HackTheBox ‘Intro to Blue Team’ — One Thing Learned From All 9 Labs

In this video, I go through each lab in the HackTheBox ‘Intro to Blue Team’ track. This track was created by HackTheBox and provides nine excellent, beginner friendly DFIR and SOC labs that can be investigated fully offline.

These boxes cover a few of the core concepts, tools and methodologies necessary to be an effective SOC Analyst and give you a good taste of what the process of DFIR actually looks like.

The labs featured in this Track are:

1. Chase — Forensics, PCAP analysis.
2. Event Horizon — Forensics, Phishing investigation.
3. Export — Forensics, Memory analysis.
4. Insider — Forensics, insider threat analysis
5. Logger — Hardware forensics, USB log analysis.
6. Lure — Forensics, OLE.
7. No Place To Hide — Forensics, RDP Bitmap cache analysis.
8. Persistence — Forensics,
9. Ransom — Reverse Engineering, ransomware analysis.