Cyber Blue Team labs, CTF challenges, DFIR, and SOC tools

Sort

Hard Retired

GhostDetect

Malware Analysis

4.7 (54)

Eric Zi… Wiresha… ProcMon

Easy Retired

Ramnit

Endpoint Forensics

4.5 (1764)

Memory … Volatil… VirusTo…

Medium Retired

Trickbot - WIZARD SPIDER

Threat Intel

4.4 (88)

Malware… Threat … VirusTo…

Hard Retired

Brutal Tank

Threat Hunting

4.7 (52)

SIEM Arkime PCAP

Hard Retired

Zerologon

Endpoint Forensics

4.8 (154)

Disk Fo… Active … Phishing

Medium Retired

OpenWire

Network Forensics

4.5 (1590)

PCAP Wiresha… CVEs

Medium Retired

TheTruth

Endpoint Forensics

4.6 (54)

spyware Phishing Android

Medium Retired

QBot

Endpoint Forensics

4.6 (213)

Memory … Volatil… Trojan

Medium Retired

LockBit

Endpoint Forensics

4.7 (227)

Disk Fo… Ransomw… LockBit

Medium Retired

GoogleCloudHunt

Cloud Forensics

4.5 (186)

Google … Bucket Google …

Medium Retired

EcomBreach

Endpoint Forensics

4.6 (107)

Disk Fo… Apache2 Log Ana…

Medium Retired

MSI

Malware Analysis

4.5 (80)

VirusTo… CyberCh… Windows…

1
2
3
4
5
6 (current)
7
8
9
10
11
12
13
14
15

Blue Team CTF Challenges

Difficulty

Category

MITRE Tactic

Type

Sort

GhostDetect

Ramnit

Trickbot - WIZARD SPIDER

Brutal Tank

Zerologon

OpenWire

TheTruth

QBot

LockBit

GoogleCloudHunt

EcomBreach

MSI