{"product_id":"offensive-cyber-security-operations-mastering-breach-and-adversarial-attack-simulation-engagements-abhijith-abx-dctlv2026","title":"Offensive Cyber Security Operations: Mastering Breach and Adversarial Attack Simulation Engagements -  Abhijith “Abx” B R - DCTLV2026","description":"\u003cp dir=\"ltr\"\u003e\u003cmeta charset=\"utf-8\"\u003e\u003cstrong\u003eName of Training\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Offensive Cyber Security Operations: Mastering Breach and Adversarial Attack Simulation Engagements \u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eTrainer(s)\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Abhijith \"Abx\" B R\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eDates\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eAugust 10-11, 2026\u003cbr\u003e\u003c\/span\u003e\u003cspan\u003e\u003cstrong\u003eTime:\u003c\/strong\u003e 8\u003c\/span\u003e\u003cspan\u003e:00 am to 5:00 pm \u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eVenue\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eLas Vegas Convention Center\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eCost\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003e$2,500 (USD)\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eShort Summary:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eMaster advanced breach and adversary attack simulation techniques in a guided, defended lab covering real world TTPs from initial access through exfiltration, with telemetry correlation and step-by-step modules. Build custom ransomware scenarios, run full breach simulations, and convert detection gaps into actionable improvements. Upon successful completion of the proficiency exam, participants will earn Proficiency certificate, validating their ability to design and execute enterprise-grade breach simulations.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eThis is an updated content version of the CBAS training program, with Cobalt Strike used extensively as the primary C2 framework. New modules cover more defense evasion, cloud adversary simulation, supply chain attack simulation, more control validation exercises, and AI assisted adversary simulation exercises, including the use of AI systems to generate payloads, ransomware campaigns and running autonomous attack simulations.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Description: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eThe hands-on training has been created to provide the participants with a better understanding of offensive security operations, advanced breach and adversary simulation engagements. The goal is to enable the participants to simulate their adversaries based on the industry which their organization is in, both known and unknown adversaries. This release is an updated version of the CBAS training program, with Cobalt Strike used extensively as the primary command-and-control framework across the lab exercises and also covers the use of AI for offensive cyber security operations.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eParticipants will learn to emulate various threat actors safely in a controlled, enterprise-level environment. In addition to understanding offensive tradecraft and TTPs, participants will gain critical insight into how adversaries operate, building custom ransomware simulation capabilities, executing dynamic adversary simulation plans, test, validate, and improve their own organization's cyber defenses.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eThis iteration introduces new modules covering defense evasion, cloud adversary simulation, supply chain attack simulation, and a range of control validation exercises. AI assisted adversary simulation is heavily integrated throughout the participants will use AI systems to generate payloads, build evasive tooling, and orchestrate full ransomware campaigns end-to-end.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003ePerforming such attack simulation engagements not only sharpens offensive skills but also enables defenders to proactively identify gaps, assess detection capabilities, and build more resilient security posture.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eThis training is designed to benefit both offensive and defensive security professionals. Offensive practitioners will enhance their red teaming and simulation planning expertise, while defensiveprofessionals such as SOC analysts, detection engineers, and blue teamers will gain visibility into attacker behaviors, understand real-world evasion techniques, and learn how to harden their environments more effectively.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eAll machines in the lab environment will be equipped with AV, web proxies, EDR, and other defense systems. The training management platform will provide modules and videos for each attack vector used in the lab environment, alongside a step-by-step walkthrough of the attack paths. This ensures participants can correlate each attack technique with defensive telemetry and response opportunities.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eThe training provides the participants with access to a breach simulation lab range, where they would be able to perform a full red team-attack simulation scenario in guided mode. Each step of the attack chain would be explained along with the TTPs used, starting from initial access to exfiltration.