Are you ready?

Trend Micro is thrilled to invite you to this CTF event, on November 26 at 09:30 CET, dedicated to Endpoint Detection and Response (EDR).


Capture The Flag is an online game accessible from any computer with a browser. Have fun and explore the EDR capabilities of Apex One to get better understanding and visibility of systems events, behaviours and data.


Challenges will introduce you to tactics & techniques used by hackers in targeted attacks: spear-phishing, drive-by-download, persistence, fileless payload and more. Each challenge is worth a certain number of points. At the end of the session, the team that scored the most points wins!


Trend Micro’s engineering team will host the event and will provide you with the opportunity to meet and network with other Trend Micro customers. Attendees will be grouped as a duo on the day through Discord.


Register for this Capture The Flag session and learn how to:


•  Get a better understanding of threat hunting & investigation with Apex One SaaS and XDR Cloud data lake.

•  Investigate events by searching telemetry for advanced threats using IOCs (Indicators of Compromise) or potential attacks using IOAs (Indicators of Attack).

•  Understand the entry, spread, and depth of attacks.

•  Generate a root cause analysis and remediation plans.

The registration is closed.
Please contact [email protected] if you want to join.

Trend Micro respects your privacy. Read our privacy policy.

What you need to know


Date: Thursday, november 26th 2020

Duration: 09:30 to 15:00 CET (Including lunch break)

Location: Online

Prerequisite: PC (Windows/Linux) or Mac – CTF is entirely browser-based

Participation: This is not mandatory but we recommend to have 2 participants from the same company.

Questions? Contact [email protected]

Section 1 - Column 3. Praesent non velit ut libero condimentum pulvinar sed vitae tellus.
Vestibulum id tristique elit. Suspendisse posuere rutrum sodales. Nam id elit ac sem iaculis lacinia posuere vitae metus.

Section 1 - Column 4. Praesent non velit ut libero condimentum pulvinar sed vitae tellus.
Vestibulum id tristique elit. Suspendisse posuere rutrum sodales. Nam id elit ac sem iaculis lacinia posuere vitae metus.

How does the game work?

CTF Setup

We built the environment so you can access Apex One SaaS online with multiple virtual endpoints deployed on Microsoft Azure.

Security Challenges

CTF scoreboard.png

Play various EDR challenges through our CTF web portal. See your ranking on the live leaderboard and race to the top!

Community

Discord is a great way to chat, have fun and bring supervisors and participants altogether. Once registered, we will invite you to the server.

Section 2 - Column 4. Praesent non velit ut libero condimentum pulvinar sed vitae tellus.
Vestibulum id tristique elit. Suspendisse posuere rutrum sodales. Nam id elit ac sem iaculis lacinia posuere vitae metus.

CTF in numbers

Since our first CTF dedicated to EDR & Apex One back in 2019, numerous customers and partners have participated to improve their skills while having fun!


In the past 12 months we have:


•  Hosted over 20 CTF sessions

•  Completed hundreds of challenges all over Europe

•  Welcomed over 400 participants (customers & partners)

Threat Investigation

Overview

How to describe this doc Pierre? short line at least

Section 3 - Column 4. Praesent non velit ut libero condimentum pulvinar sed vitae tellus.
Vestibulum id tristique elit. Suspendisse posuere rutrum sodales. Nam id elit ac sem iaculis lacinia posuere vitae metus.

EDR resources

EDR Demo

Service Execution


Demonstration of Trend Micro Apex One detecting MITRE ATT&CK tactic T1035 (Service Execution) through its Endpoint Detection and Response (EDR) capabilities.

EDR Demo

Credential Dumping

Demonstration of Trend Micro Apex One detecting MITRE ATT&CK tactic T1003 (Credential Dumping) through its Endpoint Detection and Response (EDR) capabilities.

Threat Investigation

Overview

Read this guide for an overview of the threat investigation features of Apex One.

Section 4 - Column 4. Praesent non velit ut libero condimentum pulvinar sed vitae tellus.
Vestibulum id tristique elit. Suspendisse posuere rutrum sodales. Nam id elit ac sem iaculis lacinia posuere vitae metus.