Focal Point Workshop for Universities - CyberSecPro
This two-day online workshop (7–8 July 2025, 09:00–18:00 CET) is designed for university students interested in cybersecurity operations, detection engineering, and red/blue team workflows, with a focus on using Microsoft Sentinel, a leading Security Information and Event Management (SIEM) platform.
On the first day, participants will follow an experienced red team professional through the full attack lifecycle within the GOAD cyber range. The session will cover all key phases of an adversary simulation, including reconnaissance, initial access, lateral movement, privilege escalation, persistence, and data exfiltration.
The second day shifts to the defender’s perspective. Participants will work alongside a blue team expert to detect and respond to each phase of the simulated attack. Using Microsoft Sentinel, students will build and refine their own detections through KQL (Kusto Query Language), apply MITRE ATT&CK mappings, and carry out practical threat hunting exercises.
Each day concludes with a two-hour CyberGate multiplayer session, where participants take on both attacker and defender roles in a controlled environment designed to reinforce key concepts and skills.
The workshop is open to all university students with an interest in cybersecurity, IT, or related fields. No prior experience with Microsoft Sentinel is required.