🔐 Early Bird Tickets Live • Training 24-26 Oct 2026 • Conference 27 Oct 2026
CETP Certification
Advanced Windows Tradecraft - Evasion Techniques for Red Teams
(Advanced Edition)
Learn to Bypass Defenses in Modern Enterprise Environments
This 3-day hands-on red team training helps you to learn to bypass defenses in modern enterprise environments. Delve deep into the techniques used to bypass endpoint countermeasures like EDRs, Sysmon, ETW, ASR, DSE, and more.
Reverse EDR Internals and Modern Endpoint Defenses
Develop Kernel-Level Offensive and Rootkit Techniques
Bypass ETW, PPL, DSE, ASR, and Sysmon Protections
Earn the CETP certification
INSTRUCTOR
Altered Security Trainer
LOCATION
Hilton EGL, Bangalore
DATE
24 Oct - 26 Oct 2026
Limited seats available • Limited-time discount active

Advanced Windows Tradecraft
WHY THIS TRAINING
Built for Advanced Windows Attack and Evasion Tradecraft
Designed to equip information security professionals with the expertise needed to bypass defenses in modern enterprise environments.
3 Days
Intensive, hands-on training experience
Evasion Lab
Practice EDR reversing, kernel techniques, and modern defense bypass methods.
100% Practical
Learn by performing real techniques
Reverse EDR's Internals using IDA Pro and WinDbg
Understand EDR telemetries, static detection bypass, and code virtualization.
Attack ETW Internals and Process Protection Level
Disable ETW providers, manage protection levels, and dump LSA protected LSASS.
Exploit Vulnerable Drivers and Killer Drivers
Reverse kernel primitives and exploit killer drivers to kill EDR processes.
Reverse ASR Rules and Attack Sysmon
Bypass UAC and apply anti-debugging, anti-disassembling, and anti-sandbox techniques.
TRAINING OVERVIEW
Everything Included to Build Advanced Windows Offensive Tradecraft
Hands-on Advanced Windows tradecraft training covering EDR internals, kernel exploitation, and modern defense evasion techniques.
Enterprise Windows lab environments
Advanced defense evasion techniques
Modern offensive tradecraft techniques
8 Weeks of Enterprise Lab Access
Continue practicing and refining your skills in enterprise-grade lab environments after training.
50 Flags To Be Collected
Test and reinforce your modern offensive tradecraft techniques through practical challenges.
26 Hands-On Practical Lab Exercises
Hands-On labs designed to simulate real enterprise attack scenarios.
Lifetime Course Access
Lifetime access to learning aid like course slides, lab manual, walk-through videos and lab support till the lab access is active
COURSE CURRICULUM
Advanced Windows Tradecraft - Evasion Techniques for Red Teams
Understand, analyze, and exploit the intricacies of Windows and EDR internals, using reverse-engineering tools like IDA Pro and WinDbg. They can successfully write and deploy custom rootkits, and exploit vulnerable drivers to evade defenses.
4 Structured Modules
Evasion Techniques
Enterprise-grade Lab
CERTIFICATION
Earn Industry-Recognized CETP Certification
CETP Certification
Earn CETP Certification for Evasion Techniques
-
Industry recognized Red Team certification
-
Hands-On Windows Offensive Tradecraft
-
Demonstrates EDR, rootkit, and driver exploitation expertise.
Course Completion Certificate
Get a Course Completion Certificate
-
Issued after successfully completing the training
-
Confirms hands-on lab participation
-
Validates expertise in Windows internals, EDR analysis, and defense evasion techniques.
TRAINING SCHEDULE
3-Day CETP Training Schedule
Join an intensive 3-day hands-on training with full-day sessions designed for practical, real-world learning.
24 Oct – 26 Oct 2026
Daily 8-hour sessions | 09:00 AM - 05:00 PM IST
24
Oct 2026
Day 01
Windows Internals, EDR Internals, Static Detection Bypass, Initial Access Techniques, Introduction to Windows Kernel Programming
25
Oct 2026
Day 02
Road to Kernel, EDR Killing, Attack on EDR's Kernel Callbacks, Attack on ETW, PP & PPL Bypass, Extra Offensive Rootkit Techniques
26
Oct 2026
Day 03
C2 Traffic Tunneling, Block EDR's Traffic, ASR rules Bypass, Attack on Sysmon, UAC Bypass, Anti-Analysis
✔ 3-day intensive format ✔ Hands-on practical sessions ✔ Real enterprise scenarios
REQUIREMENTS
Basic Skills and Setup Needed to Get Started
✔ Ability to use command line tools.
✔ Understanding of Windows API is a plus but will be covered in the class.
✔ Basic programming knowledge in C and Python is a plus but relevant code will be covered in the class.
SECURE • TRAIN • NETWORK
Choose Your AltSecCON 2026 Pass
TRAINING PASS
3-Day Hands-on Training
24-26 Oct 2026
-
3 days of hands-on training
-
CAIRTP /CRTE® /CETP /CARTP® /CARTE® course
-
60 days labs access
-
Course completion certificate
-
1 Certification attempt
-
Lunch and refreshments included
Early Bird
Till 30 August
₹42,999 / $439
₹49,999 / $510
Regular
After offer ends
₹49,999 / $510
.
MOST POPULAR
FULL ACCESS PASS
Training + Conference
24-27 Oct 2026
-
Everything in Training Pass
-
Conference access included
-
Networking with professionals
-
Foods and Peers intraction
-
Participation certificate
Early Bird
Till 30 August
₹47,999 / $490
₹57,999 / $592
Regular
Conference discount included
₹57,999 / $592
.
CONFERENCE PASS
1-Day Conference
27 Oct 2026
-
Global security keynotes
-
Red team case studies
-
Networking opportunities
-
Conference materials
-
Panel discussions
-
Participation certificate
-
Lunch and refreshments included
Student Pass *
18 tickets Left
* A valid Student ID is required
₹3,999 / $41
₹7,999 / $82
Early Bird
Till 30 August
₹6,999 / $71
₹7,999 / $82
Regular
After offer ends
₹7,999 / $82
.
.
TRUSTED BY RED TEAMERS & SECURITY ENGINEERS
Trusted by Security Professionals and Organizations Worldwide
INSTRUCTOR
Altered Security Trainer

