RevengeHotels APT is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: CyberChef, DB Browser for SQLite, dnSpy, Windows Event Viewer, Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Collection, Command and Control, Exfiltration, Impact.
Learning Objectives
Reconstruct multi-stage APT attack chain by correlating email, browser, Sysmon logs, and registry artifacts to identify persistence mechanisms and data exfiltration techniques.