You’ve been hacked, or even only suspect you’ve been hacked. Now what?

Labs in this category guide you through approaches to addressing and managing the aftermath of an attack or security breach. You’ll get to experience actual attacks, within a controlled environment, so that the first time you see ransomware isn’t on your critical systems.

The labs in this category focus on the technical aspects of incident response, mitigation, and recovery, versus site-specific organizational policies or procedures.

 

Questions about which lab is right for you? Contact cyrin@atcorp.com.

This lab teaches three different Denial of Service attacks and techniques to mitigate them:

  1. A TCP SYN Flood attack that exploits a weakness in the design of the TCP transport protocol,
  2. A slow HTTP attack called Slowloris that takes advantage of how HTTP servers work,
  3. A DNS amplification attack that exploits misconfigured DNS servers, of which there are plenty on the Internet.

Prerequisites
  • Familiarity with the Unix/Linux command line.
  • Basic web application knowledge (HTTP, URL parameters, etc.)
  • Basic networking concepts (TCP/IP, DNS, etc.)
Expected Duration

2 hours, self-paced. Pause and continue at any time.

2 CPEs awarded on successful completion.

Cost

$79 for 6 months of access. Free if you are a subscriber to any package that includes this lab.

Launch this lab!

The course is also available as part of the CYRIN Incident Response Package as well as the CYRIN Cyber Range All Access Package.

Students will learn to use the Cuckoo sandbox to determine if an executable or document is potential malware. If the executable is packed (compressed), they will learn to use a debugger to unpack it.

Prerequisites
  • Basic knowledge of computer architecture and assembly language
Expected Duration

2 hours, self-paced. Pause and continue at any time.

2 CPEs awarded on successful completion.

Cost

$79 for 6 months of access. Free if you are a subscriber to any package that includes this lab.

Launch this lab!

This lab is also available as part of the CYRIN Incident Response Package as well as the CYRIN Cyber Range All Access Package.