Blue Team Proving Ground

Prove your
instincts.

Timed investigations across SOC, CTI and DFIR. Real telemetry, real artifacts, one arena. Your skills — measured, scored, and sharpened.

Investigation Tools
Real tools. Real investigation.

Analysts work in the same environments they'd use on the job.

SOC
SIEM
Query the scenario's live log telemetry, pivot on indicators, and triage alerts.
CTI
CTI Platform
Look up indicators, build threat context, and map adversary behaviour.
DFIR
Forensic VM
Examine host evidence from the compromised machines with a full forensic toolset.
Get Started
Ready to Begin?

Register as a player to participate in the next assessment, or contact the Assessment Lead for reviewer access.