Juggernaut Labs | Business Security Programs & Detailed Training Tracks

Juggernaut Academy

Training Tracks

Structured offensive, defensive, and business risk curricula. Technical programs are typically delivered as 5-day intensive engagements; executive workshops are focused 1-day sessions aligned to leadership schedules.

Serving teams and students in Ashburn, Aldie, Brambleton, Leesburg, and across Loudoun County, Virginia. Explore our Ashburn/Loudoun cybersecurity and AI programs for high school students.

Offensive Track

Penetration Testing

5-Day

End-to-end methodology from ethics and scoping through exploitation, persistence, and capstone review.

ROE, engagement scoping, and reporting hygiene
Passive and active recon (nmap, amass, gobuster, Nessus)
Injection: SQL/NoSQL, command, IDOR, XSS, file upload/LFI/RFI
SSRF exploitation and port scanning via SSRF
Post-exploitation persistence and web shell ops
Mobile APK triage plus capstone review across all modules

View Course Outline →

Advanced Penetration Testing

5-Day Intensive

Scenario-based exercises mirroring modern adversaries to identify real-world weaknesses in enterprise environments.

Advanced OSINT & Reconnaissance methodologies
Network enumeration and vulnerability chaining
Active Directory attacks & lateral movement paths
Privilege escalation on Linux and Windows
Evasion techniques, OPSEC, and C2 frameworks
Reporting aligned to risk and remediation owners

Request Course Outline →

Hardware & IoT Reverse Engineering

5-Day Intensive

Hands-on analysis of embedded systems, from PCB and interface discovery to firmware extraction and root cause investigation.

IoT architecture mapping and threat modeling
Interface analysis: UART, JTAG, SPI, I²C
Firmware acquisition (SPI flash, eMMC) & safe handling
Static and dynamic firmware analysis techniques
Introduction to fault/voltage glitching approaches
Documenting findings for engineering and legal stakeholders

View Course Outline →

Red Team vs Blue Team (Purple)

5-Day Intensive

A collaborative purple team engagement where offensive and defensive teams jointly exercise, measure, and improve controls.

Purple team methodology (PTEF, MITRE ATT&CK)
Chaining weaknesses across AD, SaaS, and cloud
Adversary emulation plans (e.g., APT-style scenarios)
Detection engineering and tuning iterations
Joint debriefs focused on control maturity
Playbooks and metrics to sustain lessons learned

Request Course Outline →

Defensive Track

Incident Response Program Design

5-Day

Build tiered roles, cloud-aware playbooks, and crisis communications for resilient IR.

IR frameworks (NIST 800-61r2, SANS) in practice
Building tiered IR roles and escalation paths
Cloud-native IR for AWS, Azure, and GCP
Evidence collection across endpoints, SaaS, and identity
Crisis communications & executive briefings
Playbooks for ransomware, insider threat, BEC, and data loss

View Course Outline →

Threat Intelligence (CTI)

5-Day

Lifecycle-focused CTI that feeds SOC, IR, and leadership decisions.

Tactical, operational, and strategic intelligence use cases
Data sources: OSINT, dark web, malware, telemetry
Threat actor profiling and campaign analysis
Using platforms like MISP, OpenCTI, and Maltego
Mapping indicators and behaviors to ATT&CK
Integrating CTI into SOC detections and IR playbooks

View Course Outline →

Threat Hunting & Adversary Behavior Analysis

3- or 5-Day

Proactive defense centered on behavior-driven hunts across endpoints, identity, and cloud.

Hypothesis-driven hunting models
Hunting malware, persistence, C2, and identity abuse
Using ATT&CK and threat intel to drive hunts
Cloud hunting across AWS, Azure, and GCP
Hunt documentation, maturity models, and reporting

View Course Outline →

Product Security Incident Response (PSIRT)

5-Day

Build and scale PSIRT: intake to disclosure, coordination, and metrics for mature product security.

Vulnerability intake, triage, and prioritization workflows
Coordinated Vulnerability Disclosure (CVD) and CVE processes
Reproducing and validating product security vulnerabilities
Cross-functional collaboration with Engineering, Legal, PR, and Support
Writing advisories, managing embargoes, and external communications
PSIRT metrics, SLAs, and scaling a mature product security program

View Course Outline →

Business Risk Track

BEC Defense & Response

1-Day

A focused program on Business Email Compromise, the leading cause of direct financial loss for many organizations.

Identifying BEC infrastructure and tooling
MFA bypass techniques (e.g., adversarial phishing)
Header analysis and authentication (DKIM/SPF/DMARC)
Vendor and supplier invoice fraud patterns
SOC runbooks for containment and eradication
Coordination with financial institutions and reporting (e.g., IC3)

Request Course Outline →

Security Awareness Program Design

1-Day

For HR, operations, and security leaders responsible for building sustainable security culture and behavior change.

Behavioral drivers behind social engineering
Designing communication and training campaigns
Metrics, KPIs, and reporting for leadership
Phishing simulation strategy and guardrails
Reinforcement, nudging, and culture-building techniques
Tailoring content to role, region, and risk profile

Request Course Outline →

Executive Cyber Risk Workshops

1-Day

Board and C-Suite-focused sessions that translate technical risk into business impact, accountability, and action.

Reading and challenging cyber risk reports
Incident command roles and decision points
Regulatory, legal, and disclosure considerations
Investment prioritization and ROI on security spend
Executive-level crisis communications strategy
Tabletop exercises tailored to sector and threat profile

Request Course Outline →

Request Full Syllabus & Pricing →

Course Outlines

Detailed Curriculum

Collapse/expand to view course overviews, audience, prerequisites, and module breakdowns.

Offensive Track

Penetration Testing

Hands-on program building real-world testing skills across web, network, mobile, and cloud.

Overview

Step into professional offensive security with immersive labs and expert-guided instruction that build confidence across modern attack surfaces.

Target Audience

Aspiring penetration testers, security analysts, and system administrators
Blue-team defenders wanting attacker perspective and tooling fluency
Students and professionals preparing for offensive security certifications

Prerequisites

Basics of TCP/IP, HTTP, and Linux command line
Scripting familiarity (Bash or Python)
Exposure to security concepts helps, but course ramps from fundamentals

Modules

1. Introduction, Ethics, and Scoping
Methodology, skills, rules of engagement.
2. Passive Reconnaissance & Vulnerability Assessment
Real-time documentation, screenshots, Nessus-driven discovery.
3. Active Reconnaissance
nmap, amass, gobuster; enumeration with OPSEC and ROE in mind.
4-5. SQL and NoSQL Injection
Manipulating queries, time-based blind, SQL/NoSQL exploitation.
6-7. Command Injection and IDOR
Remote command execution and insecure direct object references.
8. Live Hacking / Labs
Hands-on exploitation with commercial off-the-shelf hardware.
9. Cross-Site Scripting (XSS)
Reflected/Stored XSS, session hijacking, keylogging, WAF evasion.
10. File Inclusion and File Upload
LFI/RFI and unrestricted upload exploitation paths.
11. Forensics
Analyzing artifacts (e.g., pcaps) for web shell and attack traces.
12. Server-Side Request Forgery (SSRF)
Real-world SSRF abuse and port scanning via SSRF.
13. Post-Exploitation: Persistence
Maintaining access: web shells, reverse shells, scheduled tasks.
14. Mobile Application Analysis
APK structure, static/dynamic triage, mobile assessment workflow.
15. Review & Capstone
Recon, brute forcing, command/SQL injection, SSRF, LFI recap.

Offensive Track

Hardware & IoT Reverse Engineering

Embedded security labs spanning hardware, firmware, and wireless analysis.

Overview

Build practical expertise in hardware, firmware, and protocol analysis, from lawful research boundaries to static/dynamic emulation and board-level recon.

Target Audience

Embedded engineers, firmware developers, IoT product designers
Pen testers and red teamers expanding into hardware/firmware
Defenders and IR teams facing embedded threats
Researchers and technologists exploring device internals

Prerequisites

Comfort with Linux CLI basics
Foundational networking knowledge
General technical competency and troubleshooting habits

