๐น๐๐๐๐๐
๐๐ - ๐-๐ฏ๐๐๐ ๐ป๐ ๐ฎ๐ ๐๐
Weโre super excited to have ๐๐ซ๐๐๐ก ๐๐๐ข๐ซ, ๐๐ซ๐๐ฌ๐ก๐๐ง๐ญ, ๐๐ง๐ ๐๐ฎ๐ค๐ ๐๐ก๐ฆ๐๐ leading an impactful and insightful session!
โณ Free Training : ๐ฏ ๐ช๐๐๐๐๐๐๐ ๐๐๐ ๐ช๐ฐ๐บ๐บ๐ท: How Top Instructors Would Pass the Exam Today
๐ Date : 05 Sep (Fri)
๐ Time : 08:00-09:00 PM (IST)
SPEAKER: Prabh Nair, Prashant, & Luke Ahmed
๐ Location: Live on Zoom
Join Webinar
๐ ๐พ๐๐๐๐๐๐ ๐๐๐๐: https://us06web.zoom.us/j/84249704328?pwd=0cBnNxN6MgBdne87KFuzRb356sNuaW.1
๐ Agenda for the Masterclass:
โ๏ธ Risks Explained Start to Finish
โ๏ธ Actionable Strategies and Takeaways
โ๏ธ The Final Concept that Ties Everything Together
๐ฉ Why Attend This Masterclass ๐ฉ
โ๏ธ Get CPE Certificate
โ๏ธ Learn from Industry Experts
โ๏ธ FREE Career Guidance & Mentorship
Happy Learning :)
Weโre super excited to have ๐๐ซ๐๐๐ก ๐๐๐ข๐ซ, ๐๐ซ๐๐ฌ๐ก๐๐ง๐ญ, ๐๐ง๐ ๐๐ฎ๐ค๐ ๐๐ก๐ฆ๐๐ leading an impactful and insightful session!
โณ Free Training : ๐ฏ ๐ช๐๐๐๐๐๐๐ ๐๐๐ ๐ช๐ฐ๐บ๐บ๐ท: How Top Instructors Would Pass the Exam Today
๐ Date : 05 Sep (Fri)
๐ Time : 08:00-09:00 PM (IST)
SPEAKER: Prabh Nair, Prashant, & Luke Ahmed
๐ Location: Live on Zoom
Join Webinar
๐ ๐พ๐๐๐๐๐๐ ๐๐๐๐: https://us06web.zoom.us/j/84249704328?pwd=0cBnNxN6MgBdne87KFuzRb356sNuaW.1
๐ Agenda for the Masterclass:
โ๏ธ Risks Explained Start to Finish
โ๏ธ Actionable Strategies and Takeaways
โ๏ธ The Final Concept that Ties Everything Together
๐ฉ Why Attend This Masterclass ๐ฉ
โ๏ธ Get CPE Certificate
โ๏ธ Learn from Industry Experts
โ๏ธ FREE Career Guidance & Mentorship
Happy Learning :)
Zoom
Join our Cloud HD Video Meeting
Zoom is the leader in modern enterprise cloud communications.
โค7
1. OSCP Practice Lab: Active Directory Attack Path #1
https://www.youtube.com/watch?v=gY_9Dncjw-s
2. OSCP Practice Lab: Active Directory Attack Path #2 (Back to the Basics)
https://www.youtube.com/watch?v=jBfdlLybMek
3. OSCP Practice Lab: Active Directory Attack Path #3 (Advanced/Client-Side Exploits)
https://www.youtube.com/watch?v=Q5D2Yjc-RVc
https://www.youtube.com/watch?v=gY_9Dncjw-s
2. OSCP Practice Lab: Active Directory Attack Path #2 (Back to the Basics)
https://www.youtube.com/watch?v=jBfdlLybMek
3. OSCP Practice Lab: Active Directory Attack Path #3 (Advanced/Client-Side Exploits)
https://www.youtube.com/watch?v=Q5D2Yjc-RVc
YouTube
OSCP Practice Lab: Active Directory Attack Path #1
Putting this out there as I searched around and didn't find a lot of content on practicing Active Directory attacks in a home lab. This walks through one of the paths to complete domain compromise I practiced for passing the OSCP.
The link to setting up thisโฆ
The link to setting up thisโฆ
โค3๐1
Daily threatโintelligence sources SOCs should monitor
SANS Internet Storm Center (ISC):
Early warning, attack trend analysis, and zero-day vulnerability reports via Handler Diaries and DShield logs.
AlienVault OTX (Open Threat Exchange):
Community-powered real-time sharing of IOCsโIPs, hashes, domains related to current threats, with customization via Pulse collections.
Cisco Talos Intelligence Center:
Enterprise-grade malware reports, campaign tracking, and public threat advisories with actionable IOCs.
Spamhaus Threat Intelligence Feeds:
Global source for malicious IPs, domains, and botnet tracking to automate rapid blocklists.
