Exercise Material

ENISA CERT Exercises and training material was introduced in 2008, in 2012 it was complemented with new exercise scenarios containing essential material for success in the CERT community and in the field of information security. In this page you will find the ENISA CERT Exercise material,containing Handbook for teachers, Toolset for students and Virtual Image to support hands on training sessions.

NOTE: There are two virtual images, first one that supports exercises 1-22 and second that supports Honeypot exercise. The .pcap file supports the exercise number 19. Additionally Internet Explorer renames files with .ova extension to .tar. You will need to change the extension back before loading it into virtualisation environment.

ENISA CERT training material contains 23 exercises:

No.	Exercise title	Handbook	Toolset	Virtual Image	Other material supporting the exercise
1	Triage & basic incident handling	Download	Download	Download	Online version of Exercise 1
2	Incident handling procedure testing	Download	Download		Online version of Exercise 2
3	Recruitment of CERT staff	Download	Download		Online version of Exercise 3
4	Developing CERT infrastructure	Download	Download		Online version of Exercise 4
5	Vulnerability handling	Download	Download		Online version of Exercise 5
6	Writing security advisories	Download	Download		Online version of Exercise 6
7	Network forensics	Download	Download		Online version of Exercise 7
8	Establishing external contacts	Download	Download		Online version of Exercise 8
9	Large scale incident handling	Download	Download		Online version of Exercise 9
10	Automation in incident handling	Download	Download		Online version of Exercise 10
11	Incident handling in live role playing	Download	Download		Online version of Exercise 11
12	Cooperation with Law Enforcement agencies	Download	Download		Online version of Exercise 12
13	Incident handling during an attack on Critical Information Infrastructure	Download	Download
14	Proactive incident detection	Download	Download
15	Cost of ICT incident	Download	Download		Download MS Excel workbook, Download workbook in open format
16	Mobile threats incident handling	Download	Download
17	Incident handling in the cloud	Download	Download
18	Advanced Persistent Threat incident handling	Download	Download
19	CERT participation in incident handling related to the Article 13a obligations	Download	Download		Download data_ddos.pcap
20	CERT participation in incident handling related to the Article 4 obligations	Download	Download
21	Assessing and Testing Communication Channels with CERTs and all their stakeholders	Download	Download
22	Social networks used as an attack vector for targeted attacks	Download	Download
23	Honeypots	Download	Download	Download

Complete CERT exercises Handbook ->

Exercise Handbook in German (Exercises 13-23)->

Exercise Handbook in Spanish (Exercises 1-12)->

Complete CERT exercises Toolset ->

Exercise Toolset in Spanish (Exercises 1-12) ->

Field report on the CERT exercise pilot ->

Instructions how to use virtual images ->

Acknowledgements

— filed under: Security Services: Technology Consulting / Business: How-To, Security Services: Technology Consulting / Business: Exercises, Academia/Research: Horizontal Security CIIP, Security Services: Technology Consulting / Business: Incident Response, Education: Training, Security Services: Technology Consulting / Business: CERT News, Education: Information Sharing, Security Services: Technology Consulting / Business: Good Practice, Security Services: Technology Consulting / Business: CERT, Incident Reporting, Academia/Research: Horizontal Security Case Studies

Personal tools

Exercise Material