The workshop will go through two or three attack scenarios and how to detect those attacks via logs analysis or forensics. The attacks will be in real-time and defenders will have the benefit of the offensive operations letting them know what is happening before, during and after. This workshop is designed for Blue Teamers that want to expand their detection knowledge and get more hands on with logs and forensic operations.