SEC599 focuses on the integration of offensive and defensive strategies in purple team exercises to thwart advanced adversaries. This course explores how to use the kill chain model to identify and disrupt adversary tactics at every stage of an attack, from initial compromise to exfiltration. Participants will learn to emulate sophisticated threat actor techniques while developing and implementing effective defenses, detection systems, and countermeasures. Through hands-on exercises and attack simulations, students will gain expertise in strengthening their security posture by continuously improving their response to advanced persistent threats (APTs) and real-world attack scenarios.
- Introduction and Reconnaissance
- Payload Delivery and Execution
- Exploitation, Persistence, and Command and Control
- Lateral Movement
- Action on Objectives, Threat Hunting, and Incident Response
- APT Defender Capstone
