CyberDefenders®
@CyberDefenders
Followers
16,224
Following
2
Media
153
Statuses
664
CyberDefenders is a training platform for #SOC analysts to learn, validate & advance #BlueTeam / #DFIR skills. Join community @
United States
Joined July 2019
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
DAVI NO DOMINGAO
• 270272 Tweets
Flamengo
• 172175 Tweets
Corinthians
• 134943 Tweets
Knicks
• 93749 Tweets
Wesley
• 88101 Tweets
Brunson
• 80174 Tweets
Embiid
• 79297 Tweets
Lite
• 74473 Tweets
Kyrie
• 70117 Tweets
Luka
• 58096 Tweets
Dallas
• 56396 Tweets
Clippers
• 54859 Tweets
Harden
• 52994 Tweets
DeSantis
• 46631 Tweets
Sixers
• 46578 Tweets
Philly
• 45110 Tweets
Cruzeiro
• 44628 Tweets
Sporting
• 43448 Tweets
Mavs
• 38526 Tweets
LOBOS COM AMSTEL
• 37718 Tweets
Velez
• 34362 Tweets
昭和の日
• 28417 Tweets
Felipe Melo
• 26940 Tweets
Betis
• 25435 Tweets
Paul George
• 24171 Tweets
Diniz
• 23102 Tweets
Kawhi
• 20626 Tweets
Mavericks
• 17295 Tweets
76ers
• 17124 Tweets
Cano
• 15101 Tweets
Lowry
• 11379 Tweets
Doncic
• 11283 Tweets
Gyokeres
• 11176 Tweets
Isco
• 10692 Tweets
Last Seen Profiles
Pinned Tweet
🔥 Look at those stunning
#CertifiedCyberDefender
silver and gold coins🏅, a special recognition for our
#CCD
graduates! Show off your
#CyberDefense
expertise with this one-of-a-kind keepsake.
Are you up for the challenge? Tackle the CCD certification exam, join the elite, and…
6
3
67
#BossofTheSOC
3 virtual machine has been released. Now the 3 versions are available for download at
#DFIR
#Splunk
#InfoSec
#CyberSecurity
#BlueTeam
#CTF
4
213
475
Calling
#cyberdefenders
! We are celebrating 55000 LinkedIn followers with a giveaway worth $16,000🎉!
As a token of appreciation, we want to give back to the
#blueteam
community by giving away 21
#CertifiedCyberDefender
vouchers, 7 for each - Discord, Twitter, and LinkedIn.
84
232
420
As promised, the 1st image
#forensics
challenge has been released.
A decent opportunity to practice Windows forensics tools and artifacts like Prefetch, Shellbags,
@AccessDataGroup
FTK & Autopsy.
Challenge:
Author:
@binaryz0ne
#DFIR
#BlueTeam
#InfoSec
5
191
374
New Challenge Released | 'WireDive' is a combo
#NetworkForensics
exercise that contains various traces (DHCP, DNS, HTTPS, SMB & C2 traffic) to help you understand how different protocols look on the wire.
#DFIR
#CyberSecurity
#BlueTeam
#InfoSec
#WireShark
4
96
241
New Challenge Released | 'QRadar 101' is an attack investigation challenge using
@IBMSecurity
#QRadar
#SIEM
.
Dataset:
-Sysmon
-Windows Eventlog & Powershell Logging.
-Suricata
-Zeek
Challenge:
Author:
@ali_alwashali
#DFIR
#SOC
#InfoSec
#CyberSecurity
1
94
233
We released
#DetectionLabELK
, a fork of
@Detectionlab
with
@elastic
#ELK
stack instead of
#Splunk
.
#DFIR
#SOC
#ElasticSearch
#DetectionLab
#SIEM
#BlueTeam
#ThreatHunting
2
104
235
Now you can download
#BossOfTheSOC
virtual machine and start practicing instantly without worrying about setting up the environment.
