Cyber RangeData Protection & Cyber RecoveryData Center
Cyber Range

🎤 MicDrop - Rubrik CTF at RSA

Event Overview

Take a break from RSA, assemble your team, and join us for an exciting in-person Capture the Flag (CTF) event! The MicDrop CTF will spotlight Rubrik Security Cloud's (RSC) powerful capabilities, showing how RSC empowers organizations with true cyber resiliency. Key features you'll experience hands-on include: ✅ Data Protection – Back up and recover files, databases, and VMs to ensure data availability and ransomware resilience. ✅ Data Threat Analytics – Detect and analyze potential threats using IOCs, YARA rules, and hashes. ✅ Cyber Recovery – Restore operations securely with automated, network-isolated recovery and perform forensic analysis. ✅ Data Security Posture – Monitor and reduce sensitive data exposure to strengthen security and ensure compliance. This engaging, real-world ransomware scenario will demonstrate how RSC helps you protect, detect, and recover from cyber threats — all through an immersive, team-based CTF experience.

What to expect

Threat intel indicates that the APT known as the SpiceWorm team is targeting record labels with advanced ransomware campaigns. As a member of SAVE, you have been brought in to help Caladan Records prepare/detect/contain/recover their environment from imminent attack using Rubrik Security Cloud and master cyber resiliency. Within the game, specific Blue Team tools have been provided to help you successfully diagnose any malicious activity and vulnerabilities you may encounter. Below, you'll find a list of these tools, along with links to learning materials. If you are unfamiliar with these tools, these resources will help you get up to speed.
  • Rubrik Security Cloud
  • Wireshark
  • Ghidra
  • Zenmap
  • Burp Suite

Goals and Objectives

Teams will be dropped into a real-world ransomware scenario where they must: ✅Prepare the environment by establishing proper application recovery plans. ✅Detect & Analyze the attack using threat hunting and incident response tools. ✅Contain, Eradicate & Recover with Rubrik’s Cyber Resiliency platform. ✅Report post-incident findings to the board.

Who should attend?

Security Operations Center (SOC) Analysts & Threat Hunters, Incident Response (IR) & Cyber Recovery Teams, IT Infrastructure & Backup Administrators, CISOs & IT Security Leadership

Related content

Page Thumbnail

Cyber Range - Initiation

Initiation is a Capture the Flag (CTF) lab meant to introduce you to the WWT Cyber Range platform and serve as a tutorial for future events. You will be introduced to the features and functionality as well as provided tips for success during future WWT Cyber Range CTFs. This lab will also allow you to test your access using the same platform we use for our live CTF events so you can make sure you will be ready on game day.
Advanced Configuration Lab
1740 launches

Cyber Range - CTF Getting Started Guide

Page
Page Thumbnail

Rubrik Cyber Recovery

The Rubrik Cyber Recovery Fundamentals Learning Path will provide foundational knowledge to start on your Cyber Recovery journey with Rubrik. This Learning Path includes an introduction to Cyber Recovery fundamentals and how Rubrik goes beyond traditional data protection solutions to protect against cyber threats. There are video introductions to Rubrik Security Cloud and how you can use Rubrik Security Cloud to detect, respond to, and recovery from a ransomware event.
Learning Path
Page Thumbnail

Rubrik Data Protection

The Rubrik Data Protection Fundamentals Learning Path will introduce you to the basic features and functionality of Rubrik. Learn about Rubrik's next-generation data management solution that goes beyond traditional data backups.
Learning Path