Education

Train the team that responds at 2am.

Hands-on labs, cyber ranges, and tabletop exercises. Every course concludes with a real-world scenario your team hasn't seen before.

Learning roadmap

A clear path from first response to certified operator.

Defenders — from first-line triage to detection engineering and SOC leadership.

B-101Foundational · 2 days · 6 labs

SOC analyst foundations

PREREQ · None

You will learn

01Triage an alert end-to-end across Splunk, Sentinel, Elastic
02Apply the cyber kill chain to live telemetry
03Hand off incidents with a complete forensic record

Duration2 days

Lab work6 labs

LevelFoundational

Next module

Course catalogue

Browse individual courses.

TrackAllBlueRedPurpleExec

Blue teamIntro2 days

SOC analyst foundations

From alert triage to incident handoff. Hands-on with Splunk, Sentinel, and Elastic.

Open enrollmentEnroll

Blue teamIntermediate3 days

Threat hunting playbooks

Hypothesis-driven hunting with ATT&CK. You'll write detections that survive prod.

Open enrollmentEnroll

Red teamIntermediate5 days

Active Directory attack paths

BloodHound, Kerberoasting, ADCS abuse, delegation chains. Lab-only — no live targets.

Limited capacityEnroll

Red teamAdvanced5 days

Web app exploitation, end-to-end

Past OWASP. Server-side request forgery, race conditions, deserialization, OAuth abuse.

Limited capacityEnroll

Purple teamAll levels1 week

Cyber range · purple team

Your team, our team, one network. Detection engineering against real adversary tooling.

Quarterly cohortsEnroll

Exec teamWorkshopHalf day

Tabletop · board-level

Run a ransomware scenario with your executive team. We facilitate; you decide.

Available on requestEnroll

Live-fire range

A whole environment, just for your team.

We build a replica of your stack — AD forest, cloud tenancy, prod-shape applications — and run a week of real adversary tooling against it. Your blue team defends, our red team attacks, and we close with a joint debrief.

Reserve a cohort

How it runs

CadenceQuarterly cohorts

Duration1 working week

Team sizeUp to 12 people

EnvironmentBuilt to your stack

DebriefJoint with red team

Reserve a slot via the form — we'll confirm the next available cohort window.