Cyber Blue Team labs, CTF challenges, DFIR, and SOC tools

Sort

Hard Retired

XZBackDoor

Endpoint Forensics

4.7 (28)

Disk Fo… CVEs Backdoor

Easy Retired

IcedID

Threat Intel

4.3 (622)

Malware… APTs IcedID

Easy Retired

RetailBreach

Network Forensics

4.7 (321)

PCAP WebServ… Wiresha…

Easy Retired

Web Investigation

Network Forensics

4.6 (1901)

PCAP Wiresha… Network…

Medium Retired

Malicious PyPi

Endpoint Forensics

4.6 (72)

Disk Fo… SQLite … Event L…

Insane Retired

UnPackMe

Malware Analysis

4.5 (63)

Packed … Stealer IDA

Medium Retired

ConfluenceRCE

Endpoint Forensics

4.6 (56)

Disk Fo… Log Ana… Cloud F…

Hard Retired

SpottedInTheWild

Endpoint Forensics

4.7 (423)

Disk Fo… Eric Zi… Arsenal…

Hard Retired

GhostDetect

Malware Analysis

4.8 (38)

Eric Zi… Wiresha… ProcMon

Easy Retired

Ramnit

Endpoint Forensics

4.6 (1149)

Memory … Volatil… VirusTo…

Medium Retired

Trickbot

Threat Intel

4.6 (50)

Malware… Threat … VirusTo…

Hard Retired

Brutal Tank

Threat Hunting

4.7 (43)

SIEM Arkime PCAP

1
2
3
4
5 (current)
6
7
8
9
10
11
12
13
14
15

Blue Team CTF Challenges

Difficulty

Category

MITRE Tactic

Type

Sort

XZBackDoor

IcedID

RetailBreach

Web Investigation

Malicious PyPi

UnPackMe

ConfluenceRCE

SpottedInTheWild

GhostDetect

Ramnit

Trickbot

Brutal Tank