Learn and Practice Offensive and Defensive AI with Ease

Your attackers are already using AI. This workshop will teach you how you can respond.
Adversaries are weaponizing Generative AI to bypass your defenses, scale sophisticated phishing campaigns, and automate breaches faster than your SOC can react. The question isn't whether you need to adapt — it's how quickly you can operationalize your defense.
Join us, the winners of "Boss of the SOC 2025", for a hands-on workshop built for security leaders who need to explain AI risks to the Board while understanding exactly how attackers exploit M365 and AWS configurations.
What You'll Experience:
Part 1: AI for Offense (Red Teaming)
Watch a live AI-powered phishing attack on M365 with data exfiltration. See the attack path from the hacker's perspective, identify Azure configuration gaps, and learn how UnderDefense Agentic AI SOC stops attacks through telemetry correlation and 24/7 triage.
Part 2: AI for Defense (Blue Teaming)
Investigate a real AWS breach involving EC2 autoscaling. Use SIEM and Agentic AI to uncover malicious activity, identify attacker methods, and contain the breach before it escalates.
Part 3: Practical Hacking & Incident Response
Get hands-on experience hacking AD/Entra domains via leaked passwords and VPN access. Practice identifying patient zero, hunting the attack chain, and eradicating threats from the network.
What You'll Take Home:
- BEC playbook and phishing detection rules
- MDR and SOC evaluation checklists
- Incident response runbooks that cut MTTR from hours to minutes
- Cloud security best practices for AWS
- 1-month free access to Paranoid Labs, UnderDefense MAXI, and Alert Bars platforms
- Patient zero identification strategies
- Expert networking with security leaders facing similar challenges
Who Should Attend:
Security leaders responsible for threat detection and incident response.
Only 30 seats available. The workshop is free but requires registration. Bring your laptop.

Info: Phishing M365 with Data Exfiltration
We simulate a live attack using AI. You'll see the attack path from the hacker's perspective — identifying gaps in Azure configurations that allowed the breach.
Stop the attack with UnderDefense Agentic AI SOC and explore how telemetry correlation and 24/7 triage can stop attacks before they escalate.
Key takeaway: A BEC playbook, detection rules, and an MDR checklist tailored for phishing prevention.

Info: AWS Breach and Threat Hunting
We will investigate a breach involving AWS EC2 autoscaling and detect threats in the cloud using Agentic AI SOC.
You will learn how to use SIEM to uncover malicious activity, identify the attacker’s methods, and contain the breach.
Key takeaway: Cloud security best practices, threat hunting tools for AWS, and practical investigation techniques.

Info: Practical Hacking & Incident Response
Gain practical experience in hacking AD/Entra domains via leaked passwords, VPN access (via Fortinet), and domain takeover.
Practice incident response by identifying patient zero, hunting the attack chain, and eradicating the threat from the network.
Key Takeaway: Incident response runbooks, detection techniques, and patient zero identification strategies.

Know what’s Happening Next — before everyone else does.

Get App

Host or Publisher UnderDefense