Path icon Learning Paths
Skills

APT Campaigns

  • Number of Courses10 courses
  • Duration1 hours

In today's rapidly evolving cybersecurity landscape, organizations face increasingly sophisticated and persistent cyber threats. Advanced Persistent Threats (APTs) represent some of the most complex and insidious forms of cyber attacks, often orchestrated by well-funded and highly skilled adversaries. This course delves deep into understanding, detecting, and defending against specific APTs through immersive attack and defense emulations and hands-on labs.

Courses in this path

Volt Typhoon

The volt Typhoon group is seeking to pre-position itself in IT and OT networks for disruptive or destructive cyberattacks against critical infrastructure. With these courses and labs you'll first get hands-on with the tactics, techniques and procedures used by Volt Typhoon as they carried out reconnaissance of networks and devices, dumped credentials from domain controllers, and covered their tracks by removing indicators of compromise. Next you'll learn the practical skills needed to detect and block these activities, and apply tools to catch the attacks in progress. Finally, you'll gain knowledge to implement controls to reduce the risk of these attacks taking place in your own environment.

Advanced Persistent Threat Brief: Volt Typhoon

  • by Matthew Lloyd Davies
  • 8m Duration

Volt Typhoon: T1059.003 Command and Scripting Interpreter Emulation

  • by Matthew Lloyd Davies
  • 6m Duration

Volt Typhoon: T1059.003 Command and Scripting Interpreter Detection

  • by Michael Teske
  • 10m Duration

Volt Typhoon: T1003.003 Credential Dumping Emulation

  • by Matthew Lloyd Davies
  • 7m Duration

Volt Typhoon: T1003.003 Credential Dumping Detection

  • by Michael Teske
  • 7m Duration

Volt Typhoon: T1070.003 Indicator Removal Emulation

  • by Matthew Lloyd Davies
  • 7m Duration

Volt Typhoon: T1070.003 Indicator Removal Detection

  • by Michael Teske
  • 8m Duration

Volt Typhoon: Preventative Control

  • by Michael Teske
  • 12m Duration

Sandworm

Sandworm is a highly sophisticated and persistent Advanced Persistent Threat (APT) group linked to Russian military intelligence (GRU). Active since at least 2009, it has been responsible for several major cyberattacks, particularly targeting Ukraine, NATO members, and other global entities. With these courses and labs you'll first get hands-on with the tactics, techniques and procedures used by Sandworm. Next, you'll learn the practical skills needed to detect and block these activities, and apply tools to catch the attacks in progress. Finally, you'll gain knowledge to implement controls to reduce the risk of these attacks taking place in your own environment.

Advanced Persistent Threat Brief: Sandworm Team

  • by Matthew Lloyd Davies
  • 8m Duration

Sandworm: Web Shell Emulation

  • by Matthew Lloyd Davies
  • 6m Duration

Learn with the best

Matthew Lloyd Davies
Matthew Lloyd Davies
Matt is a cyber security author and researcher here at Pluralsight. A certified penetration tester and incident handler, he created Pluralsight's CompTIA Pentest+ Specialized Attacks courses as well our courses on wireless, ICS/OT and hardware hacking. Matt has also helped to build our security labs portfolio; labs that help you get hands-on to understand the threats and vulnerabilities your organization faces today. With a background in Chemical Engineering, Matt's focus is on the security ... more
Michael Teske
Michael Teske
Michael Teske is a principal security author with Pluralsight helping people build their skills toolkit. Michael has 25+ years of experience in the IT Ops/Cloud/Cybersecurity industry including 17 of those years as an IT instructor at a technical college, focusing on Microsoft server infrastructure, security and automation. Michael attained his MBA with an emphasis in Computer Information System Security several years ago. Michael still keeps up with the industry as an independent consultant in ... more

Join our learners and upskill
in leading technologies