Elastic-Case Challenge

An attacker was able to trick an employee to download a suspicious file and run it, this lets the attacker compromise the system, along with that most of the systems are not up to date, the attacker was able to pivot to another system, and compromises the company. As a SOC analyst, you are assigned to investigate the incident using Elastic as a SIEM tool and help the team to kick out the attacker.

Click Here To Visit The Challenge.