Modules

1. Legal, Ethical, and Safety Foundations
Lawful research, consent, safe lab setups.
2. Lab Setup and Walkthrough
Hardware (multimeter, logic analyzer, USB-to-UART) and analysis VM build.
3. Linux Primer
Filesystems, OS commands, bootloaders, root filesystem anatomy.
4. Hardware Orientation and Board-Level Recon
Debug headers, flash, UART/USB mapping, Tx/Rx/GND/Vcc identification.
5. Firmware Acquisition
Pulling firmware from vendors, backups, UART, OTA captures via mitmproxy/dnsmasq.
6. Firmware Static Analysis
Unpacking, filesystem extraction, binary/script identification.
7. Firmware Dynamic/Emulation Techniques
Processor identification and QEMU-based emulation.
8. OS Layer Analysis
OS layout, default capabilities, user-input pathways.
9. Advanced Hardware Attacks: Fault Injection
Voltage/clock/EM fault basics to bypass controls or extract secrets.
10. Protocol Analysis: Bluetooth & Wireless
Bluetooth, Wi-Fi, Zigbee, proprietary RF architectures and weaknesses.
11. Application Security
Hardening code against injection, XSS, and enforcing least privilege.

Defensive Track Outlines

Defensive Track

Incident Response Program Design

Tiered roles, playbooks, cloud IR, and crisis communications.

Overview

Five-day build of a practical IR program spanning roles, runbooks, cloud, and communications.

Target Audience

IR leaders and responders shaping program structure
Cloud/SaaS security teams needing tailored playbooks

Prerequisites

Basic IR familiarity; cloud/SaaS context helpful

Modules

Day 1 - IR Frameworks & Roles
NIST 800-61r2/SANS lifecycle and translating frameworks into a pragmatic IR process.

Hands-on: define severity levels, draft RACI for key incident types, map escalation paths, set intake SLAs, sketch IR org chart/on-call model.
Day 2 - Cloud and SaaS IR
IR patterns in AWS, Azure, GCP and common SaaS (M365, Google Workspace, IdPs).

Hands-on: identify critical log sources (CloudTrail, Azure Activity/Defender, GCP Audit, SaaS audit logs), practice evidence collection/snapshots, outline containment options that limit blast radius without breaking prod.
Day 3 - Evidence & Communications
Evidence handling for endpoints, identity, cloud, SaaS with chain-of-custody suitable for legal/regulatory scrutiny.

Hands-on: build stakeholder comms templates (exec, legal/regulators, customers) and run a timed comms drill.
Day 4 - Playbook Design Lab
Deep-dive playbooks for ransomware, insider, BEC, data loss with triggers, decision trees, and ownership.

Hands-on: design/refine one playbook with containment/eradication checklists, go/no-go criteria, and evidence links.
Day 5 - Full-Scenario Run-through
Capstone tabletop across tech investigation, exec comms, and decision points.

Hands-on: complete incident summary/after-action templates, capture metrics (MTTD/MTTR, comms timelines), and build a prioritized improvement backlog.

Defensive Track

Threat Hunting & Adversary Behavior Analysis

Hypothesis-driven hunts, behavior analytics, and reporting.

Overview

Five-day track to design and run behavior-based hunts across endpoints, identity, and cloud.

Target Audience

Detection/hunt teams expanding into behavior-based coverage
SOC analysts leveling up to hypothesis-driven hunts

Prerequisites

Familiarity with ATT&CK and basic SOC workflows

Modules

Day 1 - Hunt Models & Backlog
Assumption of breach, hypotheses, scoping, timeboxing, and success metrics; how hunts differ from detections and IR.

Hands-on: design 2-3 ATT&CK-linked hunt hypotheses, choose data sources, and build a prioritized hunt backlog tied to relevant threats.
Day 2 - Endpoint & Identity Hunts
Behavior patterns for malware execution, persistence, C2, and identity abuse across common platforms.

Hands-on: implement and iterate hunting queries, capture findings, tune signal vs noise, and decide when to promote a hunt to a detection.
Day 3 - ATT&CK-Driven Hunts
Coverage mapping, gap analysis, and pivoting hunts based on threat intel and observed behaviors.

Hands-on: map detections to ATT&CK, identify gaps, design follow-up hunts targeting those gaps.
Day 4 - Cloud Hunting
AWS/Azure/GCP patterns; telemetry (CloudTrail, Azure Activity/Defender, GCP Audit/Logging); handling false positives in noisy, ephemeral environments.

Hands-on: write cloud-focused hunts for risky IAM changes, anomalous API usage, suspicious access to high-value resources, and document tuning strategies.
Day 5 - Reporting & Program Maturity
Documenting hunts, sharing outcomes, and tracking hunt-to-detection and hunt-to-improvement pipelines.