VirusTotal:
Community-uploaded global malware and file hash analysis platform integrated with most SIEMs and IR workflows.
SANS Internet Storm Center (ISC):
Early warning, attack trend analysis, and zero-day vulnerability reports via Handler Diaries and DShield logs.
AlienVault OTX (Open Threat Exchange):
Community-powered real-time sharing of IOCsโIPs, hashes, domains related to current threats, with customization via Pulse collections.
Cisco Talos Intelligence Center:
Enterprise-grade malware reports, campaign tracking, and public threat advisories with actionable IOCs.
Spamhaus Threat Intelligence Feeds:
Global source for malicious IPs, domains, and botnet tracking to automate rapid blocklists.
VirusTotal:
Community-uploaded global malware and file hash analysis platform integrated with most SIEMs and IR workflows.
Free Labs for Threat Hunting with Real Telemetry
CyberDefenders Blue Team Labs
Provides realistic threat hunting scenarios with authentic endpoint, network, and cloud telemetry. Labs include investigation of attacker patterns, anomaly hunts, and log analysis used in actual incident response.
Blue Team Labs Online (BTLO)
Gamified cyber range with security investigation and threat hunting challenges. Trainees analyze network traffic, endpoint logs, and malware artifacts from real-world attack datasets.
Elastic Threat Hunting Capstone
Offers guided labs using network telemetry, allowing users to perform unguided hunts and discover attacker techniques in simulated environments.
TryHackMe SOC Level 1 Path
Features practical threat hunting exercises with real SIEM log data, covering detection, query building, and true positive identification tasks.
CyberDefenders Blue Team Labs
Provides realistic threat hunting scenarios with authentic endpoint, network, and cloud telemetry. Labs include investigation of attacker patterns, anomaly hunts, and log analysis used in actual incident response.
Blue Team Labs Online (BTLO)
Gamified cyber range with security investigation and threat hunting challenges. Trainees analyze network traffic, endpoint logs, and malware artifacts from real-world attack datasets.
Elastic Threat Hunting Capstone
Offers guided labs using network telemetry, allowing users to perform unguided hunts and discover attacker techniques in simulated environments.
TryHackMe SOC Level 1 Path
Features practical threat hunting exercises with real SIEM log data, covering detection, query building, and true positive identification tasks.
โค3๐ฅ2
The best free labs that include both Windows and Linux telemetry for threat hunting are CyberDefenders, Blue Team Labs Online, and TryHackMe SOC Level 1. These platforms provide hands-on access to endpoint logs, network artifacts, and SIEM dashboards from both operating systems, ensuring realistic blue team scenarios similar to what SOC employers require.
Free Labs with Windows and Linux Telemetry
CyberDefenders Blue Team Labs
Includes diverse investigation scenarios using authentic Windows event logs (Security, Sysmon, PowerShell) and Linux audit logs (auth, syslog, bash history).
Missions span malware detection, privilege escalation, and cross-platform lateral movement.
Blue Team Labs Online (BTLO)
Offers challenges with raw logs, PCAPs, and endpoint telemetry covering both Windows (event, registry, command line) and Linux (SSH, bash, audit trail).
Users analyze attacks on mixed environments, making this lab valuable for real-world hunt skills.
TryHackMe SOC Level 1 Path
Features threat hunting labs using SIEM datasets from Windows and Linux sources, enabling query-driven detection of malicious activity across platforms.
Additional Options
Many CyberDefenders and BTLO challenge datasets include multi-OS telemetry, letting analysts practice detection, correlation, and response in hybrid environments.
These labs mirror enterprise conditions, preparing analysts to tackle scenarios faced in modern SOC roles.
Mastering telemetry analysis from both Windows and Linux systems in these free labs sharply increases readiness for enterprise threat hunting and blue team interviews in 2025.
Free Labs with Windows and Linux Telemetry
CyberDefenders Blue Team Labs
Includes diverse investigation scenarios using authentic Windows event logs (Security, Sysmon, PowerShell) and Linux audit logs (auth, syslog, bash history).
Missions span malware detection, privilege escalation, and cross-platform lateral movement.
Blue Team Labs Online (BTLO)
Offers challenges with raw logs, PCAPs, and endpoint telemetry covering both Windows (event, registry, command line) and Linux (SSH, bash, audit trail).
Users analyze attacks on mixed environments, making this lab valuable for real-world hunt skills.
TryHackMe SOC Level 1 Path
Features threat hunting labs using SIEM datasets from Windows and Linux sources, enabling query-driven detection of malicious activity across platforms.
Additional Options
Many CyberDefenders and BTLO challenge datasets include multi-OS telemetry, letting analysts practice detection, correlation, and response in hybrid environments.
These labs mirror enterprise conditions, preparing analysts to tackle scenarios faced in modern SOC roles.
Mastering telemetry analysis from both Windows and Linux systems in these free labs sharply increases readiness for enterprise threat hunting and blue team interviews in 2025.
โค2
npm Supply Chain Attack: How Hackers Hijacked Millions of Installs ๐จ