Stealthy Ascent

Stealthy Ascent is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: DB Browser for SQLite, Built-in Linux tools and utilities, Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Exfiltration.

Learning Objectives

Reconstruct a Linux system's unauthorized access and ransomware incident by analyzing logs, browser, and email artifacts, decrypting payloads, and identifying persistence.

Categories: Endpoint Forensics.

MITRE ATT&CK Tactics: Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Exfiltration.

Tools: Built-in Linux tools and utilities, DB Browser for SQLite.

Difficulty: medium.