Blue Team Training Toolkit (BT3) is designed for network analysis training sessions, incident response drills and red team engagements. Based on adversary replication techniques, and with reusability in mind, Blue Team Training Toolkit allows individuals and organizations to create realistic computer attack scenarios, while reducing infrastructure costs, implementation time and risk.
New Release – Better Usability
Blue Team Training Toolkit version 2.6 introduces multiple new API-related commands, UI improvements and other minor adjustments.
New Commands
Multiple new commands have been implemented for the BT3 modules Maligno, Pcapteller and Mocksum, such as:
- Display detailed information about training materials
Each module now contains a brand new “info” command that lets you display detailed information about a given training material. The command expects the training material’s name as an argument.
For example, if you would like to know more about the “kovter_trojan” training material available for Pcapteller, you could use the command “info kovter_trojan ” in order to retrieve further details about it.
You should also note that the information presented by the command includes a link to the BT3 training content library, which presents even more details about the training material, including produced IDS alerts, relevant network traffic and artifacts. This will let you know what you can expect from the training material during a training session or a red team engagement. Maligno and Mocksum implement equivalent commands for their training material type.
- Better overview of training materials
Each module now contains commands that let you see if available training material is free or premium. For example, you can use the commands “show profiles free” and “show profiles premium” in your Maligno module, respectively. Pcapteller and Mocksum also implement equivalent commands for their training material type.
- History of training materials downloaded from the cloud
With the new “show downloads” command, you can display a history of training materials that you have downloaded from the cloud.
- The command will give you a detailed overview of the downloads associated with your Blue Team Training Toolkit API account.
Check out the BT3 user guide, or the Blue Team Training Toolkit Video Series for practical examples.
You can also download the new version of the Blue Team Training Toolkit and test it for yourself!