Skip to content

Welcome

  • Enterprise 101

    Focuses on the foundations of building an enterprise environment. Through virtualization, we are going to emulate a fictional business called ProjectX.

    Getting started

  • Networks & Attacks 101

    In Networks & Attacks 101, we work on the essentials based off of Enterprise 101’s topology. Building the essential network infrastructure, deploying network-based attacks such as Man-in-the-Middle (MiTM), Denial of Service (DoS), Address Resolution and IP Spoofing. We then deploy defenses, such as the Suricata Intrusion Prevention System (IPS), pfSense Firewall, Active Directory Group Policy Objects (GPO), File Integrity Monitoring (FIM) and network architecture principals.

    Getting started

  • Cloud & Attacks 101

    In Cloud & Attacks 101, we extend the ProjectX, a journey into learning Production, using AWS. You stand up production-style infrastructure while learning the core cloud concepts, VPCs, IAM, EC2, storage, centralized logging, and prepare a fully operationalize, serverless web threat-intelligence dashboard. Cloud native attacks such as misconfigured S3, SSRF to instance metadata, and overly permissive IAM. You finish by implementing defenses and detection wth Wazuh rules aligned while applying cloud services to prevent attacks.

    Getting started