The Ransomware exercise is a customized, six-hour, live fire Cyber Range training exercise hosted on ACRE. This exercise is led by expert cyber security engineers and can be executed in a classroom as well as remotely. In this exercise, a ransomware-based attack (i.e., “WannaKry”) is launched via a malicious spear phishing originated compromise. This exercise includes a hands-on keyboard interface, which creates realistic technical training and management interaction opportunities. This exercise is not simulated – it is real malware, detonated in representative network enviroment. Participants are encouraged to view the attack as if it were happening to their institutions in real time, and asked to share what they have done or would do based on the facts provided. Such “range-based” exercises help institutions better understand the impact of an attack and prompt them to improve the ways in which their network defenders respond, communicate, request assistance, and recover from real-world cyber attacks. Institutions that have participated in this exercise have benefited directly by building greater interaction with their security community, as well as increasing capability maturity levels and resiliency across their specific customer sector.
Advanced Cyber Range Environment (ACRE) - Ransomware Exercise
Ideal Candidates for Advanced Cyber Range Environment (ACRE) - Ransomware Exercise Class
Cyber Security Analyst wishing to update their hands-on skills
Advanced Cyber Range Environment (ACRE) - Ransomware Exercise Prerequisites
Experience in the following areas: Windows 2008 R2, Windows 10, pfSense, Security Onion, VyOS and Exchange 2010
What You'll Get in Advanced Cyber Range Environment (ACRE) - Ransomware Exercise
Access to the Advanced Cyber Range EnvironmentHands-On Skills combatting malwareWhat You'll Learn in Advanced Cyber Range Environment (ACRE) - Ransomware Exercise
Phase 1: Malware IdentificationPhase 2: Defensive ModificationsPhase 3: Active DefensePhase 4: HotWashNo Certification Test Available For This Course
No Certification Test Available For This Course
Advanced Cyber Range Environment (ACRE) - Ransomware Exercise Outline
Phase 1: Malware Identification Objectives: Identify the type of malware that was injected into the network. Identify the initial infection vector. Identify the malware C2 (Command & Control; also referred to as Callback). Extract a sample of the malware. Describe how the malware is propagating. Phase 2: Defensive Modifications Objectives: Develop and submit a request to the CCB outlining the steps required to harden the network against future attacks like the one identified in Phase 1. Phase 3: Active Defense Objectives: Actively defend the network if the recommended changes do not prevent propagation when the inject is launched again. Phase 4: HotWash Objectives: Discuss what happened during Phase 1 and Phase 3. Discuss your institution’s existing protocol for this type of attack. Discuss how your institution's existing protocol could be improved based on what you experienced and learned today.Testimonials
This course is definitely an eye opener. With how much social media has taken over, it is important to be fully aware of the capabilities along with all the risks it brings. It is important to get this course because social media is the new norm.
The Social Media and Security Training course offered by UKI is a great and beneficial course combining technical training to fully understand TCP IP networking, DNS, and the harms of malware and cross-site scripting; as well as practical training that allowed attendees to play with open source social intelligence gathering solutions. This is the perfect class for those involved in IT security and interested in social media and identity theft.
Top Related Courses
The Cloud Leak exercise is a customized, six-hour, Cyber Range exercise hosted on ManTech’s ACRE® cyber range. This exercise is led by technical instructors and expert cybersecurity engineers and can accommodate 10 to 50 participants in a classroom or remotely. In this exercise, an attack on a cloud-hosted storage service is simulated. Participants are given the following scenario: A major media outlet has contacted bank.com media relations asking for a statement about the discovery that thousands of bank.com customer credit card numbers were obtained through a breach of a cloud storage service. Bank.com is unaware of any such breach. The CEO has requested an immediate investigation into the breach. Participants must determine how the cloud storage site was compromised and the extent of the intrusion, including the types of data exposed and any further infiltration of bank.com’s network. This exercise uses a hands-on keyboard approach to create realistic technical training and management interaction opportunities where participants respond to and report events as identified. Participants are encouraged to view the attack as if it were happening to their institutions in real time. Participants are asked to share what they have done or would do based on the facts provided.
CompTIA's Cybersecurity Analyst (CSA+) training from UKI teaches students to apply behavioral analytics to improve the overall state of IT security, providing critical knowledge and skills that are required to prevent, detect and combat cybersecurity threats.
In this course, you will learn how to install, configure, and manage Exchange Server 2016, as well how to manage mail recipients and public folders, including how to perform bulk operations using Exchange Management Shell. You will also learn how to manage client connectivity, message transport and hygiene, implement and manage highly available Exchange Server deployments, as well as implement back up and disaster recovery solutions. The course also teaches students how to maintain and monitor an Exchange Server 2016 deployment. In addition, students will learn how to administer Exchange Online in an Office 365 deployment.
Vendor Details
Ultimate Knowledge Institute
Social Media continues to be a focus of attention within the private and public sectors. Each sector has its own unique requirements for the secure integration and usage of Social Media within their organizations. To handle these unique requirements, management, technology and information security staffs must have a set of Social Media knowledge and skills. In addition to the unique integration and implementation requirements that exist within the private and public sectors, both have a common denominator these organizations have personnel working for them that are using Social Media platforms for personnel use and many organizations, both private and public have significant concerns that a data leakage or significant security event could occur through this personal usage. The curriculum and common body of knowledge within the UKI Social Media Training and Certification program will provide management, technology and information security staffs with the knowledge and skill necessary to design, engineer, integrate and operate Internet based Social Media Platforms through proprietary Enterprise 2.0 governance frameworks, policies, processes and technologies.
A. Erlich
RITSC, N6CI just wanted to say your presentation on Social Media Technology and Security was the finest I have ever attended.