\u003c\/p\u003e\n\u003cp\u003e\u003cspan\u003e\u003cstrong\u003eCourse Outline: \u003c\/strong\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003e1. Taking the first step: Understanding the fundamentals. \u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli class=\"p1\"\u003eIntroduction to offensive cyber security operations\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAdversary Emulation vs Adversary Simulation vs Red Teaming vs Purple Teaming\n\u003cul\u003e\n\u003cli class=\"p1\"\u003edefinition, scope, use cases, guidelines\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAssessing return on investments (ROI) for Cyber Defense Products\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eIntroduction to Breach and attack simulation (BAS) platforms\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eEvolution of threat-actors, state-sponsored, criminal groups, hacktivist, insider attacks, motivation and capability mapping\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eCyber threat intelligence, Threat-informed defense, Cyber defense systems, blue teams and Importance of purple teaming\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eFrameworks and standards, MITRE ATT\u0026amp;CK matrix (updated to v19), Cyber Kill chain, Diamond Model, Pyramid of pain, MITRE D3FEND model, MITRE ATT\u0026amp;CK Navigator and custom layers.\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAdversarial Exposure Validation (AEV) and Continuous Adversary Exposure Validation\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eBreach Simulation Engagement scoping, rules of engagement, legal considerations\u003c\/li\u003e\n\u003cli class=\"p1\"\u003e\n\u003cspan class=\"s1\"\u003eH\u003c\/span\u003eow to successfully build an offensive security team in your organization to perform breach and adversary attack simulation engagements\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003e2.    Introduction to adversary emulation engagements \u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli class=\"p1\"\u003eKicking off Adversary emulation engagements in your organization\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eCollecting actionable cyber threat intelligence from public sources\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAI assisted CTI processing; collecting, analyzing, and operationalizing threat intel into adversary emulation plans using LLMs\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eIdentifying and selecting TTPs to emulate, building an emulation plan\u003c\/li\u003e\n\u003cli class=\"p1\"\u003ePerforming and executing adversary emulation engagements to test cyber defenses, Testing endpoint security controls with adversary emulation techniques.\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eVarious Open-source and Commercial projects for effective emulation of threats. (Only a few tools and products and mentioned in the outline)\n\u003cul\u003e\n\u003cli class=\"p1\"\u003eAdversary emulation - atomic red team, Executing atomic red team, prerequisites, air gapped network execution, customization\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAdversary emulation - MITRE Caldera, Deploying caldera in your organization’s environment, Emulating threat-actors with Caldera and Emulating a few known threat-actors with Caldera, Customizing Caldera, Building custom abilities and operations\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAdversary Emulation with VECTR, Using VECTR for adversary emulation planning, execution, generating reports and documentation, purple teaming.\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAdversary Emulation with RedTeamSimmer project, Orchestrating adversary emulation through RedTeamSimmer; executing atomic red team cases remotely, building and contributing new test cases to the framework\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eManual adversary emulation exercises for various threat-actor and adversary groups. Building targeted adversary emulation plans for testing various security controls within the organization\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eBuilding technique emulation binaries with AI, scoped binary generation for grouped technique execution\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eTarget OS based emulation plans for Windows, macOS, and Linux. Platform-specific TTPs, telemetry differences, tooling, emulation plans\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003e3.    Breach and adversary simulation \u003c\/strong\u003e\u003cbr\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroducing Breach and adversary simulation range lab environment\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eAdversary and red team infrastructure\n\u003cul\u003e\n\u003cli\u003eBuilding efficient adversary infrastructure: This module will give an overview of building production ready red team infrastructure to bypass and validate the defenses of your organization.\u003c\/li\u003e\n\u003cli\u003eredirectors, domain fronting, malleable profiles, operator OPSEC, payload servers.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli\u003eCommand and Control\n\u003cul\u003e\n\u003cli\u003eCobalt Strike C2 101 and advanced use cases, Malleable C2 profiles, BOFs, aggressor scripts, External C2\u003c\/li\u003e\n\u003cli\u003eOpen-source C2 frameworks: Mythic, Havoc, AdaptixC2 , Sliver - comparison, infrastructure build, pros and cons\u003c\/li\u003e\n\u003cli\u003eBuilding adversary infrastructure for Cobalt Strike C2 and Open-source C2\u003cbr\u003eframeworks for internal operations\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli\u003eBreach and attack simulation guided walkthrough\n\u003cul\u003e\n\u003cli\u003eThe lab will have an exact replica of enterprise environment along with security controls. Each phase of the attack path in the red team lab will be demonstrated as a guided lab walkthrough.\u003c\/li\u003e\n\u003cli\u003eCommand and control (C2), Gaining initial access to the environment – ClickFix, browser-in-browser, OAuth consent Phishing, Container abuse etc.\u003c\/li\u003e\n\u003cli\u003ePersistence and privilege escalation, Defense evasion to execute payloads, Credential harvesting, Internal recon and discovery, Lateral movement techniques, Data collection and exfiltration channels.