Category: Resources

Validate Zscaler Security Service Edge (SSE) security effectiveness with AttackIQ Breach Attack Simulation Tool

Title  Validate  Zscaler Security Service Edge (SSE) security effectiveness with AttackIQ Breach Attack Simulation Tool  Objective  Proactively find and reduce security gaps  Requirements  Windows 10 machine  (Installed with Zscaler Client Connector) AttackIQ Breach Attack Simulation Platform   Scope  One endpoint windows 10 machine Zscaler Client Connector Common test scenarios for content filtering and common fileless malware […]

Ransomware & Delete Volume Shadow Copies

Title  Common Threat Actors TTPs: Execute Ransomware and Delete Volume Shadow Copies  Objective  Auto-Containment for Immediate Blocking  Requirements  Windows 10 Lab Machine   Windows 2019 Server  A C2 platform running with .Net  Basic file encryption of Ransomware  Zscaler Active Defense  Fortinet Fortigate Firewall  Scope  One victim’s windows machine (Joined Domain)  One attacker’s machine  One Windows 2019 […]

Zscaler Active Defense (Deception Technology) with Fortinet Firewall 

Title Zscaler Active Defense (Deception Technology) with Fortinet Firewall Objective Auto-Containment for Immediate Blocking Requirements Windows 10 Lab Machine A C2 platform running with .NetZscaler Active DefenseFortinet Fortigate Firewall Scope One windows machine One attacker’s machineInternal Segment Attack Simulation MITRE Techniques ID Execution – T1059.001 Defense Evasion – T1562.001 Executive Summary Technically, ASK4Key will take […]