Atomic Bird Goes Purple #1

To access material, start machines and answer questions login.

Threat Emulation Module Recap

The bottom line of the activities found in this room is to enhance the impact of the Purple Team, Threat Emulation and Detection Engineering exercises by going beyond the defaults and basics. In this room, you will work on real-life scenarios using the outcomes you gained during the threat emulation module. You will emulate and hunt adversarial tactics and experience purple teaming exercises.

Learning Objectivities

Gain hands-on threat emulation experience.
Familiarise yourself with artefacts created by adversary tactics and techniques.
Experience emulation and detection to improve your overall security defences.

Room Prerequisites

Windows Event Logs (Room)
Sigma (Room)
(Room)
Aurora (Room)
Hacking with (Room)
Windows Fundamentals (Module)
Threat Emulation Module (Module)

Before proceeding to the next task, let’s start the Virtual Machine by pressing the Start Machine button at the top of this task. The machine will start in a split-screen view. In case the is not visible, use the blue Show Split View button at the top-right of the page.

Answer the questions below

Start the attached VM and proceed to the next task.

Ready to learn Cyber Security?

The Atomic Bird Goes Purple #1 room is only available for premium users. Signup now to access more than 500 free rooms and learn cyber security through a fun, interactive learning environment.

Already have an account? Log in

Atomic Bird Goes Purple #1

Task 1IntroductionTask includes a deployable machine

Task 2Getting Started With Custom Exercises and Investigation ProcessPremium

Task 3Toolset and HintsPremium

Task 4Execute, Investigate, DetectPremium

Task 5Universal Suspicious SharePremium

Task 6Dump and GoPremium

Task 7ConclusionPremium

Ready to learn Cyber Security?