Level 3 — Controlled Offensive/Defensive Techniques
Ethical exploitation practices in isolated environments and basic defensive measures.
Goal
Apply techniques in controlled environments to understand attack vectors and how to mitigate/expose vulnerabilities.
Concepts
- Ethical exploitation in isolated environments
- Basic hardening and firewall rules
- Containment and recovery
Tools
nc,python -m http.server,nmap- Sandboxing and container tools
Suggested labs
Discovery of industrial devices through subnet enumeration, service analysis, web interface inspection, and SNMP information gathering.
Discovery of an OT-ICS host, identification of exposed services, and access to a management interface protected by default credentials.
Practical exercises
- Deploy a vulnerable service in a container and practice controlled access
- Apply iptables/ufw rules to block traffic and observe effects