This course will train your already inquisitive mind how to emulate real world threat actors. It’s fast paced and it’s intense. You will be exposed to an in-depth methodology suitable for operating as a top tier professional red teamer. You will learn not only advanced tactics, techniques, and procedures (TTPs), but also how to run a successful engagement from start to finish, with a focus on operational security and sound risk management.
Our instructors are world class red teamers who spend most of their time on multi month engagements compromising central banks, government, critical national infrastructure, and more.
What you will learn
The tactics, techniques and procedures taught in this course are constantly updated and adapted to keep up to date with the latest techniques used by known threat actors in the wild. The latest TTPs used by real-world threat actors will be demonstrated on a practical level. This includes stealthily bypassing defensive security controls (e.g. common EDR and next-gen AV products), which are typically operating within modern enterprise environments, as well as the pitfalls and lessons learned through many engagements and built-up experience across our own red team. The instructors will impart knowledge from the field including wins, losses, improvements, optimizations, and most importantly operational security.
The course includes both a theory element as well as hands on practical exercises, where the techniques learned can be practiced in a lab environment specifically designed to replicate a typical corporate network. While the course focuses heavily on the latest offensive techniques used by a red team, it also covers common defensive techniques that are deployed by the blue team, such as host-based event logging and monitoring, strict egress filtering, application whitelisting and various other endpoint protections.
You’ll be with our expert red team instructors for four days. This is broken down into three days of teaching, with four structured sessions per day mixed with multiple labs and demos after each session. Below you will find an overview of the course, with some highlights detailed for each session. The final day concludes the training and allows you to bring all your accumulated knowledge to the test, as we tackle a real-world assault course.