Detect. Disrupt. Defend.

Blue team training starts here.

Reduce cyber risk with a continuous approach to upskilling. Assess, validate, and refine cybersecurity team skills using real tools and hands-on labs, against real threat scenarios.

Request Demo Start Now

Cyber Readiness for Your Entire SOC Team

Put real cybersecurity tools and concepts into practice while building the skills needed to defend against the latest cyber threats. Our expert-designed content maps to industry frameworks, including NIST/NICE and MITRE ATT&CK and D3FEND.

The RangeForce (AR)² Readiness Program™ supports measurable improvements at the individual and team level, ensuring continuous blue team skills development and stronger defensive posture.

Platform Features

Realistic Simulation

RangeForce emulates real IT environments. Our blue-team training features real security tools such as Splunk, real infrastructure, and real threats.

Guided Learning

A virtual teaching assistant (VTA) guides learners through each module, providing helpful hints as needed to ensure skill attainment and mastery.

Targeted Upskilling

Set goals and objectives for your SOC team. Create custom learning plans that align cybersecurity skills to your organization’s risk assessments.

Reporting and Insights

SOC team assessments provide visibility into strengths, weaknesses, and progress over time.

Gamification

Add competition and gamification to your blue-team learning experience with in-platform rewards and leaderboards.

On-Demand Access

RangeForce is an on-demand training platform that can be accessed anywhere, at any time.

Realistic Simulation
Guided Learning
Targeted Skills
Reporting and Insights
Gamification
On-Demand Access

Realistic Simulation

RangeForce emulates real IT environments. Our blue-team training features real security tools such as Splunk, real infrastructure, and real threats.

Guided Learning

A virtual teaching assistant (VTA) guides learners through each module, providing helpful hints as needed to ensure skill attainment and mastery.

Targeted Upskilling

Set goals and objectives for your SOC team. Create custom learning plans that align cybersecurity skills to your organization’s risk assessments.

Reporting and Insights

SOC team assessments provide visibility into strengths, weaknesses, and progress over time.

Gamification

Add competition and gamification to your blue-team learning experience with in-platform rewards and leaderboards.

On-Demand Access

RangeForce is an on-demand training platform that can be accessed anywhere, at any time.

RangeForce Content

RangeForce cybersecurity labs and courses are developed by a global team of cybersecurity experts. We continuously create new defensive and offensive security content based on the latest threat landscape.

Our content covers the full spectrum of cybersecurity experience levels for roles including security operations (SOC), DevSecOps, WebAppSec, PenTesting, and more.

Request Demo

RangeForce Content

Our content covers the full spectrum of cybersecurity experience levels for roles including security operations (SOC), DevSecOps, WebAppSec, PenTesting, and more.

Learning Paths

SOC Analyst 1

The SOC Analyst 1 path enables cybersecurity professionals to gain experience with the foundational concepts and practices of a security operations center (SOC). Whether it’s understanding event logs, visualizing data, or conducting malware analysis, this curriculum is designed to get you SOC-ready. Work through a series of hands-on modules and related challenges to complete this path.

Course Content

Course 1

Security Operations & The Threat Landscape: Intro to the SOC; Threat Landscape; Privilege Escalation; Remote Code Execution

Course 2

Windows Procmon, Windows Event Logs: PowerShell Queries and Filters, Pass the Hash, Linux System Info Gathering, Linux Syslog

Course 3

Splunk: Basics, Splunk: Filters and Queries, Splunk: Fields and Transforms, Splunk: Visualizations, Splunk: Alerts

Course 4

Malware Analysis Introduction, Recorded Future: Browser Extension, Malware Analysis: VirusTotal, Email Header Analysis, Email URL Analysis, Email Challenge

Course 5

Introduction to Regular Expressions, Regular Expressions: Basic, YARA Overview, YARA Rule Management, YARA Rule Generation, YARA Rule Writing, Threat Intel Challenge

Course 6

Wireshark Basics, Suricata: Basics, Suricata: IDS Rules, Suricata: Rule Management

SOC Analyst 2

The SOC Analyst 2 path is a great resource for entry-level analysts. Work through hands-on modules to develop robust skills, including more sophisticated search capabilities, utilizing APIs and SIEMs to automate repetitive tasks, and incorporating the right tools into incident response. During course challenges, you’ll demonstrate your resilience by applying your skills to incident response.

Course Content

Course 1

Basic Shell Scripting, PowerShell Basics 1, PowerShell Basics 2

Course 2

PowerShell Logging, Linux Log Management: Systemd Journal, Splunk: Input Configuration, Splunk: API

Course 3

AD Rights Management, Active Directory GPO, Windows: Weak and Reused Creds, Windows NTLM, Traffic Light Protocol Overview

Course 4

PCAP Forensics: Wireshark, Suricata: IPS Rules, PCAP Forensics 2, Investigations with Wireshark, Firewall Policies: FortiOS, Suricata Challenge

Course 5

Lateral Movement Overview, Nikto, Sudo Killer, Greenbone Vulnerability Management, OpenSCAP, CVE-2019--15107 WebMin Unauthorized RCE

Course 6

Visual Spoofing, Identifying Linux IOCs, LOKI IOC Scanner, Linux Security Investigation Challenge, Process Injection IR with Splunk

Web Application Security (OWASP)

The Web Application Security (OWASP) path is critical instruction for any application engineer mastering the skills needed to eliminate the most common application vulnerabilities. Supporting a "shift-left" development strategy, this course covers all ten of the OWASP vulnerabilities with hands-on and interactive exercises. By completing this path, you’ll demonstrate your ability to apply key web application security principles to real world uses.

Course Content

Course 1

Command Injection Fix, NoSQL Injection Fix, SQL Injection: Authentication Bypass

Course 2

Password Cracking, JSON Web Token Security, JSON Web Token Security Challenge 1

Course 3

HTTPS Security Introduction, API Security: Exposed Tokens, Wireshark Basics

Course 4

XML External Entities (Java), Blind XML External Entities, XXE RCE Using PHP Expect

Course 5

Insecure Direct Object References 2 Fix, Path Traversal Fix (NodeJS), Path Traversal Fix (PHP), Unrestricted File Upload Fix (PHP), Unrestricted File Upload Fix (NodeJS)

Course 6

Cookie Security: HttpOnly: Fix (NodeJS), Cookie Security: HttpOnly: Fix (PHP), Cookie Security: Secure: Fix (NodeJS), Cookie Security: Secure: Fix (PHP), Privilege Escalation: Overprivileged Process

Course 7

DOM-based XSS Fix (JS), Reflected XSS, XSS Filter Evasion Fix (PHP)

Course 8

Insecure Deserialization (Java), PHP Serialization, PHP Serialization Challenge

Course 9

Linux Software Management, CVE-2019-15107 WebbMin 1.890 Exploit Unauthorized RCE, CVE-2017 5638 Apache Struts

Course 10

Linux Log Management: Systemd Journal, Splunk Webapp IR: Brute Force Detection, Insufficient Loggings: Injection Vulnerabilities

Threat Hunter

The Threat Hunter path is our most advanced blue team content for those who have mastered enterprise security operations. In this path, we’ll introduce you to the practices and techniques employed by attackers, from the tools at their disposal to the way they view and target systems. Exercise your threat hunting skills in the cyber range through a variety of interactive challenges that are designed to give you a better understanding of targeted attacks.

Course Content

Course 1

Yextend, Malware Analysis Introduction, Linux Advanced Logging

Course 2

Password Cracking, Identifying NetworkIOCs: DNS Tunneling, IOC Challenge

Course 3

Netcat Introduction, Adv. Privilege Escalation: Exposed and Reused Credentials, Detecting Privilege Escalation

Course 4

Metasploit, Basics Reverse Engineering 1, Proxychains

Course 5

Reverse Engineering 2, CVE-2020-7247 OpenSMTPD RCE, Exposed and Reused Credentials Challenge

Course 6

CVE-2019-5736 Docker RunC Container Escape, Keys to Useful Threat Intelligence, Finding Patterns with YARA

Course 7

Suricata Challenge, Obfuscation Challenge, Malware Cleanup Challenge

Course 8

Splunk Lookups, Splunk Input Configuration, Linux Security Investigation Challenge

Course 9

Web App Exploit Challenge Delta 1, Web App Exploit Challenge Delta 2, Web App Exploit Challenge Delta 3

Course 10

SSH Backdoor Challenge 1, SSH Backdoor Challenge 2, SSH Backdoor Challenge 3

Microsoft Core Security

The Microsoft Core Security path is designed to sharpen your skills in Microsoft products. This path will introduce you to key aspects of managing and defending a Windows environment. Gain a working understanding of Active Directory and Group Policy, learn to analyze Windows event logs, and practice common security tasks you can use on the job. Apply your skills through relevant challenges, including how to investigate malware on a Windows computer.

Course Content

Course 1

Windows CMD Basics, Active Directory Rights Management, Active Directory GPO

Course 2

Windows Event Logs, PKI Web Cert Template, PowerShell Introduction

Course 3

PowerShell Basics 1, PowerShell Basics 2, PowerShell Code Signing

Course 4

PowerShell Logging, Regular Expressions: Basics, Sysmon

Course 5

Voidtools Everything, NTLM, Pass the Hash

Course 6

Windows: Weak and Reused Creds, Sysmon: Process Injection, Windows Information Gathering

Course 7

PKI Web Server Cert Enrollment, Nmap: SMB Enumeration, Sysmon Capture Clipboard

Course 8

Windows: Email URL Analysis, Windows: Splunk Basics, Windows: Procmon

Course 9

Windows: Email Header Analysis, Windows: YARA Introduction, Windows: YARA Rule Writing

Course 10

Windows: YARA Rule Generation, Windows: YARA Rule Management, Windows: Process Injection IR with Splunk

Cybersecurity Essentials

The Cybersecurity Essentials path focuses on foundational components of cybersecurity. Develop a concise understanding of key concepts and practices without diving into too much complexity. This path also covers topics across your security program, including business continuity and networking. Cybersecurity Essentials is designed as a starting point for aspiring cybersecurity professionals or those looking to expand their defensive capabilities within a small or medium-sized organization.

Course Content

Course 1

Introduction to Cybersecurity/Terminology, History of Cybersecurity, Cybersecurity Teams

Course 2

Understanding the Threat Landscape, Firewall Overview, IPS/IDS Overview

Course 3

Endpoint Protection Platforms Overview, Endpoint Detection & Response, Server Protection Overview

Course 4

Importance of Logs, Windows Event Logs, Linux Syslog

Course 5

Introduction to the SOC, Blue Team Function and Tasks, Red Team Function and Tasks

Course 6

Understanding the Cyber Kill Chain, Introduction to SIEM and SOAR, Security Topology

Course 7

Known vs. Unknown Malware, Ransomware Overview, CVE Overview

Course 8

Introduction to OSI Networking Model, Layer 2 Networking, Layer 3 Networking, Layer 4 Networking

Course 9

Deploying Enterprise Endpoint Protection, Deploying Enterprise Server Protection, DevOps Security Overview

Course 10

Physical Security Considerations, Introduction to Governance, Risk, and Compliance, Cybersecurity Essentials Challenge (Capstone)

Secure Coding

The Secure Coding path provides a hands-on approach for addressing security and privacy throughout the entire software development lifecycle. You will learn about vulnerabilities that undermine security, including how to identify and remediate them in your own projects. This path is designed for software developers, testers, and architects who design and develop in various programming languages and platforms, including desktop, web, cloud, and mobile. Secure Coding learners will improve their ability to deliver software that is secure and private.

Course Content

Course 1

Identify Security Requirements and Expectations, Identify Factors That Undermine Software Security, Find Vulnerabilities in Your Software, Identifying Vulnerabilities in an Application, Cracking a Password Hash, Fixing a Password Hash Vulnerability, Gather Intelligence on Vulnerabilities and Exploits

Course 2

Preventing Software Defects, Assessing Application Functionality, Examining Source Code and Dependencies, Testing Attack Patterns, Handle Vulnerabilities Due to Human Factors, Handle Vulnerabilities Due to Process Shortcomings

Course 3

General Principles for Secure Design, Software Development Threat Modeling, Identifying and Ranking Threats, Identifying Countermeasures to Threats, OWASP Threat Dragon, Microsoft Threat Modeling Tool

Course 4

Common General Programming Errors, Buffer Overflow, Vulnerability Prevention: Web, Vulnerability Prevention: Mobile, Vulnerability Prevention: IoT, Vulnerability Prevention: Desktop, Finding Common Web Vulnerabilities, Prevent Privacy Vulnerabilities

Course 5

Limiting Access, Bypassing Authentication and Authorization, Protect Data in Transit and at Rest, Implementing Encryption, Secure Error Handling and Logging, Practical Secure Logging

Course 6

Security Testing, Manual Code Review, Static and Dynamic Code Analysis, Linting Code, Automated Testing, Testing with OWASP ZAP

Course 7

Application Monitoring and Logging, Implementing Application Logging, Application Maintenance

How Dataport Built a SOC Team with RangeForce

Dataport, a German public IT service provider, took on the challenge of building an in-house SOC team of existing employees.

With RangeForce, the organization identified and upskill the needed talent, and built a culture of continuous cyber development.

Cyber Training Investment Pays Off

Watch Case Study

How Dataport Built a SOC Team with RangeForce

Dataport, a German public IT service provider, took on the challenge of building an in-house SOC team of existing employees.

With RangeForce, the organization identified and upskill the needed talent, and built a culture of continuous cyber development.

Cyber Training Investment Pays Off

Watch Case Study

Detect. Disrupt. Defend.

Platform Features

Realistic Simulation

Guided Learning

Targeted Upskilling

Reporting and Insights

Gamification

On-Demand Access

Realistic Simulation

Guided Learning

Targeted Upskilling

Reporting and Insights

Gamification

On-Demand Access

RangeForce Content

RangeForce Content

RangeForce Learning Paths

Learning Paths

SOC Analyst 1

SOC Analyst 2

Web Application Security (OWASP)

Threat Hunter

Microsoft Core Security

Cybersecurity Essentials

Secure Coding

Match today’s threat landscape with the right skills.