Cyber RangeRubrikData Protection & Cyber RecoveryData Center
Cyber Range

🎤 MicDrop - Rubrik CTF

Event Overview

The MicDrop Capture the Flag (CTF) event will highlight Rubrik Security Cloud's (RSC) key features, helping customers understand how RSC provides cyber resiliency for their organizations. Features highlighted include: Data Protection – Learn how to back up and recover files, databases, and virtual machines to ensure data availability and ransomware resilience. Data Threat Analytics – Use IOCs, including file patterns, YARA rules, and hashes, to identify and analyze potential threats. Cyber Recovery – Explore automated and network-isolated recovery methods to restore operations securely and perform forensic analysis. Data Security Posture – Identify and monitor sensitive data exposure to improve security and compliance. This hands-on experience will provide insight into how these tools work together to protect, detect, and recover from cyber threats by demonstrating their value in an engaging CTF format using a real-world ransomware scenario.

What to expect

Threat intel indicates that the APT known as the SpiceWorm team is targeting record labels with advanced ransomware campaigns. As a member of SAVE, you have been brought in to help Caladan Records prepare/detect/contain/recover their environment from imminent attack using Rubrik Security Cloud and master cyber resiliency. Within the game, specific Blue Team tools have been provided to help you successfully diagnose any malicious activity and vulnerabilities you may encounter. Below, you'll find a list of these tools, along with links to learning materials. If you are unfamiliar with these tools, these resources will help you get up to speed.
  • Rubrik Security Cloud
  • Wireshark
  • Ghidra
  • Zenmap
  • Burp Suite

Goals and Objectives

Prepare the environment for ransomware attack by establishing proper application recovery plans. Help the SOC Detect and Analyze the attack using threat hunting and IR tools. Contain, Eradicate, and Recover using Rubrik’s Cyber Resiliency platform. Perform post-incident activity to report to the board regarding the incident.

Who should attend?

Security Operations Center (SOC) Analysts & Threat Hunters, Incident Response (IR) & Cyber Recovery Teams, IT Infrastructure & Backup Administrators, CISOs & IT Security Leadership

Related content

Page Thumbnail

Cyber Range - Initiation

Initiation is a Capture the Flag (CTF) lab meant to introduce you to the WWT Cyber Range platform and serve as a tutorial for future events. You will be introduced to the features and functionality as well as provided tips for success during future WWT Cyber Range CTFs. This lab will also allow you to test your access using the same platform we use for our live CTF events so you can make sure you will be ready on game day.
Advanced Configuration Lab
1670 launches

Cyber Range - CTF Getting Started Guide

Page
Page Thumbnail

Rubrik Cyber Recovery

The Rubrik Cyber Recovery Fundamentals Learning Path will provide foundational knowledge to start on your Cyber Recovery journey with Rubrik. This Learning Path includes an introduction to Cyber Recovery fundamentals and how Rubrik goes beyond traditional data protection solutions to protect against cyber threats. There are video introductions to Rubrik Security Cloud and how you can use Rubrik Security Cloud to detect, respond to, and recovery from a ransomware event.
Learning Path
Page Thumbnail

Rubrik Data Protection

The Rubrik Data Protection Fundamentals Learning Path will introduce you to the basic features and functionality of Rubrik. Learn about Rubrik's next-generation data management solution that goes beyond traditional data backups.
Learning Path