Intro to Threat Emulation - Fancy Bear
Threat emulation basics, command and control theory, and overview of Fancy Bear and their TTPs.
Empire Operations: Tactics (APT28)
Empire Operations: Tactics (APT28) is an intermediate-level course focusing on executing APT Tactics, Techniques, and Procedures (TTPs) using Empire. Students will evaluate Fancy Bear’s 2021-2022 campaign, using MSHTML RCE (CVE-2021-40444), OneDrive C2, and C# payloads.
Emulate Fancy Bear with Empire
Study APT28 tradecraft and reproduce key 2021–2022 campaign techniques using Empire, from MSHTML (CVE-2021-40444) delivery to OneDrive-based C2.
Course Modules
Hands-on operator workflows to emulate APT28 TTPs in realistic lab environments.
Fancy Bear's Attack Infrastructure and Tools
Leveraging OneDrive as a C2, Office vulnerabilities, and segmenting architecture for operational security.
Business Goals
Ready to Transform Your Business?
Partner with our team of experts to unlock your business’s full potential. Schedule your free consultation and discover how we can help you.
000 %
Satisfaction Rate
Our clients consistently report high levels of satisfaction
000 +
Successful Projects
our team of consultants brings a wealth of expertise.
00 +
Years of Experience
Our strategies have generated over $50 million.