The core of any security team, the SOC. My experience of, and advice from being in, a Security Operations Centre.
SIEM investigations, pcap analysis, script deobfuscation, log parsing, malicious document examinations…
Knowing how to attack helps you defend.
The world of essential services and critical infrastructure. It’s bad if your website gets ransomwared, but what if your power grid does?