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eManual Threat actor, Adversary Groups, APT (Dynamic Simulation with Cobalt Strike C2\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAlong with the hands-on simulation range, the following modules will also be covered. There will be a full dynamic attack chain walkthrough of Active Directory infrastructure in defended environment.\u003c\/li\u003e\n\u003cli\u003eSimulating Common Active Directory attacks – Recon, Kerberoasting attacks, unconstrained\/constrained delegation, Silver\/Golden tickets, ADCS, DCSync, lateral movement, Credential access, bypassing common AD security configuration and defenses, Microsoft Entra ID - Entra Connect compromise, pass-through auth abuse, token theft, conditional access bypass etc.\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eTesting endpoint security controls, simulating defense evasion techniques and tools (SysWhispers, AMSI bypass, ETW, Process Injection variants, Custom Shellcode loaders, P\/D\/Invoke, Direct\/indirect Syscalls, Hells gate, Tartarus Gate, module stomping, thread name spoofing, call stack spoofing, etc and more.) EDR Bypass Simulation techniques\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eBuilding a collection of operational tools and techniques for effective defense evasion gap \u003cspan style=\"font-family: -apple-system, BlinkMacSystemFont, 'San Francisco', 'Segoe UI', Roboto, 'Helvetica Neue', sans-serif; font-size: 0.875rem;\"\u003etesting\u003c\/span\u003e\n\u003cul\u003e\n\u003cli class=\"p1\"\u003eLOLBINs and LOLBAS - cataloguing, simulating use cases, building detections from emulation telemetry, BYOVD attacks - vulnerable driver catalogues, EDR-Killer simulations, building a BYOVD emulation plan from scratch\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eBuilding binaries with AI assisted custom made shell code loader generation framework for defense evasion testing\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eCobalt Strike defense evasion exercises, User Defines Reflective Loaders, Beacon tuning, sleep masks, in-memory execution techniques etc.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eUsing adversary simulation to test and assess AV , EDR systems, security control validation, simulating data exfiltration, reporting and correlation with SIEM systems.\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAdversary simulation against email security controls - payload delivery and bypass testing\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAdversary simulation against web proxies and SWGs - C2 payload delivery and data exfiltration channel testing\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eCloud infrastructure adversary emulation and dynamic simulation for AWS, Azure and GCP\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eSupply chain attack simulation with npm\/PyPI\/GitHub compromise scenarios (In a controlled environment)\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eSIEM correlation, alert tuning, detection gap reporting, Continuous adversary exposure validation in practice. Scheduled emulation, automated payload execution\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eIncident response plans and validating them with adversary simulation exercises\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eIntro to Adversary attack simulation against AI systems and AI agents, Mapping AI-system attacks to OWASP LLM Top 10 and MITRE ATLAS\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003e4.    Ransomware Simulation [1 hour]\u003c\/strong\u003e\u003cbr\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmulating ransomware in a controlled environment, Custom build ransomware simulation for assessing endpoint security controls and defense systems.\u003c\/li\u003e\n\u003cli\u003eAI assisted ransomware simulation, per-engagement payload variants, Threat actor specific TTP chaining exercises, How threat actors use AI in real ransomware operations and how to emulate them.\n\u003cul\u003e\n\u003cli\u003eBuilding a ransomware simulation platform from scratch architecture, BOFs for encryption simulation, double-extortion modelling, backup destruction, data wiper simulation\u003c\/li\u003e\n\u003cli\u003eAdding guardrails and controlled execution\u003c\/li\u003e\n\u003cli\u003eAPT-style ransomware simulation\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cmeta charset=\"utf-8\"\u003e\u003cstrong\u003e5.    AI in Offensive Operations\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe state of AI use in offensive operations, Writing and porting exploits and emulation scenarios using AI agents.\u003c\/li\u003e\n\u003cli\u003eBuilding an AI agent system for AI assisted adversary emulation - agent architecture, tool integration, sandboxing, security controls and guardrails. AI assisted malware and technique-emulation binary development.\u003c\/li\u003e\n\u003cli\u003eDesigning, building and executing AI Assisted breach and adversary simulation exercise\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003e6.    Cyber defense teams: Launching your first purple teaming exercise\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eConnecting all dots from the previous modules to perform a purple team engagements\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eFrameworks, standards, and prerequisites\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eCarrying out purple team engagement in your organization\u003cbr\u003e\n\u003cul\u003e\n\u003cli\u003ePlanning, executing, collaborative analysis, Detection engineering Reporting and presentation.