Successful implementation of the CTF (Capture the Flag) event for future SOC analysts at UNIZA
At the end of the Handling of Security Incidents (HSI) course, students of the study programm Information and Networking Technologies tested their skills in the investigation of cyber security incidents. It was a very good experience for the students in preparation for a possible job in the Cybersecurity Operation Center. Thanks to Mr. Andraško from the company BinariConfidence, which has long-term experience in providing SOC as a Service, certified audits, security management, but also in the preparation of such competitions in the form of Capture the flag (CTF).
The students played with searching the logs and events in the SIEM tool ELK, which as a result had to be assembled into a comprehensive view of a serious cyber security incident and how the attacker moved in the network and what traces he left behind. The most persistent participants left after 3 hours with sweaty foreheads, but collected flags and nice prizes.Thanks to the management of FRI, which recognizes the awardees in their studies and gives the opportunity to get industrial, globally valid certifications, 4 students who finished the HSI course were given the opportunity to refinance the CyberOps Associate certification exam fee, after successfully passing it: