WWT's ATC Palo Alto Cortex XDR Proving Ground Lab provides a consolidated solution built around Cortex XDR, the Palo Alto firewall, Windows endpoints and Windows servers to demonstrate how the Cortex XDR Agent protects against threats. The goal of Cortex XDR is to increase the operational efficiency of the security operations center. Cortex XDR accomplishes this by reducing alerts by combining similar events, stitching together logs from different sources and preventing as many threats as possible early in the attack cycle. Cortex XDR goes beyond the traditional EDR approach of using only endpoint data to identify and respond to threats by applying machine learning across all your enterprise, network, cloud and endpoint data. This approach enables you to quickly find and stop targeted attacks, insider abuse and remediate compromised endpoints. Cortex XDR combines functionality from Endpoint Protection, Endpoint Detection and Response, Network Traffic Analysis and User Behavior Analytics into a single console. This lab consists of servers running common applications that include Palo Alto Cortex XDR, Palo Alto Cortex XSOAR, Palo Alto VM-Series firewall, Active Directory, Windows IIS and SQL server, and several Windows 11 workstations. You will access the environment using a Windows-based jump host from which you can browse web consoles and open RDP/SSH sessions.

This lab is a part of a larger collection of mini challenges designed to provide an environment to gain hands-on experience with the fundamental features of Palo Alto's NGFW solution.

The Check Point SD-WAN lab is a hands-on environment designed to teach how Quantum SD-WAN is configiured over an existing environment that deploys Check Point security gateways . You will explore a distributed topology that includes branch sites with multiple ISP connections, centralized management, and simulated internet and MPLS transport, then configure SD-WAN objects tunnels & monitor various parameters. The lab also emphasizes operational workflows, including policy deployment, validation, & monitoring.

The Armis to catch a hacker lab will walk users through a realistic exercise based upon real-life incidents with with sophisticated Advanced Persistent Threat (APTs) Actors. These threat actors will move laterally across the network and exploit common visibility gaps to reach their target objectives. This lab will show users how Armis can be leveraged to see this movement.

Palo Alto v10 is end of life. Please take a look at the Palo Alto v11 Foundations Lab. The Palo Alto NGFW Intermediate Lab is a hand-on virtual environment where you'll be able to complete the exercises you see in the Intermediate learning path as well as several new practicals. The Intermediate lab focuses on tasks like SSL Decryption, URL Filtering, and DNS Tunneling. Just like the Foundations lab, the Intermediate lab is built upon the same infrastructure. While there is a guide that you can follow along with, you can also explore the environment and test any configuration you'd like.

The Palo Alto NGFW Foundations Lab is a capability of the Advanced Technology Center (ATC) designed to provide an environment to gain hands-on experience with the fundamental features of Palo Alto's solution. The environment that supports the lab is completely virtual, removing any hardware dependencies associated with physical infrastructure.

Palo Alto v10 is end of life. Please take a look at the Palo Alto v11 Foundations Lab. The Palo Alto NGFW Foundations Lab is a capability of the Advanced Technology Center (ATC) designed to provide an environment to gain hands-on experience with the fundamental features of Palo Alto's solution. The environment that supports the lab is completely virtual, removing any hardware dependencies associated with physical infrastructure.

The JuicedShop series is designed to explore the capabilities of Burp Suite and web application testing. Divided into shorter, palatable CTF games, the JuicedShop series features the vulnerable Juice Shop web application. These challenges provide an opportunity to apply web application testing methodologies in a live environment for real-world use cases.