Purple Teaming and practical threat emulation

This one-day course covers basics of threat emulation and cooperative security testing – or “purple teaming” – in modern organizations. It teaches trainees about methodologies relevant for threat emulation and purple teaming, as well as how to coordinate cooperative security tests and use specialized tools for threat emulation on various platforms.


Contents

  • Different types of security tests and threat emulation activities
  • Processes and technologies specific to threat emulation and purple teaming
  • Methodologies for cooperative and adversary threat emulation
  • Requirements for organizational roles participating in threat emulation and purple teaming
  • How to build an effective, enterprise-level purple teaming program
  • Automated and manual testing of detection analytics and solutions
  • Tools and platforms for threat emulation and purple teaming
    • Atomic Red Team
    • MITRE CALDERA
    • VECTR
    • Relevant C2 frameworks
    • LOLBAS

The course is aimed at

  • Penetration testers and other offensive security specialists interested in threat emulation and purple teaming
  • Security analysts and other SOC specialists
  • Detection engineers
  • SIEM implementation specialists

Prerequisites

  • User-level experience with Windows
  • User-level experience with Linux
  • Experience with programming/scripting
  • Familiarity with most common networking protocols (TCP, UDP, IP, ICMP, DNS, HTTP, etc.)
  • Familiarity with common security technologies (IDS/IPS, EDR, antivirus, etc.)

Additional requirements

A properly configured laptop with installed hypervisor capable of allocating at least 4 vCPUs, 8 GB RAM and 100 GB of storage space to two virtual machines used during the training is required to participate in an online version of the course. Additionally, a virtual machine based on the Windows 10 operating system must be individually prepared by each participant according to provided instructions before the start of the course.

Materials

Trainees will receive an electronic version of the study materials.

Duration

1 day

Currently available training dates

Date Location Language Price (before VAT)
3. 11. 2025 Prague Czech 19 500 CZK Registration

If the currently available dates don’t suite you, or if you are interested in a private run of the training for your organization, don’t hesitate to contact us.