VPN admin compromised — attacker added a static route + redistributed it into OSPF
A medium Cyber × Network Fusion scenario on VPN Brute + OSPF Pivot.
Start a graded attempt against this scenario. Your response is scored by the same deterministic rubric used across the catalog. Email and evidence content stay hidden until you start.
Launches this exact scenario. One of 3 templates in this Track + Difficulty pool.
catalog id · fusion-vpn-brute-ospf-pivot
What this scenario practices, mapped to recognized frameworks.
Educational mapping only. Not a compliance attestation.
- Perimeter-to-internal correlated triage
- Layered access-control containment
- Brute Force · Credential AccessT1110 · TA0006MappedHigh confidence
Trains triage of brute-force pressure against perimeter VPN.
- Remote Services · Lateral MovementT1021 · TA0008MappedMedium confidence
Trains scoping of internal pivots once VPN access is obtained.
- Multi-factor AuthenticationD3-MFAMappedHigh confidence
Trains MFA-backed defense at the perimeter.
- Network Traffic AnalysisD3-NTAMappedHigh confidence
Trains east-west visibility for pivot scoping.
- Access Control · ProtectPR.AC · PRMappedHigh confidence
Trains the access-control baseline at the VPN tier.
- Continuous Monitoring · DetectDE.CM · DEMappedHigh confidence
Trains the monitoring discipline across perimeter and internal tiers.
- IR lifecycle phaseDetection & AnalysisMappedHigh confidence
Trains correlated VPN-and-internal triage.
- IR lifecycle phaseContainment, Eradication & RecoveryMappedHigh confidence
Trains layered containment across perimeter and internal segments.
- Phishing-Resistant MFA2.EMappedHigh confidence
Trains the MFA baseline.
- Detection of Unsuccessful Logins2.QMappedHigh confidence
Trains the failed-login detection baseline.
- Access Control ManagementControl 6MappedHigh confidence
Trains the access-management control.
- Network Monitoring and DefenseControl 13MappedHigh confidence
Trains the network-monitoring control.