It is Monday morning, July 6, 2015 and you have just returned from the long holiday weekend. On your desk sits a note that reads…
A vulnerability has been discovered that may affect SCADA based networks. We need to determine if any of our systems are potentially vulnerable or worse have already been compromised. As you know, we cannot actively scan our SCADA network, so we need to passively map network activity and behaviors over the next week and then analyze the results. We need a way to determine/verify every end point on our network, what systems they communicate with, what countries those connections have made to and from.
I Need prelim report by noon tomorrow.
P.S. we have no budget for new toys.