Skip to content

Feature/lab6 #645

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
krasand wants to merge 5 commits into
base: main
Choose a base branch
from
Open

Feature/lab6 #645

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
a6287c2
Create test
krasand Feb 6, 2026
de7445d
chore: add pull request template
krasand Feb 6, 2026
5d57a63
docs: add lab4 submission
krasand Feb 27, 2026
d75f3c9
docs: add lab5 submission
krasand Mar 6, 2026
7e8a685
docs: add lab6 submission
krasand Mar 27, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
13 changes: 13 additions & 0 deletions .github/pull_request_template.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,13 @@
## Goal
What is the purpose of this PR?

## Changes
What was changed?

## Testing
How was it tested?

### Checklist
- [ ] Clear, descriptive PR title
- [ ] Documentation/README updated (if needed)
- [ ] No secrets or large temporary files committed
180 changes: 180 additions & 0 deletions labs/submission4.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,180 @@
# Lab 4 — Submission

## Task 1 — Operating System Analysis

---

### 1.1 Boot Performance Analysis

```text
systemd-analyze
Startup finished in 3.212s (userspace)
graphical.target reached after 3.159s in userspace.
```

```text
systemd-analyze blame | head -n 10
6.849s apt-daily-upgrade.service
1.487s landscape-client.service
751ms dev-sdd.device
659ms snapd.seeded.service
513ms snapd.service
383ms wsl-pro.service
```

```text
uptime
16:43:28 up 9 min, 1 user, load average: 0.02, 0.06, 0.02
```

```text
w
USER TTY LOGIN@ IDLE WHAT
krasand pts/1 16:34 9:23 -bash
```

**Observations:**

- The system booted in approximately 3 seconds (userspace), which is expected for WSL.
- The longest starting service was `apt-daily-upgrade.service`.
- Load average values are very low, indicating the system is mostly idle.
- Only one active user session is present.

---

### 1.2 Process Forensics

```text
ps -eo pid,ppid,cmd,%mem,%cpu --sort=-%mem | head -n 6
613 1 /usr/bin/python3 ... 0.9 0.0
217 1 /usr/bin/python3 ... 0.6 0.0
897 1 /usr/libexec/packagekitd 0.5 0.0
```

```text
ps -eo pid,ppid,cmd,%mem,%cpu --sort=-%cpu | head -n 6
1 0 /sbin/init 0.3 0.3
613 1 /usr/bin/python3 ... 0.9 0.0
```

**Top memory-consuming process:**
`/usr/bin/python3` (system service process).

**Observations:**

- Memory and CPU usage are minimal.
- The system is not under load.
- Processes consuming memory are mostly background services.

---

### 1.3 Memory Analysis

```text
free -h
Mem: 3.3Gi total, 440Mi used, 2.8Gi free
Swap: 1.0Gi total, 0B used
```

```text
MemTotal: 3459304 kB
MemAvailable: 3008040 kB
SwapTotal: 1048576 kB
```

**Observations:**

- Most memory is available (~2.9Gi).
- Swap is configured but not used.
- The system has sufficient free memory.

---

### 1.4 User Sessions

```text
who -a
system boot 2026-02-27 16:34
krasand pts/1 2026-02-27 16:34
```

```text
last -n 5
reboot system boot 6.6.87.2-microsoft ...
```

**Observations:**

- Only one user session is active.
- Recent system activity shows WSL reboots.
- No unusual login activity detected.

---

## Task 2 — Networking Analysis

---

### 2.1 Network Path Tracing

```text
traceroute github.com
1 172.26.160.XXX
2 10.240.16.XXX
3 10.250.0.XXX
...
18 r1-fra3-de.as5405.net (94.103.180.24)
19 cust-sid436.fra3-de.as5405.net (45.153.82.37)
```

```text
dig github.com

ANSWER SECTION:
github.com. IN A 140.82.121.4
```

**Observations:**

- The route includes private internal network hops (10.x.x.x and 172.x.x.x) before reaching public internet routers.
- DNS resolution confirms `github.com` resolves to IP address `140.82.121.4`.

---

### 2.2 Packet Capture (DNS Traffic)

```text
sudo tcpdump -c 5 -i any 'port 53' -nn

Out IP 172.26.162.XXX.58057 > 172.26.160.XXX.53: A? google.com.
In IP 172.26.160.XXX.53 > 172.26.162.XXX.58057: A 172.217.19.238
```

**Observations:**

- The packet capture shows a DNS query for `google.com`.
- The response contains the resolved IP address.
- Local IP addresses were partially masked for privacy.

---

### 2.3 Reverse DNS Lookup

```text
dig -x 8.8.4.4

ANSWER SECTION:
4.4.8.8.in-addr.arpa. PTR dns.google.
```

```text
dig -x 1.1.2.2

status: NXDOMAIN
```

**Observations:**

- The IP address `8.8.4.4` resolves to `dns.google`, confirming it belongs to Google DNS.
- The IP address `1.1.2.2` does not have a PTR record (NXDOMAIN).
- Reverse DNS depends on whether a PTR record is configured for the IP address.
172 changes: 172 additions & 0 deletions labs/submission5.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,172 @@
# Lab 5 --- Virtualization and System Analysis

## Platform

Virtual Machine running **Ubuntu 24.04 LTS** inside **Oracle
VirtualBox**.

------------------------------------------------------------------------

# Task 2 --- System Analysis

## Operating System Information

### Command

uname -a

### Output

Linux andrey-VirtualBox 6.17.0-14-generic #14~24.04.1-Ubuntu SMP PREEMPT_DYNAMIC Thu Jan 15 15:52:10 UTC x86_64 x86_64 x86_64 GNU/Linux

### Detailed OS information

Command

cat /etc/os-release

Output

PRETTY_NAME="Ubuntu 24.04.4 LTS"
NAME="Ubuntu"
VERSION_ID="24.04"
VERSION="24.04.4 LTS (Noble Numbat)"
VERSION_CODENAME=noble
ID=ubuntu
ID_LIKE=debian

### Conclusion

The system is running **Ubuntu 24.04.4 LTS (Noble Numbat)**.

------------------------------------------------------------------------

# CPU Information

### Command

lscpu

### Key Information

- Architecture: **x86_64**
- CPU Model: **AMD Ryzen 5 3500U with Radeon Vega Mobile Gfx**
- CPU cores allocated to VM: **2**
- Virtualization type: **full**
- Hypervisor vendor: **KVM**

### Conclusion

The virtual machine is using **2 virtual CPU cores provided by the host
machine**.

------------------------------------------------------------------------

# Memory Information

### Command

free -h

### Output

Mem: 3.8Gi total
Used: 1.0Gi
Free: 1.3Gi
Swap: 3.8Gi

### Conclusion

The virtual machine has:

- **3.8 GB RAM**
- **3.8 GB swap memory**

Memory usage is relatively low.

------------------------------------------------------------------------

# Storage Information

### Command

lsblk

### Output

sda 25G disk
└─sda2 25G mounted on /

### Disk Usage

Command

df -h

Output

Filesystem Size Used Avail Use%
/dev/sda2 25G 9.5G 14G 41%

### Conclusion

The system uses a **25 GB virtual disk**, with **14 GB available free
space**.

------------------------------------------------------------------------

# Network Configuration

### Command

ip a

### Key Information

Network interface:

enp0s3

IP address:

10.0.2.15

### Conclusion

The VM is connected to the network using **VirtualBox NAT networking**.

------------------------------------------------------------------------

# Virtualization Detection

### Command

systemd-detect-virt

### Output

oracle

### Conclusion

The operating system correctly detects that it is running inside
**Oracle VirtualBox virtualization environment**.

------------------------------------------------------------------------

# Final Summary

This lab demonstrated system inspection inside a virtual machine
environment.

The analyzed system has:

- Ubuntu **24.04 LTS**
- **2 virtual CPU cores**
- **\~4 GB RAM**
- **25 GB virtual disk**
- NAT network configuration
- Virtualization platform: **Oracle VirtualBox**

The system tools successfully detected the virtualization environment
and provided detailed information about system resources.
Loading