Check out this video
Give it a try @
#Splunk
#DFIR
#InfoSec
#BlueTeam
#CTF
#CyberSecurity
1
110
218
We are pleased to announce the release of the 1st
#BlueTeam
challenge from
@malware_traffic
great collection. We'll continue to add more in the upcoming days.
Give it a try @ & validate your
#PCAP
analysis skills.
#DFIR
#InfoSec
#CyberSecurity
#Malware
5
99
213
New Challenge Released | 'MalDoc101' is the 1st malicious document analysis exercise to release, a vital skill considering most attacks start with a malicious link or email attachment.
Challenge:
Author:
@jstrosch
#DFIR
#CyberSecurity
#BlueTeam
#InfoSec
3
74
214
A couple of
@FireEye
Flare reversing challenges have been released.
This is a good opportunity to play with tools such as IDA Pro, x64dbg, OllyDbg, FlareVM, WinDbg, CFF Explorer, Hex Workshop and ILSpy.
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#Reversing
1
82
200
We are adding
@projecthoneynet
challenges in the upcoming days.
Releasing the 1st one: "Escape Room"; A combination of
#PCAP
, log analysis, and
#reversing
exercises with variant levels of difficulty.
#DFIR
#InfoSec
#BlueTeam
#CyberSecurity
1
70
196
New challenge released | "BankingTroubles" is a memory analysis challenge that gets you into the world of malicious documents.
Challenge URL:
Author:
@ProjectHoneynet
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#SOC
0
67
180
New Challenge Released | 'DecryptMe' is a packet analysis exercise involving extracting & analyzing exploit code to understand how the attack was performed & the resulting damage.
Authors:
@ochsff
@ProjectHoneynet
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
4
69
177
A new challenge has been released, including a set of
@zeekurity
specific questions.
Zeek (formerly Bro) is an open-source network security monitoring tool & critical component of defender's arsenal.
Try it @
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
3
55
151
New Challenge Released | Emprisa MalDoc
As a
#SOC
analyst, you are asked to inspect a suspected document that landed in a user inbox and extract
#IOCs
.
Author:
@accidentalrebel
#DFIR
#InfoSec
#CyberSecurity
#BlueTeam
#CyberDefense
#MaLDoc
#RTF
3
53
149
New Challenge | Malware Traffic Analysis 4
Scenario: You're the supervisor for both Tom and Jake. You'll have to figure out what happened to Tom's laptop.
Challenge:
Author:
@malware_traffic
#DFIR
#InfoSec
#CyberSecurity
#PCAP
#TrafficAnalysis
#BlueTeam
2
57
151
New Challenge: Malware Traffic Analysis 5
Category: Email Analysis
As a SOC analyst, you are tasked with analyzing a couple of emails & a pcap to understand how the system was compromised.
Author:
@malware_traffic
#DFIR
#InfoSec
#CyberSecurity
#BlueTeam
0
49
146
New challenge Released | 'HoneyBot' is a
#PCAP
analysis exercise highlighting attacker's interactions with
#honeypots
and how automatic exploitation works.
Challenge:
Author:
@ProjectHoneynet
#BlueTeam
#InfoSec
#CyberSecurity
#SOC
#DFIR
0
51
147
📢 Shout out to
#SOC
analysts. We have a new
@elastic
SIEM-based
#CTF
for you!
Register, create/join a team, and compete against other professional teams 👉
#DFIR
#InfoSec
#BlueTeam
#CyberSecurity
#ELK
#SIEM
#Forensics
#IncidentResponse
1
46
141
A new challenge has been released | Ulysses - A simple memory forensics exercise to practice
@Volatility
.
Challenge:
Author:
@ProjectHoneynet
#DFIR
#Forensics
#InfoSec
#CyberSecurity
#BlueTeam
0
50
128
Every
#SOC
analyst should try out these cool challenges!
If you're looking to practice your
#malware
#analysis
skills, I have several exercises available:
🎓
These include challenge tasks and detailed walk-throughs. You'll also find them as CTF challenges at
@CyberDefenders
👉
1
164
493
1
32
123
1
36
122
Preparing the next system/memory
#forensics
challenge. A web server compromise case authored by
@binaryz0ne
.
