Evil twin SSID 'ACME-Corp' near the cafe — auto-connect captured employee credentials
A easy Cyber × Network Fusion scenario on Rogue Wireless AP.
Start a graded attempt against this scenario. Your response is scored by the same deterministic rubric used across the catalog. Email and evidence content stay hidden until you start.
Launches this exact scenario. One of 3 templates in this Track + Difficulty pool.
catalog id · fusion-rogue-wireless-ap
What this scenario practices, mapped to recognized frameworks.
Educational mapping only. Not a compliance attestation.
- Rogue-AP discovery discipline
- Wireless containment workflow
- Adversary-in-the-Middle · Credential AccessT1557 · TA0006MappedHigh confidence
Trains triage of rogue-AP redirection.
- Network Traffic AnalysisD3-NTAMappedHigh confidence
Trains wireless-traffic visibility reasoning.
- Real-time Service DetectionD3-RTSDMappedMedium confidence
Trains the rogue-service detection posture.
- Asset Management · IdentifyID.AM · IDMappedHigh confidence
Trains asset-inventory reasoning for wireless infrastructure.
- Continuous Monitoring · DetectDE.CM · DEMappedHigh confidence
Trains the monitoring discipline on the wireless plane.
- IR lifecycle phaseDetection & AnalysisMappedHigh confidence
Trains structured triage of rogue-AP indicators.
- IR lifecycle phaseContainment, Eradication & RecoveryMappedHigh confidence
Trains physical and policy containment workflow.
- Asset Inventory1.AMappedHigh confidence
Trains the asset-inventory baseline.
- Document Network Topology2.MMappedHigh confidence
Trains the topology baseline.
- Inventory and Control of Enterprise AssetsControl 1MappedHigh confidence
Trains the asset-inventory control.
- Network Infrastructure ManagementControl 12MappedHigh confidence
Trains the network-management control.