RetailBreach is a blue team lab that falls under the Network Forensics category and will cover the following subjects: Wireshark, Network Miner, Brim, Reconnaissance, Initial Access, Execution, Defense Evasion, Credential Access, Discovery, Lateral Movement.
Learning Objectives
Investigate network traffic with Wireshark to identify attacker TTPs, extract XSS payloads and session tokens, and determine exploited web application vulnerabilities.