Effective Linux EDR/XDR Evaluation Testing for Red and Blue Team [2117]

In today's Linux threat landscape, enterprises face increasingly sophisticated, targeted attacks. To effectively combat these threats, we must enhance our ability to detect malicious activity, inform threat-hunting processes, and understand attacker behavior.

This training aims to show and describe in detail chunks of different Linux offensive executions we can usually find during real attack campaigns. It includes the Offensive Linux Playbook, which is a central knowledge base about attack surfaces in Matrix style. It is extremely user-friendly and has full-text search functionality to help you quickly find specific topics.

This training will give you great insight into how to choose and evaluate the best Linux EDR and how to effectively protect your critical Linux environments by learning the offensive side.

This class is intended for students who have a basic understanding of Linux and have to deal with advanced threats. Furthermore, the course is also interesting for experienced DFIR/SOC/CERT Players who aim to dig deeper into understanding Linux internals and corresponding network attack analysis techniques, detection, and response.