Open in app

Sign in

Write

Sign in

IR Philosophy and Ethics | TryHackMe

Nihir Zala
2 min readMay 21, 2024

Overview: The TryHackMe “IR Philosophy and Ethics” room delves into the ethical side of Incident Response (IR). It presents real-world scenarios that test your decision-making in situations where ethics clash with technical needs. You’ll learn to prioritize actions, consider user privacy, and navigate complex choices that arise during a cyberattack. While not a technical deep dive, this room is a valuable training ground for security professionals to develop strong ethical judgment for effective IR.

Answers for this room:

Task 1:

1.DFIR Philosophy, Ethics and Dilemmas! Here we go!

Ans: No Answer needed

Task 2:

2.During containment, what must be done to compromised systems to prevent more damage?

Ans: isolate and quarantine

3.An adversary’s entry point to an organisation can be identified as?

Ans: ground zero

4.What key action must be taken during recovery?

Ans: patch vulnerabilities

Task 3:

5.As a DFIR analyst, one must avoid any bias. What principle would you be embodying?

Ans: Objectivity

6.Creating a map of the data handling journey during evidence preservation is establishing a what?

Ans: Chain of Custody

7.What does providing regular updates to stakeholders ensure?

Ans: Transparency

Task 4:

8.Which duty involves building and maintaining trust with stakeholders during a cyber breach investigation?

Ans: Trustworthiness

9.To ensure transparency, DFIR teams have a duty to?

Ans: Inform

10.Based on the duty to inform case study, what should be considered when deciding whether to investigate a breach? (Answer1 vs Answer2)

Ans: risk vs embarrassment

11.Based on the duty to responsible collection case section, what should be set in advance to prevent excessive data collection?

Ans: clear policies and procedures

12.Under which duty would teams ensure to operate within the bounds of the law and organisational policies?

Ans: Authorisation

Task 5:

13.What is the flag?

Ans: THM{Face_Your_DFIR_Ethical_Dilemmas}

Task 6:

14.Continue on to IR Difficulties and Challenges!

Ans: No Answer needed

You can follow me on social media:

Twitter, Linkedin, Instagram & Github.

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Tryhackme
Tryhackme Walkthrough
Tryhackme Rootme
Ctf
Ctf Writeup

Nihir Zala
Nihir Zala

Written by Nihir Zala

38 Followers
1 Following

Hi there, I'm Nihir Zala—a Laravel developer from Gujrat, India, with over 2.5 years of professional experience. I also learning Penetesting from THM and HTB.

No responses yet

Write a response

What are your thoughts?

More from Nihir Zala

See all from Nihir Zala

Recommended from Medium

Lists

Staff picks

827 stories1649 saves

Stories to Help You Level-Up at Work

19 stories948 saves

Self-Improvement 101

20 stories3355 saves

Productivity 101

20 stories2821 saves
See more recommendations

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams