Problem
Network forensics is much different to standalone computer forensics.
a) Research a network attack described in your textbook (DDoS, Man-in-the-Middle, IP Spoofing, etc.) and explain it in further detail.
b) Discuss ways that forensic examiners have been able to identify and analyze these attacks.
c) Find an attack outside your textbook, where an examiner was able to successfully identify the attacker, and explain techniques used to do so.
d) Be sure to list your sources.