IR 100: Windows and Linux Machines (20 pts extra) IR 371: Velociraptor Server on Linux (25 pts extra) IR 372: Investigating a PUP with Velociraptor (40 pts extra) IR 373: Investigating a Bot with Velociraptor (50 pts extra) IR 374: Investigating a Two-Stage RAT with Velociraptor (35 pts extra)
Boss of the SOC v1: Threat Hunting with Splunk (325 pts)