Segmentation drift found during a suspected intrusion — VLAN/ACL gap with a monitoring blind spot
A extremely-hard Network Engineering scenario on Segmentation Failure (Suspected Intrusion).
Start a graded attempt against this scenario. Your response is scored by the same deterministic rubric used across the catalog. Email and evidence content stay hidden until you start.
Launches this exact scenario. One of 3 templates in this Track + Difficulty pool.
catalog id · network-segmentation-failure-intrusion
What this scenario practices, mapped to recognized frameworks.
Educational mapping only. Not a compliance attestation.
- Evidence-preserving segmentation restoration
- Joint network+SOC triage under ambiguity
- Exploitation of Remote Services · Lateral MovementT1210 · TA0008PartialLow confidence
Trains defensive reasoning about an east-west path opened by segmentation drift.
- Network Traffic AnalysisD3-NTAMappedMedium confidence
Trains the east-west visibility posture for segmentation review.
- Identity Management and Access Control · ProtectPR.AC · PRMappedHigh confidence
Trains the network-segmentation access-control baseline.
- Continuous Monitoring · DetectDE.CM · DEMappedHigh confidence
Trains detection reasoning when monitoring has a coverage gap.
- IR lifecycle phaseDetection & AnalysisMappedHigh confidence
Trains blast-radius reasoning with incomplete evidence (fault vs breach).
- IR lifecycle phaseContainment, Eradication & RecoveryMappedHigh confidence
Trains evidence-preserving, scoped restoration of segmentation.
- Network Segmentation2.XMappedHigh confidence
Trains the segmentation baseline the scenario exercises.
- Document Network Topology2.MMappedMedium confidence
Trains the topology baseline behind blast-radius estimation.
- Network Infrastructure ManagementControl 12MappedHigh confidence
Trains the segmentation-management control.
- Network Monitoring and DefenseControl 13MappedMedium confidence
Trains the monitoring discipline exposed by the collector gap.