Hands-on: build a lightweight hunt report template, define a repeatable hunt cadence, and create a maturity roadmap.

Defensive Track

Product Security Incident Response (PSIRT)

Intake to disclosure for product and platform vulnerabilities.

Overview

Five-day program to operationalize PSIRT: intake, triage, validation, disclosure, and metrics.

Target Audience

Product security and platform teams handling vuln intake
Engineering leads coordinating disclosure and advisories

Prerequisites

Experience with software development lifecycles, release processes, and basic vulnerability concepts (CVSS, CWE).
Familiarity with ticketing systems (Jira, GitHub Issues) and collaboration tools (Slack, email).

Modules

Day 1 - Intake & Triage
Intake workflows, severity scoring (CVSS + business impact), ownership matrices, prioritization rules, and SLAs.

Hands-on: design intake forms, build a triage dashboard, simulate initial vuln reports from researchers.
Day 2 - CVD/CVE & Advisories
Coordinated vulnerability disclosure, CVE assignment processes, advisory drafting, and researcher communications.

Hands-on: create CVE request templates, draft sample advisories, practice embargoed researcher interactions.
Day 3 - Reproduction & Validation
Safe repro environments, validation steps, artifact capture (logs/screenshots), edge cases like zero-days.

Hands-on: build a validation lab (e.g., Docker-based), confirm mock vulns, generate repro packages for engineering.
Day 4 - Cross-Functional Alignment
Touchpoints with Engineering, Legal, PR, Support, customers; embargoes, release cadences, notification timelines.

Hands-on: simulate disclosure coordination with role-play across teams, including customer impact assessments.
Day 5 - Metrics & Program Scaling
Define KPIs (triage time, disclosure velocity, researcher satisfaction), dashboards, retros, and automation (e.g., intake bots).

Hands-on: create SLA tracking sheets, metrics dashboards, and a scaling roadmap with automation priorities.

Defensive Track

Threat Intelligence (CTI)

Build and run practical threat intel that fuels SOC, IR, and leadership decisions.

Overview

Five-day, hands-on program covering the full intelligence lifecycle with take-home artifacts that slot directly into SOC, IR, and leadership workflows.

Target Audience

SOC analysts and incident responders moving into CTI
Security/detection engineers using threat intel operationally
Security leaders standing up or formalizing CTI functions

Prerequisites

1-2 years in security operations or incident response
Familiarity with networking, logs, and common tools (SIEM, EDR)

Modules

Day 1. Foundations of Threat Intelligence
What TI is, why it matters, and how it fits your program.
Day 2. Designing Your Threat Intelligence Program
Turning ad-hoc feeds into a structured, goal-driven program.
Day 3. Requirements, Threat Modeling, and Collection
Ask the right questions, model relevant threats, build collection plans.
Day 4. Processing, Enrichment, Analysis, and Production
Convert noisy data into actionable intelligence products.
Day 5. Dissemination, Stakeholder Integration, and Capstone
Deliver intel to the right stakeholders in the right formats.

Secure Products, Faster

Product Security Services

Secure Development Lifecycle Integration

AI & Cloud-Native Product Security

Training Tracks

Offensive Track

Penetration Testing

Advanced Penetration Testing

Hardware & IoT Reverse Engineering

Red Team vs Blue Team (Purple)

Defensive Track

Incident Response Program Design

Threat Intelligence (CTI)

Threat Hunting & Adversary Behavior Analysis

Product Security Incident Response (PSIRT)

Business Risk Track

BEC Defense & Response

Security Awareness Program Design

Executive Cyber Risk Workshops

Detailed Curriculum

Penetration Testing

Overview

Target Audience

Prerequisites

Modules

Hardware & IoT Reverse Engineering

Overview

Target Audience

Prerequisites

Modules

Incident Response Program Design

Overview

Target Audience

Prerequisites

Modules

Threat Hunting & Adversary Behavior Analysis

Overview

Target Audience

Prerequisites

Modules

Product Security Incident Response (PSIRT)

Overview

Target Audience

Prerequisites

Modules

Threat Intelligence (CTI)

Overview

Target Audience

Prerequisites

Modules

Why Train With Juggernaut Labs?

Lab-Driven Developer & Engineer Training

Leadership & Executive Alignment

Framework-Aligned, Outcome-Focused

Practitioners First, Instructors Second

Start the Conversation