Blue Team Training Toolkit (BT3) introduces improvements in current computer network defense analysis training. Based on adversary replication techniques, and with reusability in mind, BT3 allows individuals and organizations to create realistic computer attack scenarios, while reducing infrastructure costs, implementation time and risk. BT3 v2.3 - New Features Blue Team Training Toolkit [...]
Encripto has released the Blue Team Training Toolkit (BT3). Until the past decade, common threats against computer systems could be stopped by anti-virus software and firewalls. Nowadays, these two countermeasures can be easily bypassed by attackers, and they just offer a basic degree of protection. Moreover, IT personnel are required to have specialized skills [...]
"I see dead people... walking around like regular people". With these words, a very young Haley Joel Osment began to tell Bruce Willis his scary secret in The Sixth Sense. That movie scene is in fact an analogy that some network security analysts may relate to. Concepts like network traffic replay could provide a [...]
Maligno is an open source tool designed for security testing and adversary replication. It can also be used for training IT staff in detecting advanced attacks, and to make security testing in corporate networks more realistic. New functionality and improvements have been implemented in the tool during the course of the month, reaching now [...]
Pcapteller is a tool that allows the customization and replay of recorded network traffic. Mainly, the tool can help blue teams training their network security monitoring skills, by reusing resources already available on the Internet (e.g. PCAP files). The tool also helps increasing the degree of realism of the scenarios included in the PCAPs, [...]
Encripto has released a new tool called "Pcapteller", which is a simple tool that allows you to re-create a recorded network traffic scenario that occurred in a foreign network, as it really happened in yours. Basically, the tool reads network packets from a PCAP file, and it replaces a given IP address with one [...]