Stay tuned!
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
8
32
118
New challenge released | 'NukeTheBrowser' is a PCAP analysis exercise that deals with obfuscated JS, basic reversing, and shellcode analysis.
Challenge:
Author:
@ProjectHoneynet
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#SOC
#PCAP
#Shellcode
0
32
113
New Challenge -> DetectLog4j
Log4shell has been gaining much attention for the wide range of products that use the
#log4j
library. This challenge will test your ability to detect, analyze & mitigate
#log4shell
.
#DFIR
#InfoSec
#CyberSecurity
#BlueTeam
#CTF
1
44
114
The latest
@FireEye
Flare-on 7
#reversing
challenge has been released.
Check it out at
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
0
38
112
New Challenge | CyberCorp
You have been informed that your company's infrastructure is likely to be compromised by a known threat group.
Analyze collected artifacts & complete the investigation.
#DFIR
#InfoSec
#BlueTeam
#CyberSecurity
Author:
@bizone_en
0
38
106
New challenge | 'Brave'
A memory image was taken from a seized Windows machine. Analyze the image and answer the provided questions.
Author:
@DFIRScience
#DFIR
#Prefetch
#Shellbags
#CyberSecurity
#InfoSec
0
37
102
New CTF->
#DetectLOG4J
#Log4shell
has gained much attention for the wide range of products that depend on the
#log4j
library. We created a
#CTF
to test your ability to detect, analyze & mitigate log4shell.
Register & get your team ready 👉
#DFIR
#BlueTeam
0
37
99
New challenge released | "Szechuan Sauce" is a combo challenge that takes you through PCAP analysis, memory analysis, autoruns, and image forensics.
Challenge URL:
Author:
@dfirmadness
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#SOC
1
35
88
Shout out to
#security
analysts:
#Splunk
Boss of The SOC v1
#blueteam
#CTF
is now available for anyone to play at
#cybersecurity
#infosec
#DFIR
#cyberdefense
#SOC
#SIEM
#BossOfTheSoc
2
57
88
New Challenge -> Pwned-DC (Active Directory Case).
Adversaries were able to take over the corporate domain controller. Investigate the case and reveal the Who, When, What, Where, Why, and How.
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
0
27
83
We are excited to announce our partnership with
@Cyber5W
to bring more quality educational
#DigitalForensics
content to the
#BlueTeam
community.
Stay tuned!
#InfoSec
#CyberSecurity
#DFIR
1
24
81
New challenge Released | 'RE101' is a basic
#ReverseEngineering
exercise - a task security analysts usually do to understand how a specific malware works and extract possible intel.
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#Forensics
#MalwareAnalysis
1
38
84
New challenge |
#Hacked
Given a compromised
#Linux
web server, figure out how the attacker gained access, system modifications & used persistent techniques.
Author:
@binaryz0ne
#DFIR
#BlueTeam
#CyberSecurity
#InfoSec
#DigitalForensics
0
33
84
🆕New Lab: Sigma101
As a Detection Engineer, Your objective is to Decode the logs, comprehend the activities, and refine our Sigma rules.
🎬 ProxyLogon walkthrough is now available.
❗ Retired Lab: MITRE-1595.
🔗
#DFIR
#SOC
#infosec
#cybersecurity
0
27
84
Hooray! We've opened challenges submissions to the public, and we are excited to start accepting new challenges from the community.
Use the below form if you have a challenge you want to build or publish, regardless if you are an individual or a company.
0
37
78
New Investigation Released > MrRobot
After a suspicious email, users reported abnormal behavior with their machines. The
#IR
team captured a couple of memory dumps for you to analyze using
@volatility
Author:
@wyattroersma
#BlueTeam
#InfoSec
#CyberSecurity
0
21
82
New challenge -> "GetPDF"
The ability to generate malicious pdf files to distribute malware is now part of many
#exploit
kits. Analyze the suspected
#PDF
file & figure out what it does.
