Global Central Bank: An Enterprise Cyber Range:
Global Central Bank (GCB) is a one of a kind Enterprise Windows and Active Directory Cyber Range. It helps enterprises test capabilities of both their Red and Blue teams in an Enterprise Windows network.
GCB is a true multi-forest environment that mimics a financial institution's network. Teams can test cutting-edge TTPs as GCB is built completely on fully patched Server 2019 machines. It includes abuse or bypass of many recommended defence mechanisms LAPS, JEA, WSL, RBCD, WDAC, ASR, AWL, Credential Guard, CLM, virtualization and more. User simulation is used to make it a true enterprise network.
It is useful for both Red and Blue teams as very verbose logging is configured across the lab and teams can analyse the logs using the ELK installation in the labs.
GCB enables enterprises to simulate actual adversaries by focusing on goals rather than just getting privileged access to machines. For effective adversary simulation and exciting gamification, the end goal of GCB is to initiate a fake transfer of funds from the target bank.
What's Included
-
Access to a lab environment (One/Two/Three months) with updated Server 2019 machines. Lab can be accessed using a web browser or VPN.
-
3+ hours of video course that covers important concepts required to begin with the lab
-
Course slides
-
Attack Path diagrams for hints in the lab
-
One Certification Exam attempt
What will you Learn?
GCB is ideal for:
-
Understanding and practicing current and futuristic threats.
-
Any TTP tested in GCB will be usable for years to come as it uses fully patched Server 2019 machines.
-
Sharpen your AD security skills by applying them to a unique multi-forest environment.
-
Understand that getting Domain Admin privileges is just the beginning of Enterprise compromise, even in Active Directory!
-
Testing lateral movement and domain dominance from a beachhead.
-
Abuse or bypass modern Windows features like LAPS, JEA, WSL, RBCD, WDAC, ASR, AWL, Credential Guard, CLM, virtualization and more.
-
Analyzing the adversary attack methodology using logs.
The following are the prerequisites for the lab:
-
Basic understanding of red teaming/penetration testing or blue teaming/security administration of AD environment
-
Ability to think like an adversary and inclination towards abusing features of AD rather than exploits.
Like a real world red team operation, GCB challenges your understanding of TTPs. With basic understanding of Enterprise security and Windows environment, you can crack the lab although we still expect GCB to be very challenging
If you are not familiar with how to approach attacking Windows and Active Directory based enterprise environments, you may like to go for our Active Directory labs
Purchase On Demand Lab
On Demand Lab
30 DAYS LAB ACCESS
+
LIFE TIME ACCESS TO COURSE MATERIAL
+
ONE CERTIFICATION EXAM ATTEMPT
$399
Extension
30 DAYS
LAB EXTENSION
+
ONE CERTIFICATION EXAM ATTEMPT
$349
On Demand Lab
60 DAYS LAB ACCESS
+
LIFE TIME ACCESS TO COURSE MATERIAL
+
ONE CERTIFICATION EXAM ATTEMPT
$599
Reattempt
EXAM
REATTEMPT
$99
On Demand Lab
90 DAYS LAB ACCESS
+
LIFE TIME ACCESS TO COURSE MATERIAL
+
ONE CERTIFICATION EXAM ATTEMPT
$749
Exam Reattempt is only for existing or past students of this course who have already purchased this course in the past.
Certificate Renewal - Only For Existing CRTM Certified Students
Course access and one renewal exam attempt is free. If you want to access the lab for practice or need another renewal exam attempt, purchase that from here.
Extension
30 DAYS LAB ACCESS FOR CERT RENEWAL
$239
Reattempt
ADDITIONAL RENEWAL EXAM
$29
Terms of Purchase and Use:
-
You can start your lab access anytime within 90 days of purchase
-
One Certification Exam attempt is included in the pricing. Additional exam attempts will be $99 each
-
Once connected over VPN, consider the lab to be a hostile environment and you are responsible for your computer's security
-
The above lab is a shared environment and certain pre-specified machines will be off-limits
-
If you want a dedicated lab just for yourself, please use the form in the Contact-Us tab