Log into the VLE. In your windows VM$,$ log into the Security Onion server. Find this alert in the Alerts pane. Drill down on it and scroll down to the message section and download the PCAP or open in Cyberchef by clicking the little chef's hat. You may also use Wireshark by downloading the PCAP to your desktop then uploading to Wireshark and exporting the result to notepad$++$

Now select all the data from the list below that applies to this $.$ps$1$ file

Select $2$ correct answer$($s$)$

Question $20$ options:

This program cannot be run in DOS

$\text{'}$U$.$P$.$L$.$O$.$A$.$D$\text{'}$ is in the meta data

New$-$ScheduledTaskAction $-$Execute 'metasploit.exe'

New$-$ScheduledTaskAction $-$Execute 'notepad.exe'

it is challenging to collect and analyze intelligence

It requires extensive visibility into your network

Intrusion detection is a linear process