Each report rebuilds the full attack, from how the intruder got in to everything they did next, backed by a complete timeline and MITRE ATT&CK mapping. Investigated by Forge members in our hands-on SOC Simulator, CTF labs, and real phishing samples that hit our inbox.
How a game studio lost its Neon Shadows source code in 150 minutes: Cobalt Strike ISO stager, fodhelper UAC bypass, and RClone-to-MEGA exfiltration where the attacker leaked their own credentials in plaintext.
Forge members investigate real attacks live in the SOC Simulator, CTF labs, and real phishing samples that land at MYDFIR, then publish their work here. Every report you read is the analyst's own investigation.