Power to the Purple May 2024 Workshop
Автор: SCYTHE
Загружено: 2024-06-18
Просмотров: 32
Описание:
In this session SCYTHE Lead Adversary Emulation Engineer Trey Bilbrey & Detection Engineer Tyler Casey will introduce you to Purple Team Exercises, and you will play the role of Cyber Threat Intelligence, the red team, and the blue team. We have set up an isolated environment for each live attendee to go through a Purple Team Exercise following the Purple Team Exercise Framework.
By the end of this workshop, attendees will:
🦄Learn the basics of Purple Teaming through the study of PTEF.
🦄Setup and utilize Command and Control (C2) frameworks.
🦄Consume Cyber Threat Intelligence from a known adversary.
🦄Extract adversary behaviors/TTPs and map them to the MITRE ATT&CK framework.
🦄Play the Red Team by creating and executing adversary emulation plans.
🦄Emulate the adversary behaviors in a small environment consisting of a domain controller, member server, and a Linux system.
🦄Play the role of the Blue Team and look for Indicators of Compromise and threat Behaviors.
🦄Deploy and utilize Sysmon and popular SIEM frameworks to detect and hunt for Emulation behaviors.
Повторяем попытку...
Доступные форматы для скачивания:
Скачать видео
-
Информация по загрузке:
