Cyber RangeCrowdStrikeEndpoint SecuritySecurity
Cyber Range

CrowdStrike CTF: Falcon

Event Overview

CrowdStrike delivers a unified platform approach to modern security so you can protect and build your future. This game incorporates several new features of CrowdStrike, offering a unique opportunity to test your skills against the latest in cybersecurity technology. Tools utilized within the game: 🔷Crowdstrike Falcon (EDR tool, end point protection and analysis) 🔷Crowdstrike Logscale (History and logging) 🔷CrowdStrike Cloud Security 🔷CrowdStrike Identity Threat Protection This is a mixed capture the flag style event that will require you and your team to zero in on malicious actors inside of a network, identify vulnerable or outdated services, and brace yourself for a real-time series of cyber attacks. Points will be awarded for finding those exploits, remediating them to the best of your ability and defending Iron Guardian's network.

What to expect

Here’s the sitch.... A nefarious, secret collective of bad actors and hackers called The League have infiltrated Iron Guardian, a global financial services firm that is now enlisting our help to mitigate the imminent threat and avert economic catastrophe.
  • Explore a custom scenario based on CrowdStrike Falcon: Our scenario has been meticulously crafted to provide a realistic and challenging cybersecurity emulation of a network under attack.
  • Test your skills: You'll face various cybersecurity challenges and incidents that will put your knowledge of CrowdStrike to the test.

Goals and Objectives

Using any means necessary, your team (3-4 players) has six hours to scan your organization’s environment, identify compromised systems and footholds, and defend Iron Guardian's network. Additional tools utilized within the game: 🔷F5 (Web application gateway - application inspection) 🔷Kubernetes – WWT learning Path (training on container environments) 🔷Docker (application containers) 🔷Wireshark (protocol inspection)

Who should attend?

This CTF is built for teams that don’t just want to learn security tools—they want to experience how they perform under pressure. Ideal participants include: 🔷SOC analysts, Incident Responders, and Threat Hunters looking to sharpen real-world skills 🔷Platform owners and engineers responsible for deploying or managing CrowdStrike 🔷Security architects and technical leaders validating technology decisions 🔷Cross-functional teams (Security, IT, Infrastructure) aiming to improve coordination during live incidents Whether you're evaluating CrowdStrike or already deployed and need to rapidly onboard and activate your teams, this hands-on experience provides an engaging, untraditional way to build skills, confidence, and teamwork.

Related content

Cyber Range

Unleash the power of WWT's innovation ecosystem to reduce cyber risk and increase time to value through rigorous testing, real-world training and hands-on learning.
ATC

CrowdStrike EDR

Learn about CrowdStrike Falcon Insight, CrowdStrike's Endpoint Detection and Response (EDR) technology. Falcon Insight ensures customers have comprehensive, real-time visibility into everything that is happening on their endpoints as well as helps you respond to and remediate threats effectively, getting you back to business quickly. In this Learning Path, you will explore the architecture on which CrowdStrike Falcon Insights runs, as well as the deployment of CrowdStrike Falcon agents and configuration of policies. You will also learn about the detection and response capabilities that are provided by CrowdStrike Falcon Insight.
Learning Path
Fundamentals

CrowdStrike

CrowdStrike is a global cybersecurity leader delivering the AI-native Falcon platform to protect endpoints, cloud workloads, identities, and data. Its cloud-native architecture provides real-time visibility, detection, and response across the enterprise. Together, CrowdStrike and WWT help organizations accelerate security adoption and improve resilience against today's evolving, AI-driven threats.
Partner