Review: CSI Linux + Training

CSI Linux is another DFIR and cyber investigation Linux distribution in line with CAINE, Tsurugi, and SIFT Workstation. It has been developed over the last few years by the team at Information Warfare Center, who also run the Cyber Secrets YouTube channel.

CTF01: Cyberdefenders.org

You have been called to analyze a compromised Linux server. Figure out how the threat actor gained access, what modifications were applied to the system, and what persistent techniques were utilized. (e.g. backdoors, users, sessions, etc).

Disabling Windows Defender Antivirus

Windows Defender Antivirus is the "next-generation projection" 1 for Windows provided by Microsoft. It brings together "machine learning, big-data analysis, in-depth trheat resistance research, and the Microsoft cloud infrastructure"