top of page

Introduction to Hands-On Purple Teaming




2 Hours


About the Course

In this hands-on workshop you will be introduced to Purple Team Exercises and play the role of Cyber Threat Intelligence, the Red Team, and the Blue Team. We have set up an isolated environment for each attendee to go through a Purple Team Exercise. Atte

ndees will: • Learn the basics and use Command and Control (C2) • Consume Cyber Threat Intelligence from a known adversary • Extract adversary behaviors/TTPs and map to MITRE ATT&CK • Play the Red Team by creating and executing adversary emulation plans • Emulate the adversary behaviors in a small environment consisting of a domain controller, member server, and a Linux system • Play the role of the Blue Team and look for Indicators of Compromise and Behaviors • Use Wireshark to identify heartbeat and jitter • Enable detective controls (Sysmon and/or Sigma)

Your Instructor

Bryson Bort


Bryson Bort
bottom of page