Hammered

Hammered is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: grep, Linux Command Line Tools, Text Editor, Execution, Persistence, Defense Evasion, Credential Access, Discovery.

Learning Objectives

Analyze various Linux system logs using grep, awk, and sed to identify attacker TTPs, persistence, and reconstruct the attack timeline.

Categories: Endpoint Forensics.

MITRE ATT&CK Tactics: Execution, Persistence, Defense Evasion, Credential Access, Discovery.

Tools: Linux Command Line Tools, grep, Text Editor.

Difficulty: medium.