Chapter 5. In-the-Wild Use of ATT&CK TTPs

One of the most important aspects of this chapter is the utilization of real-world illustrations to demonstrate how adversaries employ tactics, techniques, and procedures (TTPs) in practice. To advance your learning experience, you can apply your knowledge and practice in a gamified environment using the same commands and tools adversaries employ. This practical, hands-on approach will provide you with valuable experience and familiarity with these tools and techniques, which can be indispensable in identifying and responding to cyber threats.

Applying your skills and knowledge in a virtual environment will teach you how to detect and respond to typical attack scenarios. You will assume the role of an adversary and develop the ability to identify and execute active scanning, exploit vulnerabilities, collect credentials, and evade security controls. In the process, you will gain an appreciation for the importance of taking a proactive approach to cybersecurity and a deeper understanding of defenders’ essential role in safeguarding systems and data. As you progress through the gamified environment, you will face increasingly complex challenges that will test your skills and knowledge. You will receive constructive feedback and guidance throughout the process, allowing you to identify your strengths and weaknesses and improve as you go. Remember, the best defense is a good offense, and the hands-on experience gained from these labs can help ...