Man, there are a couple familiar faces in that photo...
Seriously, though, PCDC was an awesome experience, as it so often is. I've enjoyed having the opportunity to compete in these a few times, and even more enjoyed having the success that we've had.
A few tips for success in these sorts of live-fire competitions, for those of you who are ever interested in trying one:
1) Professionalism. It's easy to fall into the idea of it just being a competition, not something you need to take seriously, and that's true to an extent, but if you suspend your disbelief, you can make a lot more headway. Your incident reports, ticket requests, and inject responses need to be clear, well written, and polite, like you were interacting with business types and not a big pack of fellow hackers.
2) Physicality. ALWAYS inspect your physical space, and set up a challenge perimeter. As much as the most interesting attacks are digital, the number of times we've found physical backdoors, microphones, or had equipment or cables cut as part of the exercise reinforces the fact that if you lose your physical access control, it's hard to control the digital environment.
3) Preparation. Come with a plan. If you have a team, designate a point person to track and submit and task injects. Have a set of pre-generated shared passwords. Have a list of common backdoor locations and persistence areas to check! Make immediate password changes, and back up what you can that's already in production!
4) Caffeine. Self explanatory.
I won't say it will guarantee you victory, but it will give you a good starting point.
Shout out to all of our competitor orgs, including the Air National Guard, CACI, SRC, GDIT, and Dominion Energy. You all never make it an easy competition, and best of luck next year! I'll see you there.
Congratulations to the ECS team on their outstanding victory at the professional level of the Palmetto Cyber Defense Competition (PCDC) yesterday! 🏆🎉
This marks the team's fourth win since 2019, with previous successes in 2019, 2021, and 2023.
The competition is an all-day event that brings together South Carolina high schools, regional colleges, and cybersecurity professionals to compete head-to-head. Each 6-member team must work together as a real company would, defending their network from red team attacks while maintaining crucial business services and responding to customer and administrative demands.
A huge round of applause to the ECS team for this incredible achievement: James Dieteman, Sean Dunaway, Jason Britton, Trey Everette, LUKE GIGIANO, Benjamin Schuler
#ECS #ECSCybersecurity #MeetTheChallenge #MakeADifference