Author:
@ProjectHoneynet
#DFIR
#InfoSec
#CyberSecurity
#BlueTeam
#SOC
0
32
80
🔥 New Lab:
#REvil
🔍🛡️ 🔥
As a Digital Forensics Analyst, address a recent ransomware intrusion. Dive into the Sysmon event logs from a compromised machine and uncover essential insights.
🔗
#DigitalForensics
#Ransomware
#DefendSmarter
#BlueYard
0
22
78
🆕 New Challenge | 'Phishy' 🆕
A company's employee joined a fake iPhone giveaway. A disk image was taken for further analysis. Your task is to figure out how the system was compromised.
Author:
@BenaliSemah
#DFIR
#InfoSec
#CyberSecurity
#BlueTeam
#MalDoc
2
33
71
We are excited to announce our partnership with MalTrak /
@Amr_Thabet
to bring more quality educational
#MalwareAnalysis
,
#ThreatHunting
, and
#AdversarySimulation
content to the community.
#InfoSec
#CyberSecurity
#DFIR
#BlueTeam
1
15
71
New Challenge | 'PacketMaze'
As an analyst for an
#MSSP
, you are tasked with analyzing a
#PCAP
for a customer's employee whose network activity has been monitored for a while -possible insider.
Author:
@DFIRScience
#DFIR
#CyberSecurity
#InfoSec
#BlueTeam
0
29
68
It looks like many people wanted it. An
@IBMSecurity
#QRadar
challenge is being prepared right now.....stay tuned!
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#SOC
#SIEM
1
22
68
New Challenge -> Ransomed
After a successful breach, the
#SOC
team found an executable, but they could not know what it does, so they sent it to you for further
#malware
analysis.
Author:
@MalGamy12
#DFIR
#InfoSec
#CyberSecurity
#BlueTeam
#Reversing
3
34
65
📢 Defenders, we have a new live
#CTF
for you!
An ActiveDirectory compromise case: adversaries hacked the corporate domain controller. Investigate the case and reveal the Who, When, What, Where, Why, & How.
Register👉
#DFIR
#InfoSec
#BlueTeam
#CyberSecurity
0
32
67
New Challenge-> l337 S4uc3
This
#threathunting
scenario
@WyattRoersma
created for
@grrcon
will test your network & host-based analysis skills to figure out the who, what, where, when, and how of this incident.
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#PCAP
0
23
66
🆕 New Challenge | Injector 🆕
A company’s web server has been breached. The team arrived just in time to take a forensic image of the running system and its memory for further analysis.
Challenge:
Author:
@binaryz0ne
#DFIR
#InfoSec
#BlueTeam
#FTKImager
0
26
64
A new challenge has been released | "Hammered" is a log-analysis exercise for a compromised
#Linux
server.
Challenge:
Author:
@ProjectHoneynet
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#SOC
#Forensics
0
39
64
New Course -> "
#EmailSecurity
For SOC Analysts"
Learn how to fortify your enterprise email systems to stand against a wide range of today's attacks, such as
#phishing
, business email compromise, and account takeover.
#SOC
#InfoSec
#CyberSecurity
#BlueTeam
0
25
62
📢
#TelecomSecurity
folks, we have a new challenge for you ->
#LTEFallenWall
.
You'll use
#Kibana
to investigate attacks carried out on a mobile operator’s
#LTE
core network (e.g.,
#TrafficInterception
&
#LocationTracking
)
Author:
@sigploit
#DFIR
#InfoSec
0
29
60
New Challenge | 'CyberCorp 2'
As a
#ThreatHunter
, you were called to validate the hypothesis about an intruder's attempt to maintain persistence. Analyze the
#EDR
telemetry in the
#ThreatHunting
platform & figure out attack details.
#DFIR
Author:
@bizone_en
0
17
58
HOORAY! Our
#CertifiedCyberDefender
CCD certification badge is ready.
