Blue Team Assessment Platform

Measure Real
Cyber Defence
Capabilities

SOC
CTI
DFIR
About

What is CyberStrike Arena?

A structured assessment platform that evaluates Blue Team analysts through realistic cyber incident scenarios — designed to reveal where each analyst performs best.

What it is
A Blue Team assessment platform where analysts investigate real-world cyber attack scenarios and answer structured questions across Security Operations, Threat Intelligence, and Forensics disciplines.
Who it's for
Security Operations analysts, Cyber Threat Intelligence specialists, and Digital Forensics investigators. Designed to identify Domain Fit — where each analyst performs best — and surface skill development opportunities.
How it works
The assessment lead opens a session. Participants log in, investigate a simulated cyber incident, and answer structured questions independently. Results are compiled into a full report at the end of the session.
Capabilities

Built for Assessment Integrity

Every feature is designed around one goal — accurate, tamper-resistant measurement of real defensive skills.

Penalty-Based Scoring
25% deducted per wrong attempt. Maximum 3 attempts per question. Correct on the second attempt scores 75%. Rewards accuracy over guessing.
Scoring
Integrity Monitoring
Session focus is monitored throughout. Any deviation is logged at one of four severity levels and included in the final report.
Integrity
Domain Fit
Each participant is assigned a Domain Fit — SOC, CTI, or DFIR — based on their strongest department performance. Drives team placement recommendations.
Analytics
Live Dashboard
Real-time scoreboard, per-department averages, participant status, and integrity event log — all visible to the assessment lead throughout the session.
Real-time
Process

How It Works

Three steps from session start to results report.

Session Opens
The assessment lead selects a scenario and opens the session. Participants receive their access credentials and log in independently from their workstations.
Investigation
Each participant investigates the incident scenario and answers structured questions across SOC, CTI, and DFIR disciplines.
Results Report
After the session closes, the assessment lead exports the full results — individual scores, Domain Fit assignments, penalty breakdown, and integrity flags.
Disciplines

Three Disciplines, One Platform

Questions are grouped by discipline. Domain Fit is assigned based on where each participant performs best.

SOC
Security Operations
Threat detection, alert handling, and real-time incident response skills.
Distinguishing true positives from false alarms
Understanding attacker behaviour and process chains
Identifying command-and-control communication
Detecting lateral movement across systems
Recognising credential theft techniques
CTI
Cyber Threat Intelligence
Adversary understanding, threat correlation, and intelligence-led analysis.
Identifying and validating indicators of compromise
Attributing attacks to known threat actors
Mapping techniques to the MITRE ATT&CK framework
Classifying malware families and tooling
Assessing relevance to the regional threat landscape
DFIR
Digital Forensics & IR
Evidence analysis, persistence detection, and full incident reconstruction.
Analysing suspicious binaries and identifying packers
Detecting persistence mechanisms across multiple locations
Interpreting Windows forensic artefacts
Conducting memory analysis
Reconstructing a complete attack timeline
Get Started

Ready to begin?

Need help? support@cyber-strike.cc