Realistic cybersecurity incident simulations designed for European government and critical infrastructure contexts. Practice coordinated response to honeypot detections in a safe environment.
Advanced Persistent Threat Against Legislative Systems
A sophisticated nation-state actor has probed EU legislative systems. Use honeypot decoys and attacker-behaviour telemetry to coordinate a multi-agency response, preserve tamper-evident evidence, and maintain democratic processes.
Coordinated Cyber-Physical Attack on Critical Infrastructure
Multiple energy grid operators across the EU face simultaneous cyber-physical attacks targeting SCADA systems. Use decoy services and behaviour telemetry to lead a coordinated defense and prevent cascading failures.
Honeypot Deployment for Financial Infrastructure
Intelligence reports indicate increased targeting of EU financial infrastructure. Deploy honeypot decoys and analyse attacker sessions to detect and characterise intrusion attempts early.
Ransomware Intrusion in Medical Systems
A ransomware strain has targeted patient data across multiple EU member state hospitals. Use honeypot detections and behaviour telemetry to coordinate recovery while maintaining patient safety and privacy.
Air Traffic Management System Intrusion
Air traffic control systems across European airspace face a coordinated intrusion attempt. Use honeypot decoys and behaviour telemetry to detect and contain it while maintaining safe aviation operations.
Legislative, executive, and judicial branch cybersecurity scenarios
Energy, transport, water, and telecommunications protection
Multi-national incident response and information sharing
Automated attacks, evasive intrusions, and novel attack vectors
Our scenarios integrate the deception technologies from the PHANTAQSM platform
SSH honeypots and decoy services that engage attackers and capture their sessions for analysis within scenario response protocols.
Evidence collection and chain of custody using SHA-256 and keccak256 hashing to make tampering detectable.
Bayesian and Markov models for characterising attacker sessions, pattern recognition, and incident response recommendations.
Training scenarios to help EU government professionals strengthen their incident response capabilities.