This Wednesday! Sign up for the Hands-On Purple Team Workshop where you play the role of a Cyber Threat Intelligence Analyst, Red Team Operator, and Blue Teamer: zoom.us/webinar/register/3616041...
#AdversaryEmulation #Orangeworm #Ryuk...
Sign up for the next Hands-On Purple Team Workshop where you play the role of a Cyber Threat Intelligence Analyst, Red Team Operator, and Blue Teamer: zoom.us/webinar/register/3616041...
#AdversaryEmulation #Orangeworm #Ryuk #Ransomware #redteam...
Next Hands-On #PurpleTeam Workshop is on Wednesday December 9 at 12pm EST. Come learn how to consume CTI for #Orangeworm and #Ryuk, emulate the adversary behaviors, and detect them with #sysmon and #wireshark. We track all the work with VECTR...
Current view of the #PurpleTeam workshop. Emulating #APT33 #Ryuk #Orangeworm and #WastedLocker in a hands-on, isolated environment for each student! Thanks for hosting us @HITBSecConf #HITBCyberWeek
Next one is December 5: https://scythe.io/workshops
Starting soon! Hands-On Purple Team Workshop for #HITBCyberWeek
Didn't register in time? Come in a couple of weeks for the next run. We are emulating #Orangeworm and #ryuk! #PurpleTeam #RedTeam #BlueTeam #infosec
https://scythe.io/workshops
Hands-On #PurpleTeam Workshop was a success! Attendees learned how to consume and extract TTPs from CTI on #Orangeworm Then they created an #adversaryemulation plan, executed it, and found ways to detect it with @olafhartong #sysmon #wireshark...
We collaborated with @ActiveCmeasures last #ThreatThursday to look at a healthcare related threat actor #Orangeworm
Keith ran the synthetic malware through their tools and discusses how to detect: www.activecountermeasures.com/malware-of-the-day-orang...
@scythe_io...
The @scythe_io Community Threats GitHub has both the Navigator layer as well as a @scythe_io threat you can import and run. #Orangeworm lives off the land, so you can actually extract the commands and run them manually (Atomic Red Team like):...
This #ThreatThursday I blogged about @MITREattack updates with/sub-techniques, joining a Cyber Alliance to Defend our Healthcare, and covered #Orangeworm
Consumed CTI, shared a Navigator layer (JSON) and created an #adversaryemulation...
This #ThreatThursday we are announcing an alliance with the healthcare sector as well as looking at a threat actor that targets the sector #Orangeworm Stay tuned! @scythe_io...