Enroll now via:
View credentials at:
#DFIR
#SOC
#BlueTeam
#IncidentResponse
#InfoSec
#CyberSecurity
1
18
55
Would the community be interested in a Telecom security/mobile operator's case challenge?
Our friend
@sigploit
, a security researcher at Ericsson and the author of is currently preparing one.
Thoughts/suggestions?
#BlueTeam
#InfoSec
#CyberSecurity
#DFIR
3
14
58
🔥 Join the latest
#SOC
investigation & test your
#BlueTeam
and
#DFIR
skills! Analyze the
#memorydump
with
#Redline
and
#Volatility
to trace the attacker's steps, uncover
#malware
, and mitigate footprints. Are you up for the challenge?
#CyberSecurity
1
11
59
Glad to announce the hosting
#BSidesJeddah
CTF, a
#BlueTeam
flavored intermediate
#CTF
with a few harder challenges (e.g.,
#pcap
analysis, memory forensics &
#MaLDoc
analysis).
Register now & get your team ready!
#DFIR
#SOC
#InfoSec
#SecurityBSides
0
20
58
We have recently updated
#DetectionLabELK
and added
@velocidex
to the current setup.
Try it out at
#DFIR
#BlueTeam
#SOC
#InfoSec
#SIEM
#CyberSecurity
0
34
57
🔥 New
#DFIR
challenge alert🔥! Calling all
#SOC
analysts! 🕵️♀️ Investigate a security breach in an
#ActiveDirectory
network using
#Splunk
#SIEM
. Uncover the attacker's techniques, create a timeline & level up your
#IncidentResponse
skills.
By
@Alhakami1_
0
22
56
New challenge | 'AfricanFalls'
John was suspected of doing illegal activities on his machine & a disk image of his
#Windows
computer was taken. Analyze the image & determine the suspect's actions.
Author:
@DFIRScience
#InfoSec
#BlueTeam
#DFIR
#CyberSecurity
0
27
56
New Challenge | L'espion
As a
#SOC
analyst, you were asked to investigate a client's network that was brought offline to identify the insider & uncover attack details.
#InfoSec
#DFIR
#BlueTeam
#CyberSecurity
#OSINT
#OpenSourceIntel
Author:
@BushidoToken
0
24
55
We pushed a new change for member's profile section, and now you can add your Github/Linkedin/Twitter accounts and brief about yourself.
Use this link to directly edit your profile & connect with other defenders:
#DFIR
#BlueTeam
#Community
#InfoSec
0
19
56
New challenge | 'LGDroid'
Refresh your
#MobileForensics
skills, analyze the provided
#Android
image, and answer investigation questions.
Author:
@DfirScience
#DFIR
#CyberSecurity
#InfoSec
#BlueTeam
#Android
1
27
52
New course | 'Evidence Acquisition under Windows'
Learn how to acquire digital evidence, mount forensic images, and get introduced to tools like
#dd
,
@Belkasoft
,
@MagnetForensics
,
#osfmount
&
#dumpit
.
Author:
@Cyber5W
#DFIR
#InfoSec
#CyberSecurity
#BlueTeam
0
23
54
New Challenge -> 'Malware Traffic Analysis 6'
Greggory is an employee whose computer was hit by
#CryptoWall
3.0
#ransomware
. Analyze artifacts & figure out how Greggory's computer was infected.
By
@malware_traffic
#Infosec
#blueteam
#dfir
#cybersecurity
0
29
56
New training -> "In-Depth Digital Investigation & Threat Hunting.". A live hands-on
#ThreatHunting
training Starting April 25, 2022.
You will learn how real
#APT
attacks work, how to analyze digital artifacts & automate this process across the enterprise.
1
17
53
We are excited to announce our first live
#BlueTeam
#CTF
👉🏻
Create your team and compete with others. Hurry up; CTF ends tomorrow!
#DFIR
#InfoSec
#CyberDefenders
#CyberSecurity
1
25
53
Our first course is '
#MalwareAnalysis
& Digital Investigations', authored by
@Amr_Thabet
, a former researcher at
#Symantec
&
#Defcon
speaker.
