of the following:
- Get the client (origin) IP, DNS (response) server IP, the requested DNS name, and the response IP. Only grab the first 10.
- List the timestamp, certificate subject, not-valid-before, and not-valid-after dates of the SSL certificates found by bro. Only list the first 10. (Hint: ensure that you have the appropriate file and that it is not empty.)
- List the timestamp, destination (response) host, destination (response) port, protocol, and service of the connections made in conn.log. Only list the first 10 connections.
"You need a similar assignment done from scratch? Our qualified writers will help you with a guaranteed AI-free & plagiarism-free A+ quality paper, Confidentiality, Timely delivery & Livechat/phone Support.
Discount Code: CIPD30
Click ORDER NOW..
