NMS server compromised — SNMP write activity tampered config on three core routers
A medium Cyber × Network Fusion scenario on NMS SNMP Tamper.
Start a graded attempt against this scenario. Your response is scored by the same deterministic rubric used across the catalog. Email and evidence content stay hidden until you start.
Launches this exact scenario. One of 3 templates in this Track + Difficulty pool.
catalog id · fusion-nms-snmp-tamper
What this scenario practices, mapped to recognized frameworks.
Educational mapping only. Not a compliance attestation.
- Management-plane integrity triage
- Management-credential rotation discipline
- Data Manipulation · ImpactT1565 · TA0040MappedHigh confidence
Trains defensive triage when management-plane data integrity is suspect.
- User Account ContainmentD3-UACMappedHigh confidence
Trains containment of management-plane identities.
- Network Traffic AnalysisD3-NTAMappedMedium confidence
Trains the visibility posture across the management plane.
- Access Control · ProtectPR.AC · PRMappedHigh confidence
Trains the access-control baseline for management interfaces.
- Analysis · RespondRS.AN · RSMappedHigh confidence
Trains the structured-analysis baseline.
- IR lifecycle phaseDetection & AnalysisMappedHigh confidence
Trains triage of management-plane integrity events.
- IR lifecycle phaseContainment, Eradication & RecoveryMappedHigh confidence
Trains management-credential rotation workflow.
- Changing Default Passwords2.AMappedHigh confidence
Trains the default-password baseline for management-plane gear.
- Unique Credentials2.CMappedHigh confidence
Trains the unique-credentials baseline.
- Network Infrastructure ManagementControl 12MappedHigh confidence
Trains the network-management control the scenario centers on.
- Audit Log ManagementControl 8MappedMedium confidence
Trains the management-log review the response depends on.