SAIT Downtown Cyber Range

1

Active Directory Exploits

This scenario introduces a stealthy cyberattack method called AS-REP Roasting, which targets misconfigurations in Active Directory to quietly collect and crack encrypted login data.

Trainees take on the role of strategic operators, exploring an unfamiliar digital environment to uncover misconfigurations, extract credentials, and gradually gain deeper access, ultimately reaching full control of the system.

2

Defensive Network Operations

In today’s world of growing cyber threats, having a Security Operations Center (SOC) is essential. A SOC acts as a central hub for detecting, analyzing, and responding to unusual activity in real time. It helps organizations spot threats early, understand what’s happening, and take quick action.

In this exercise, participants will defend a network against a cyberattack, focusing on identifying and reacting to threats as they unfold.

3

Macro Malware Detection 

This scenario explores how attackers use malicious macros (small programs hidden in documents) to spread malware and gain remote access.

Participants will learn how these threats have evolved over time and how to detect them using YARA rules, a tool for identifying suspicious patterns. Through hands-on analysis, trainees will uncover hidden payloads and apply YARA rules to spot potential threats.

4

Password Cracking

This scenario introduces password cracking, a common attack method used to guess or uncover passwords and gain unauthorized access to systems or files.

Trainees step into the role of cyber operators, experimenting with brute-force and dictionary attacks to reveal weak passwords, crack protected documents, and understand how predictable password habits can be exploited. Along the way, they’ll learn how password hashes work and how attackers crack them offline.

SQL Injection Exploits

This scenario introduces SQL injection, a technique where attackers trick websites into revealing hidden data by manipulating login forms and other inputs.

Participants will learn how this vulnerability was first discovered and how it still affects modern websites. Through hands-on practice, they’ll bypass a login page and extract user data from a database, gaining insight into how attackers exploit weak security.

Vulnerability Management

This scenario focuses on identifying and fixing security weaknesses before they can be exploited.

Participants will use Nessus, a popular scanning tool, to check a Grafana system for vulnerabilities, analyze the results, and confirm that fixes have been applied. It’s a hands-on way to learn how regular scanning and patching help keep systems secure, reliable, and compliant.