← Back

Log Detective

MITRE ATT&CK Forensics

Welcome, Detective

Your mission: Analyze system logs from security incidents and classify each event according to the MITRE ATT&CK framework.

MITRE ATT&CK Tactics

1. Reconnaissance
Gathering information about the target (scanning, enumeration, research)
2. Initial Access
First entry into the system (phishing, exploits, brute force)
3. Execution
Running malicious code on the compromised system
4. Persistence
Maintaining access to the system (backdoors, scheduled tasks)
5. Privilege Escalation
Gaining higher-level permissions (exploits, credential theft)
6. Lateral Movement
Moving through the network to other systems
7. Exfiltration
Stealing data from the compromised environment
8. Impact
Causing damage (encryption, deletion, disruption)

You'll investigate 8 cases. Click a log entry to select it, then click the correct ATT&CK tactic to classify it. You have 45 seconds per case. Good luck, Detective!

Case Name

Case 1 of 8
Time
45
Score
0
Classified
0/0
Log Entries
MITRE ATT&CK Tactics
Case Complete
Correct
0
Points Earned
0
Time Bonus
0
Your Classifications
Correct Answers

Investigation Complete

Detective Rank
Total Score
0
Accuracy
0%
Cases Solved
0/8
Back to Eye House