Atomic Bird Goes Purple #2

Throughout this module, you have built a solid foundation in threat emulation. You learned the core concepts and processes behind emulation exercises, explored how threat modeling helps identify and prioritize the threats that matter most, and got hands-on with Atomic Red Team to emulate real adversary techniques and observe how defenses respond to them.

This room is the follow-up to Atomic Bird Goes Purple #1. Building on what you practiced there, you will continue working through real-life scenarios using customised atomic tests to implement tailored purple teaming exercises and familiarise yourself with sample attack chains. It is recommended to complete the first room and fulfil its prerequisites before starting here.

A high-level mapping of the custom tests covered in this room is listed below. Each task also shares the basic techniques and storyline of the planned custom actions.

Learning Objectives

• Gain hands-on threat emulation experience.
• Familiarise yourself with artefacts created by adversary tactics and techniques.
• Experience emulation and detection to improve your overall security defences.

Room Prerequisites

It is recommended to complete the prior rooms of this module before starting here:

• Threat Emulation Module

Connecting to the Machine

Before moving forward, start your lab machine by clicking the Start Lab Machine button below. The machine will open in split view and will need about 2 minutes to fully boot. In case you cannot see it, click the Show Split View button at the top of the page.

Set up your virtual environment

To successfully complete this room, you'll need to set up your virtual environment. This involves starting the Target Machine, ensuring you're equipped with the necessary tools and access to tackle the challenges ahead.

Lab machine

Status:Off

Start Lab Machine