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli\u003eDefensive implications and detecting AI-generated artefacts in your environment\u003c\/li\u003e\n\u003cli\u003eDetection engineering and detection-as-code, Mapping TTPs to detections using DeTT\u0026amp;CT and Sigma\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003e7.    Capture the flag competition and badges\u003c\/strong\u003e\u003cbr\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCTF competition for the participants\u003c\/li\u003e\n\u003cli\u003eChallenge coins\u003c\/li\u003e\n\u003cli\u003e\n\u003cp class=\"p1\"\u003eCBAS Digital badges\u003c\/p\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eDifficulty Level:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eBeginner to Advanced\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eBeginner Definition - The student has an interest in the topic presented and general technology knowledge that a power user or undergraduate student may have acquired.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eIntermediate Definition - The student has education and some experience in the field and familiarity with the topic being presented. The student has foundational knowledge that the course will leverage to provide practical skills on the topic.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eAdvanced Definition - The student is expected to have significant practical experience with the tools and technologies that the training will focus on.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSuggested Prerequisites:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eBasic understanding of offensive security tradecraft and adversary emulation\u003cbr\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat Students Should Bring: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eA Windows\/Linux laptop with at least 16 GB of RAM, Access to Internet\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat the Trainer Will Provide:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli class=\"p1\"\u003eCourse material (PDF),\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eLab access, training portal access to lab guides\u003c\/li\u003e\n\u003cli style=\"font-weight: bold;\" class=\"p1\"\u003e\u003cstrong\u003eCertified breach and adversarial attack simulation specialist (CBAS) certification – DEF\u003c\/strong\u003e\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eCON Edition (Proficiency exam required)\u003cspan class=\"s1\"\u003e•\u003c\/span\u003e\u003cspan class=\"s2\"\u003e \u003c\/span\u003eDigital badges and challenge coins (Proficiency exam required)\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eCustom malware\/ransomware simulation\/loaders and payloads code samples, Access to private code repositories\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eAdversary simulation plans and playbooks\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eDownloadable VM images for offline practice\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eDetection engineering resources (Sigma rules, EQL\/KQL queries)\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eReporting templates and sample reports\u003c\/li\u003e\n\u003cli class=\"p1\"\u003ePost-training reference toolkit and exercises (curated open-source tools and scripts)\u003c\/li\u003e\n\u003cli class=\"p1\"\u003eOne year of training portal access to continuously updated lab guides, training materials, and code samples.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong style=\"font-family: -apple-system, BlinkMacSystemFont, 'San Francisco', 'Segoe UI', Roboto, 'Helvetica Neue', sans-serif; font-size: 0.875rem;\"\u003eTrainer(s) Bio:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eAbhijith B R, also known by the pseudonym Abx, has more than a decade of experience in the offensive cyber security industry, serves as the Director of BreachSimRange, and Founder of Adversary Village.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eHe is a professional hacker, offensive cyber security specialist, red team consultant, security researcher, trainer and public speaker.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eCurrently, he is building BreachSimRange.io as the Founder and Director and is involved with multiple organizations as a consulting specialist to help them build offensive cyber security operations programs, improve their current security posture, assess cyber defense systems, and bridge the gap between business leadership and security professionals.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eIn the past, he led the offensive security team at Envestnet, Inc., held the position of Deputy Manager - Cyber Security at Nissan Motor Corporation, and prior to that, he worked as a Senior Security Analyst at EY.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eAs the founder of Adversary Village (https:\/\/adversaryvillage.org\/), Abhijith spearheads a community initiative focused on adversary simulation, adversary-tactics, purple teaming, threat actor\/ransomware research-emulation, and offensive cyber security. Adversary Village is part of DEF CON Villages and organizes hacking villages at prominent events such as the DEF CON Hacking Conference, RSA Conference etc.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eAbx also acts as the Lead of an official DEF CON Group named DC0471. He is actively involved in leading the Tactical Adversary project (https:\/\/tacticaladversary.io\/), a personal initiative that centers around offensive cyber security, adversary attack simulation and red teaming tradecraft.\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eAbhijith has spoken and delivered trainings at various hacking and cyber security conferences such as, DEF CON hacker convention - Las Vegas, RSA Conference - San Francisco, The Diana Initiative -Las Vegas, DEF CON 28 safemode - DCG Village, Opensource India, Security BSides Las Vegas,\u003c\/p\u003e\n\u003cp class=\"p1\"\u003eBSides San Francisco, BSides Tampa, Hack Space Con – Kennedy space center Florida, Nullcon – Goa, c0c0n – Kerala, BSides Delhi, DEF CON Singapore etc.