Section 1: (40 points possible)

o Step 1: What open ports did you find in your Nmap scan? What services appear to be running? Provide a screenshot or paste the output below. (10 points)

o Step 3: What did the captured network traffic tell you about the conversation between your Kali and Metasploitable VMs? Provide a screenshot of your findings. (10 points)

o Step 3: What part of this network traffic do you think could be made into a valid Snort signature? (10 points)

Section 2: (60 points possible)

o Find 4 flags in your Metasploitable VM and report your findings, including the following for each flag: (15 points per flag)

? Flag name and message value

? Explain how you found the flag, including what commands/tools you used

? A screenshot displaying the flag and a timestamp (include your host desktop clock with date in the screenshot)

BONUS: (10 bonus points possible) o Find 4 additional flags, reporting the same information as above. (2 bonus points per flag)

o Report the secret message, assembled in the correct order. (2 bonus points)