BlackSuit APT Breach

BlackSuit APT Breach is a blue team lab that falls under the Threat Hunting category and will cover the following subjects: DB Browser for SQLite, MFTECmd, Timeline Explorer, Splunk, Eric Zimmerman Tools, DCode, FTKImager, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Discovery, Lateral Movement, Collection, Command and Control, Impact.

Categories: Threat Hunting.

MITRE ATT&CK Tactics: Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Discovery, Lateral Movement, Collection, Command and Control, Impact.

Tools: DB Browser for SQLite, MFTECmd, Timeline Explorer, Splunk, Eric Zimmerman Tools, DCode, FTKImager.

Difficulty: hard.