Help

Ask questions and find answers

Forum Widgets

Recent Discussions

Hafnium: Detection of IoCs - Question 5
For the Which web shell in the auth folder matches those detected in the Microsoft report? What does the question mean by Microsoft Report? is it talking about the PowerShell ISE output? even then, based on the output I cant seem to find the files that was referenced in the auth folder. Summary: I am wondering about what the question means by Microsoft Report and where I can find it. Or if I am simply looking in the wrong direction
Solved
kevinh
2 days ago
help & support
immersive labs
0likes
1Comment
Ransomware: Darkside - Question 8
For some reason there is no data in the Splunk terminal despite running the malware, I am wondering about why that may be an issue or if I should be looking else where?
Solved
kevinh
4 days ago
help & support
immersive labs application security
questions & feedback
0likes
1Comment
Investigating IAM Incidents in AWS: Preparation - Question 7
For the question: The ‘MetrolioQA’ IAM role in your account grants write access to a ‘metrolio’ role from another account. What is the full name of the external principle? I can't seem to find insight onto the role. I am wondering about what is the location of the GUI I should be looking into more of. I have mostly been digging throughout the csv download for any possible insights as well as the IAM access analyzer but I cant seem to get any good leads. Done through the MetrolioIAMAnalyst AWS role account. Summary: I am wondering if there is any direction that can be provided in which I can look into more for finding external principles.
Solved
kevinh
15 days ago
help & support
immersive labs
immersive labs application security
0likes
1Comment
Mobile Malware: Anubis Malware (Offensive) - Question 8,9
despite obtaining the encrypted value, seems like RC4 decryption doesn't work with zanubis as the password. I am wondering where should I pivot into? For question 9: where should I look into in order to get started?
Solved
kevinh
16 days ago
help & support
immersive labs
immersive labs application security
questions & feedback
0likes
1Comment
Modern Encryption Issue
I'm on the last training under Modern Encryption training. I'm getting this error: ─$ openssl enc -des-ede3-cbc -d -pbkdf2 -nosalt -in encrypted_file_3DES.enc -out DES3 enter des-ede3-cbc decryption password: bad decrypt 139655774025024:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:../crypto/evp/evp_enc.c:610: The key is in text file from previous steps. I'm on step #7. I used the same syntax for decryption as earlier in this series. I tried various things, but still getting this error. I added the -a switch as well.
Solved
AlPatel
25 days ago
help & support
immersive labs application security
0likes
11Comments
AI Agent Governance: Auditing an Over-Privileged Agent
Hi, i solved every Task exept 16 i reviewed metrolio-finance-agent-role metrolio-finance-lambda-role and the Trust relationship Idont know what to do, i cant edit the trust policy either. While reviewing the execution role in the IAM console, examine the role's configuration. Check the Trust relationships tab and review which services are permitted to assume this role. Now consider: if Metrolio deployed additional Bedrock agents for other departments (HR, customer service, procurement), and each agent assumed this same execution role, what would happen? This means: Compromising one agent's permissions exposes the permissions of all agents sharing the role. AWS CloudTrail records the shared role ARN as the actor for every action – you can't determine which agent performed a specific action. Non-repudiation is destroyed.
Solved
schmitty
1 month ago
immersive labs
1like
3Comments
OT Cyber Threat Intelligence: Collection / Question 14
https://immersivelabs.online/labs/ot-cyber-threat-intelligence-ep-3-collection/objectives/555bd71ddbebd6ab9b8e2e7dfc8254b7?objective-state=assigned I'm unable to find the answer to this question: What malware is Deep_Dark_Cthulu likely referring to when they mention providing Cyber_Dr3g4n with malware? I've tried Trojan, Remote Access Trojan, it doesn't work. Can someone provide a hint please ? Fred
Solved
FredG
1 month ago
questions & feedback
0likes
1Comment
Cross_site Scripting DOM-based XSS vulnerability
I am doing the Cross-Site Scripting (XSS) DOM-based XSS lab and I am trying to get the last step of the lab which is identifying the DOM-based XSS vulnerability. I am pretty sure it would not be something like <script> alert("xss") </script> since I do not think Javascript would handle it. I am leaning towards the event handlers like onerror but haven't gotten it figured out quite yet. Any clues or suggestions would be appreciated.
Solved
rculvergoblue
1 month ago
immersive labs
0likes
4Comments
Systems Manager: Introduction - Question 2
For some reason I can't seem to create the Endpoint as per the briefing guide. Wondering what I am doing wrong
Solved
kevinh
1 month ago
help & support
immersive labs application security
workforce exercises
0likes
1Comment
Microsoft Foundry Guardrails: Jailbreak Protection issue with http://metroliochat.com
Hello, I started the Microsoft Foundry Guardrails series and got through creating a filter. The next step is to switch to the http://metroliochat.com tab and enter some prompts. However, that url is throwing an error of Access Denied. Is that an issue with the startup of the VM? I did exit and restart the lab but still have Access Denied when attempting to load that page. Can someone check on that part of the lab?
Solved
ArthurDent
2 months ago
cyber range exercises
help & support
0likes
4Comments

Get support from the community

If your question has been answered, help others by clicking: