.. _workshopblue:

1. Follow the workshops related to hacking & blue team
=======================================================

Task
^^^^^
+--------------------------------------------------------+----------+----------+-------------+
| Follow workshops related to blue teaming               | T        | 0.5day   | Must        |
+--------------------------------------------------------+----------+----------+-------------+

Execution
^^^^^^^^^
| First workshop about blue-teaming was more of an inspiration session. The basics were also discussed such as the basic kill chain, along with a new concept to me which is known as the pyramid of pain.

| PowerPoint slides: `Pyramid of Pain`_

.. _Pyramid of Pain: https://portal.fhict.nl/Studentenplein/LMC/_layouts/15/WopiFrame.aspx?sourcedoc=/Studentenplein/LMC/2021nj/Cyber%20Security/CS7/Blue%20Teaming/01-Introduction-Pyramid-of-Pain/InspirationSessionROS-2020-pub.pptx&action=default

First workshop
^^^^^^^^^^^^^^^
.. figure:: https://i.imgur.com/aU5UFwT.png


.. figure:: https://i.imgur.com/vTUVADJ.png

Second workshop
^^^^^^^^^^^^^^^^
| PowerPoint slides: `Threat detection & nsm`_

.. _Threat detection & nsm: https://portal.fhict.nl/Studentenplein/LMC/_layouts/15/WopiFrame.aspx?sourcedoc=/Studentenplein/LMC/2021nj/Cyber%20Security/CS7/Blue%20Teaming/02-Network-Security-Monitoring/ICS7-Threat-Detection-NSM-2020.pptx&action=default

- Demonstration with Zeek
- Basic overview of a sensor 
- Someone in the seclab p2p torrenting (s3 student)
- Security Onion has all the needed tools

.. figure:: https://i.imgur.com/1LE1R73.png