Recruiter - Hanoi Op

Recruiter - Hanoi Op is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: DB Browser for SQLite, Registry Explorer, MFTECmd, Timeline Explorer, EvtxECmd, Eric Zimmerman Tools, PECmd, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access.

Learning Objectives

When a "candidate" submits a resume that’s more than it seems, it’s up to you to hunt through the artifacts, reconstruct the infection chain, and stop a data breach in its tracks.

Categories: Endpoint Forensics.

MITRE ATT&CK Tactics: Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access.

Tools: DB Browser for SQLite, Registry Explorer, MFTECmd, Timeline Explorer, EvtxECmd, Eric Zimmerman Tools, PECmd.

Difficulty: hard.