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eProficiency Exam Option:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eThis course has the option for a proficiency certificate add-on. \u003c\/p\u003e\n\u003cp\u003e\u003cspan style=\"text-decoration: underline;\"\u003eExam Format\u003c\/span\u003e: Practical, hands-on lab assessment\u003cbr\u003e\u003cspan style=\"text-decoration: underline;\"\u003eTime Allowed\u003c\/span\u003e: 90 minutes\u003cbr\u003e\u003cspan style=\"text-decoration: underline;\"\u003ePassing Criteria\u003c\/span\u003e: Minimum 70% overall performance\u003cbr\u003e\u003cspan style=\"text-decoration: underline;\"\u003eExam attempts\u003c\/span\u003e: 2\u003c\/p\u003e\n\u003cp\u003eStudents are required to design and execute a custom, realistic attack simulation plan against a controlled enterprise lab with EDR, SIEM, AV, and other defenses. From a set of predefined offensive and red team scenarios, one must be selected and approved by the trainer for execution.\u003c\/p\u003e\n\u003cp\u003eThe exam is divided into three parts:\u003c\/p\u003e\n\u003col\u003e\n\u003cli\u003e\n\u003cspan style=\"text-decoration: underline;\"\u003eDesign and building\u003c\/span\u003e: Build a real-world attack simulation plan using custom payloads and procedures. The plan must be submitted to and approved by the trainer before execution.\u003c\/li\u003e\n\u003cli\u003e\n\u003cspan style=\"text-decoration: underline;\"\u003eExecution and correlation\u003c\/span\u003e: Execute the adversary simulation plan, correlate SOC\/EDR\/SIEM telemetry, map detections, document gaps, and create custom rules for undetected techniques.\u003c\/li\u003e\n\u003cli\u003e\n\u003cspan style=\"text-decoration: underline;\"\u003eRe-test and validation\u003c\/span\u003e: Re-execute the attack with defensive improvements applied. At least 70% of the previously executed attacks must now be prevented to demonstrate improved detection and defensive capability.\u003c\/li\u003e\n\u003c\/ol\u003e\n\u003cp\u003eThe final report will be reviewed and assessed by the trainer against predefined scoring criteria. The objective of this exam is to ensure students can both attack and defend, validating defenses from an offensive perspective, closing detection gaps, and strengthening overall resilience. This training and proficiency exam confirms that students can carry out advanced breach simulations and strengthen organizational cyber defenses.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003ePlease reach out to training@defcon.org for any questions related to the proficiency exam and certificate option.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eRegistration Terms and Conditions: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are refundable before July 11, 2026, minus a non-refundable processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBetween July 11, 2026 and August 5, 2026 partial refunds will be granted, equal to 50% of the course fee minus a processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll trainings are non-refundable after August 5, 2026.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTraining tickets may be transferred to another student. Please email us at training@defcon.org for specifics.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIf a training does not reach the minimum registration requirement, it may be cancelled. In the event the training you choose is cancelled, you will be provided the option of receiving a full refund or transferring to another training (subject to availability).\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFailure to attend the training without prior written notification will be considered a no-show. No refund will be given.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDEF CON Training may share student contact information, including names and emails, with the course instructor(s) to facilitate sharing of pre-work and course instructions. Instructors are required to safeguard this information and provide appropriate protection so that it is kept private. Instructors may not use student information outside the delivery of this course without the permission of the student.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy purchasing this ticket you agree to abide by the \u003c\/span\u003e\u003ca href=\"https:\/\/defcon.org\/html\/links\/dc-code-of-conduct.html\"\u003e\u003cspan\u003eDEF CON Training Code of Conduct\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e and the registration terms and conditions listed above.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eSeveral breaks will be included throughout the day. Please note that food is not included.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll courses come with a certificate of completion, contingent upon attendance at all course sessions. Some courses offer an option to upgrade to a certificate of proficiency, which requires an additional purchase and sufficient performance on an end-of-course evaluation.\u003c\/span\u003e\u003c\/p\u003e","brand":"Las Vegas 2026","offers":[{"title":"Course only - Aug 10-11","offer_id":47663569207514,"sku":null,"price":2500.0,"currency_code":"USD","in_stock":true},{"title":"Course + Proficiency Exam - Aug 10-11","offer_id":47663569240282,"sku":null,"price":2800.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0629\/2088\/4442\/files\/cbas-badge.png?v=1780246158","url":"https:\/\/training.defcon.org\/products\/offensive-cyber-security-operations-mastering-breach-and-adversarial-attack-simulation-engagements-abhijith-abx-dctlv2026","provider":"defcontrainings","version":"1.0","type":"link"}