He analyzed multiple state-sponsored attacks and was featured in Christian Science Monitor for his work on
#Stuxnet
.
1/2
2
12
53
Here is the first
#MobileForensics
challenge to release - JailBroken.
An iPad case investigation that exposes different aspects of
#IOS
systems.
Challenge:
#DFIR
#BlueTeam
#InfoSec
#CyberSecurity
#SOC
#Forensics
1
22
50
Hooray!
#DetectionLabELK
has a bunch of updates:
-
@Elastic
#ELK
stack bumped to the latest 7.x version.
-
@Suricata_IDS
updated to latest 5.0.3
-
@Zeekurity
updated to latest 3.1.4
-Updated Vagrant boxes
-Bug fixes and improvements.
0
15
48
New
#OSINT
Challenge | 'CaseVegas'
As a detective, find the suspect who was employed in a major hotel chain & was responsible for the theft of US$ 3.5 million from his employer.
Author:
@intelligence_i1
#DFIR
#CyberSecurity
#InfoSec
#BlueTeam
#OpenSource
0
26
47
🚨 New
#OTSecurity
Challenge!
Investigate a breach at a manufacturing plant that utilizes various industrial control systems
#ICS
. Analyze logs, using
#KAPE
and
#EventLogExplorer
to determine the
#APT
objectives.
By
@SocVeldotcom
#DFIR
#BlueTeam
#SOC
0
12
48
🆕 New Lab: Kerberoasted
🕓 Friday at 4 PM UTC
📘 Threat Hunting
🔍 As a threat hunter, your investigation begins with analyzing Active Directory logs to detect any recent upsurge in Kerberoasting attacks.
🔗
#DFIR
#SOC
#infosec
#cybersecurity
0
9
48
🚀 New
#Forensics
Challenge by
@13cubed
!🔍
As a digital forensics investigator your task is identifying the malicious process and gathering information about its activity.
#DFIR
#BlueTeam
#InfoSec
#SOC
#DigitalForensics
0
16
49
Need to bring up DetectionLab with
@Elastic
#ELK
quickly & don't want to worry about setting up the local environment?
Now you can provision
#DetectionLabELK
on the cloud with a single click and destroy it anytime.
#DFIR
#CyberSecurity
#BlueTeam
#InfoSec
#RedTeam
#ThreatHunting
0
21
47
We receive frequent requests from our users to recommend credible educational resources to improve their
#Blueteam
skills. As such, we are excited to announce the addition of a new section to the platform to host free & paid high-quality courses.
More at
1
14
43
Defenders, we released a new course [
#MalwareAnalysis
for L3
#SOC
Analysts] taught by
@jstrosch
. Learn how to analyze malicious office documents, identify/defeat
#obfuscation
techniques and generate valuable
#ThreatIntel
.
#DFIR
#InfoSec
#BlueTeam
#Malware
0
13
42
🔥New Challenge Released -> BlackEnergy🔥
Your enterprise was hit by a cyber attack using a variant of the
#BlackEnergy
#malware
you have never seen before. Analyze the memory dump using
#Volatility
& investigate the intrusion.
#DFIR
#BlueTeam
#InfoSec
1
14
43
All our
#Blueteam
challenges are free to play instantly ;)
#DFIR
#InfoSec
#CyberSecurity
#Forensics
#OSINT
#SIEM
#PCAP
#Reversing
#InfoSec
1
0
0
0
5
42
We released the beta version of cloud
#DetectionLabELK
, and we 'd love to hear your feedback!
Please comment & follow so we can DM you details if interested in giving it a try.
Credit goes to
@Centurion
for building the core
@DetectionLab
.
#soc
#blueteam
#dfir
#cybersecurity
Any interest from the
#infosec
crowd in a dedicated, on-demand cloud version of
#DetectionLabELK
where you can spin up the lab, practice/test/build your detection rules, and destroy the lab a few minutes/hours later?
#soc
#blueteam
#dfir
#cybersecurity
4
15
37
2
14
40