MITRE ATT&CK in Practice: A Threat Hunting CTF

Turn MITRE ATT&CK from a reference framework into a practical investigation tool. In this hands-on capture-the-flag workshop, participants step into the role of a SOC analyst and work through a guided attack scenario to identify adversary tactics and techniques, uncover flags, and build confidence in threat hunting fundamentals. Using Security Operations tools attendees will learn how to connect activity, map observations to ATT&CK, and investigate suspicious behavior more effectively. This session is designed as an interactive learning experience with the goal of helping participants understand how ATT&CK can support security operation and analyst development.