CTF-Purple TeamiCAL Export
Purple Teaming with Cisco XDR -APJC 26 November
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools predeployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
| Event Date | 2025-11-26 |
| Event Location Timezone | UTC |
| Event Start Time | 12:00 AM |
| Event End Time | 11:55 PM |
| Capacity | 50 |
| Registered | 0 |
| Available Place | 50 |
| Created By | HANNA JABBOUR |
| Geolocation: | apjc |
| Type of event: | marketing |
| Location | UAE |
| Event Date | 2025-11-26 |
| Event Location Timezone | Europe/Amsterdam |
| Event Start Time | 2:00 PM |
| Event End Time | 11:00 PM |
| Capacity | 25 |
| Registered | 8 |
| Available Place | 17 |
| Created By | Richard Laval |
| Location | Cisco Amsterdam |
| Event Date | 2025-11-27 |
| Event Location Timezone | Europe/Amsterdam |
| Event Start Time | 12:00 PM |
| Event End Time | 11:00 PM |
| Capacity | 10 |
| Registered | 4 |
| Available Place | 6 |
| Created By | Richard Laval |
| Location | Cisco Amsterdam |
Purple Team with XDR for Central Area SEs
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools predeployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
| Event Date | 2025-12-05 |
| Event Location Timezone | America/New_York |
| Event Start Time | 1:00 PM |
| Event End Time | 3:00 PM |
| Capacity | 30 |
| Registered | 13 |
| Available Place | 17 |
| Created By | Kevin Mast |
| Workshop Length in Hours | 2 |
| Geolocation: | amer |
| Type of event: | cisco-internal |
| Location | Virtual |
Purple teaming with Cisco XDR December 15th APJC
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools predeployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
| Event Date | 2025-12-16 |
| Event Location Timezone | Asia/Tokyo |
| Event Start Time | 1:00 PM |
| Event End Time | 6:00 PM |
| Capacity | 30 |
| Registered | 22 |
| Available Place | 8 |
| Created By | Ahmadreza Edalat |
| Location | Virtual |
Purple teaming with Cisco XDR December 15th APJC (2)
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools predeployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
| Event Date | 2025-12-16 |
| Event Location Timezone | Asia/Tokyo |
| Event Start Time | 1:00 PM |
| Event End Time | 6:00 PM |
| Capacity | 30 |
| Registered | 0 |
| Available Place | 30 |
| Created By | Ahmadreza Edalat |
| Location | Virtual |
Purple Teaming with Cisco XDR APJC - 12.17
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools pre-deployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
APJC Template Purple Teaming with Cisco XDR EMEA - 01.08
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools pre-deployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
Purple Teaming with Cisco XDR EMEA 01.08
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools pre-deployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
AMER Temp Purple Teaming with Cisco XDR AMER
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools pre-deployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
Purple Teaming with Cisco XDR AMER 01.15
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools pre-deployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
Purple Teaming with Cisco Workshop - AMER 2.26
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools predeployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
Purple Teaming with Cisco - AMER 3.19
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools predeployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)
Purple Teaming with Cisco - AMER 4.16
This instructor led lab will walk attendees through a purple teaming exercise with Cisco XDR. Each attendee will be assigned a pod with test machines and Cisco Security tools predeployed. Starting with red team activities attendees will gain initial access to a victim machine using a phishing email and the proceed to launch payloads using a variety of MITRE TTP's. After running an attack attendees will start blue team activities to review the detections in Secure Endpoint, Secure Firewall, and Cisco XDR. Blue team activities entail sifting through device trajectory and investigating incidents using the XDR toolset. Attendees will experience running an attack and using Cisco Security tools to remediate the threats gaining hands on purple teaming experience.
Training Outline:
Introduction (15 mins)
Blind Eagle Attack Emulation (1 hour)
Blue Teaming for Blind Eagle Attack (1 hour)
Closing and Q&A (15 mins)