Exercise Material

ENISA CERT Exercises and training material was introduced in 2008, in 2012 and 2013 it was complemented with new exercise scenarios containing essential material for success in the CERT community and in the field of information security. In this page you will find the ENISA CERT Exercise material, containing Handbook for teachers, Toolset for students and Virtual Image to support hands on training sessions.

   CERT Exercises handbook      CERT Exercises Toolset     

NOTE: Internet Explorer renames files with .ova extension to .tar. You will need to change the extension back before loading virtual image into virtualisation environment.

ENISA CERT training material contains 29 scenarios.

No.Exercise titleHandbookToolsetVirtual ImageOther material supporting the exercise
1 Triage & basic incident handling

Download

Download

Download

Online version of Exercise 1
2 Incident handling procedure testing

Download

Download

Online version of Exercise 2

3 Recruitment of CERT staff

Download

Download

Online version of Exercise 3

4 Developing CERT infrastructure

Download

Download

Online version of Exercise 4

5 Vulnerability handling

Download

Download

Online version of Exercise 5

6 Writing security advisories

Download

Download

Online version of Exercise 6

7 Network forensics

Download

Download

Online version of Exercise 7

8 Establishing external contacts

Download

Download

Online version of Exercise 8

9 Large scale incident handling

Download

Download

Online version of Exercise 9

10 Automation in incident handling

Download

Download

Online version of Exercise 10

11 Incident handling in live role playing

Download

Download

Online version of Exercise 11

12 Cooperation with Law Enforcement agencies

Download

Download

Online version of Exercise 12

13 Incident handling during an attack on Critical Information Infrastructure

Download

Download

14 Proactive incident detection

Download

Download

15 Cost of ICT incident

Download

Download

Download MS Excel workbook, Download workbook in open format

16 Mobile threats incident handling

Download

Download

17 Incident handling in the cloud

Download

Download

18 Advanced Persistent Threat incident handling

Download

Download

19 CERT participation in incident handling related to the Article 13a obligations

Download

Download

Download data_ddos.pcap
20 CERT participation in incident handling related to the Article 4 obligations

Download

Download

21 Assessing and Testing Communication Channels with CERTs and all their stakeholders

Download

Download

22 Social networks used as an attack vector for targeted attacks

Download

Download

23 Honeypots

Download

Download

Download

24 Digital forensics

Download

Download

Download

 

 

 

25 Identification and handling of electronic evidence

Download

Download

26 Identifying and handling cyber-crime traces

Download

Download

27 Presenting, correlating and filtering various feeds

Download

Download

Download

Download

28 Incident handling and cooperation during phishing campaign

Download

Download

 

29 Cooperation in the Area of Cybercrime

Download

Download

 


CERT exercises Handbook (Exercises 1-22)-> en

Exercise Handbook in German (Exercises 13-23)-> es

Exercise Handbook in Spanish (Exercises 1-12)-> es

CERT exercises Toolset (Exercises 1-22)-> en

Exercise Toolset in Spanish (Exercises 1-12) -> es

Field report on the CERT exercise pilot  -> en

Instructions how to use virtual images -> en

Acknowledgements