Skip to main content

The S-Unit

Red teaming training 'Under The Radar'

Develop your red team skills

Ever wondered how red teamers stay under the radar during an attack? red teamer Nick introduces the training 'Under The Radar'. During this intensive 3-day training, you’ll learn how to set up and execute a complete red team operation. Are you ready to experience security through the eyes of a red teamer? Join the red team.

Think and act like an attacker

In this training, you step into the role of a red teamer and discover how they cleverly exploit design choices and misconfigurations in Windows, Active Directory, cloud, and hybrid environments. How do red teamers evade detection and remain under the radar for extended periods? And how do they gradually build persistence to maintain access? You’ll work with realistic attack techniques and tooling, such as Cobalt Strike from Fortra. 

For who is this training?

You’re a pentester who wants to take the next step into red teaming, or you want to build and/or strengthen your own red team. Develop your offensive skills and learn how to set up and execute a red team operation from A to Z.

Do you have experience with Windows and Active Directory, work with Command & Control tooling, and have knowledge of scripting and networking? Then this training is a great fit for your level. Command & Control tooling en heb je kennis van scripting en netwerken? Dan sluit deze training goed aan op jouw niveau. 

The building blocks of a strong red team

Technical foundation

A strong red team starts with a solid technical foundation. You’ll learn how systems and networks are structured and how to use this knowledge to identify and exploit vulnerabilities. You’ll also deepen your expertise in Windows, Active Directory, cloud, and hybrid environments.

Knowledge of attack techniques

A good red teamer continuously stays up to date with the latest attack techniques. In this training, you’ll work with realistic methods and tooling, and learn how to combine them into effective and credible attack paths.

Insight into the threat landscape

A strong red team bases its operations on the current threat landscape. You’ll learn how modern attackers operate and translate this knowledge into realistic and relevant attack scenarios that align with an organization’s risk profile.

Strong ethical compass

Red teaming requires responsibility. A good red teamer operates within clear ethical and legal boundaries and handles access, data, and the impact of their actions with care. In this training, you’ll develop this awareness and learn how to apply that responsibility in practice.

Communication skills

As a red teamer, you collaborate with different layers across an organization. That’s why clear communication of your findings and approach is essential. You’ll learn how to translate complex technical insights into clear, actionable recommendations so organizations can take targeted action. 

What does the three-day training look like?

Day 1

The training starts with a powerful introduction to red teaming. What are the objectives of a red team? Which methodologies do they use, and how do they ensure operational security (OPSEC)? You’ll then get hands-on with Cobalt Strike as a tool for advanced red team operations. You’ll learn how to analyze infrastructures, apply attack techniques, and set up a secure and effective red team environment. 

Day 2 

On day 2, you dive into hands-on practice. You’ll explore questions such as: how do you conduct advanced reconnaissance using OSINT and targeted profiling, combined with cloud- and identity-based attack vectors? How do you deliver your attack using modern initial access techniques, such as AiTM phishing (e.g. Evilginx), device code flows, and file-based delivery with LOLBins? And how do you gain that initial access through Microsoft Office, scripting, or cloud-based attacks? 

Next, you’ll dive deeper into Windows and Active Directory environments. How do you obtain credentials? How do you escalate privileges and move through a network without being detected? And how do you bypass AV and EDR solutions without raising alarms? You’ll also apply targeted Cobalt Strike tactics to evade detection and maintain your operational security (OPSEC). 

Day 3 

On the final day, you focus on the ultimate goal: the “crown jewels.” How do you exploit weaknesses in tiering? How do you attack cloud applications and maintain long-term access? You’ll also explore hybrid environments, network-based attacks, and browser techniques to further expand your operation. Finally, you’ll learn how to build and maintain your own red team. What do you need for an effective lab? And how do you operate within relevant compliance frameworks such as TIBER, ART, or ZORRO? 

What should you bring?

  • Hardware & software requirements
  • A laptop

What's included?

  • You will receive a temporary Cobalt Strike license as part of the training.
  • A free demo of the OST tooling from Outflank. 
  • A delicious sandwich lunch.

We gebruiken onder andere Cobalt Strike van Fortra in onze redWe use, among other tools, Cobalt Strike from Fortra in our red teaming exercises. Cobalt Strike offers extensive extensibility, makes it easy to simulate realistic attack scenarios, and runs reliably in the environments we test. This allows us to consistently uncover weaknesses that attackers exploit in real-world situations.

Nick Bruinsma
Ethical Hacker – The S-Unit

About the trainer 

Nick Bruinsma is a Red Team Lead, senior pentester, and trainer at The S-Unit. He develops realistic attack scenarios for mission-critical organizations on a daily basis, combining deep technical expertise with creativity and strong operational discipline. 

Background 

Nick has a background in software development and IT law. His expertise includes Active Directory, lateral movement, C2 infrastructure, persistence, and exploit development. 

Experience 

Nick Bruinsma has led red team operations across international retail, finance, and healthcare sectors, and holds certifications such as OSCP and OSCE3 (OSED, OSEP, OSWE). In addition, he develops tooling to deploy C2 payloads in a controlled and reproducible way, enabling organizations to test their detection capabilities and overall resilience.

In this training, he takes you from theory to practice, with a strong focus on decisions, trade-offs, and attack paths you can apply immediately.

Training location

On location (online on request)

Accessibility

Click here for directions to The S-Unit office. 

Lunch

  • Lunch is included

Start and end time

  • Morning: 9:00 am to 12:00 pm CEST
  • Afternoon: 13:30 pm to 16:30 pm CEST

Language

  • Dutch (English on request)

Are you missing information or do you have special wishes?

Send an email to [email protected] and we contact you!!

Practical information
Time 2
Time

3 days

dollar-bill
Costs

€2250,-  p.p (excl. BTW)

speech-bubble (5)
Language

Dutch (English on request)

pin (8)
Location

On location (online on request)

Datums 2026

Dates on request