Zero-Day Attack

Welcome, **ÇOLHAK Technology**'s **Senior SOC Analyst**! You have a critical role in your SOC team. You've noticed a **zero-day vulnerability being actively exploited** in your company's web application, which has not yet been patched. Attackers are trying to infiltrate systems to access sensitive data. Your mission: Stop this attack, contain the damage, request urgent mitigation from the vendor, and initiate a race against time with isolation decisions!

Siber saldırı themed intro image

Simulation Roles

  • Your Role: Senior SOC Analyst You are the leader of the team that detected the active attack and initiated the first response. You play an active role in technical analysis, threat hunting, and mitigation steps. Your choices will directly impact the outcome.
  • CISO Anıl Yılmaz Responsible for security, expects quick action.
  • CTO Sadi Orçun Responsible for technical infrastructure and applications, vendor communication goes through him.
  • CEO Sultan Göze Reputation and business continuity are priorities.
  • Vendor Representative (Application Developer) Obligated to patch the zero-day vulnerability, may be slow.

Key Metrics

  • Application Security Status How vulnerable the application is to vulnerabilities. (Initial: Critical)
  • Attacker Access The attacker's penetration into the system. (Initial: Limited)
  • Potential Financial Loss The cost of the attack. (Initial: ₺0)
  • Crisis Duration Time to bring the crisis under control. (Initial: 0 Hours)
  • User Trust Users' faith in the application. (Initial: 100)