TARGET AUDIENCE
Who Should Attend This Red Team Training Program?
This training is designed for security professionals looking to Develop practical Windows offensive tradecraft and defense evasion expertise.
Cybersecurity Professionals
Enhance offensive security skills and understand real-world enterprise attack paths.
Penetration Testers
Level up your AD attack techniques and improve post-exploitation workflows.
Security Engineers
Understand attacker techniques to build better detection and defense strategies.
SOC Analysts
Learn how attacks happen in enterprise environments to improve monitoring and response.
Aspiring Red Teamers
Build a strong foundation in Active Directory attacks and offensive security.
Students & Learners
Gain hands-on experience with real enterprise labs and practical attack scenarios.
LOCATION
Attend CETP Hand-on Training

Venue
Hilton EGL, Bangalore, India
Format
In-person
FAQs
Frequently Asked Questions
Find answers to common questions about AltSecCON training, conference, and participation.
RELATED COURSES
Choose the Right Red Team Training at AltSecCON
Hands-on, 3-day training programs with real lab environments. Covering Active Directory, evasion techniques, Azure attack tradecraft, and AI Red Teaming.
CAIRTP
This 3-day hands-on training teaches hands-on attacking and defending Copilot, Copilot Studio, Microsoft Foundry, agents, connectors, and identity boundaries using live labs and real-world scenarios. Practice AI Attacks Beyond Prompt Injection. Earn the AlteredSecurity Certified AI Red Team Professional (AltSec CAIRTP) certification.
CARTP®
This 3-day beginner hands-on training helps to to upskill in Azure Cloud security, Azure Pentesting, and Red Teaming the Azure Cloud. It covers all phases of Azure Red Teaming and pentesting - Recon, Initial access, Enumeration, Privilege Escalation, Lateral Movement, Persistence, and Data Mining. Earn the Certified by Altered Security Red Team Professional for Azure (CARTP®) certification.
CRTE®
This 3-day hands-on training help security professionals understand, analyze, and practice threats and attacks in a modern, multi-forest Active Directory environment with fully patched Server 2025 machines. Earn the Certified Red Team Expert (CRTE®) certification.
CARTE®
This 3-day advance hands-on training take your Azure Red Team skills to the next level. Get trained in Azure pentesting, Red Teaming, and Defense against an enterprise-like live Azure environment with focus on OPSEC and bypassing defenses. Earn the Certified by Altered Security Red Team Expert for Azure (CARTE®) certification.
About AltSecCON
AltSecCON is an in-person Red Team training initiative focused on instructor-led delivery, enterprise-aligned labs, and practical offensive security execution.
© AltSecCON. An Altered Security initiative.
contact@alteredsecurity.com
Information
Training Programs
Follow Us
Conference
Event
© 2026 AltSecCON. All rights reserved.





