Green Hat Cyber Security: Wargaming, Cybersecurity & A.I
Green Hat Cyber Security: Wargaming, Cybersecurity & A.I
v1.06012022.1
A growing research repository made by Gary Leigh 🇦🇺. Powered by Notion, Vercel, Cloudflare and the open source community at large.
💡
If you've come here looking for my cyber security business, things like information security consulting services, penetration testing, or APT hunting and threat intelligence work, or other commercial cyber related activities (investigations, strategy, governance ect) please reach out to me directly on Facebook 👍 (Yes, that's right, Authenticated accounts only folks).

🪖 Wargaming


History of Wargaming
Cyber wargaming (in general)
Cyber wargaming (in action)
CCDCOE
Locked Shields
Locked Shields is a unique international cyber defence exercise offering the most complex technical live-fire challenge in the world
 
 
It is a Red team vs. Blue Team exercise, where the latter are formed by member nations of CCDCOE. In 2021 there were 22 Blue Teams participating with an average 40 experts in each team. The Teams take on the role of national cyber Rapid Reaction Teams that are deployed to assist a fictional country in handling a large-scale cyber incident with all its implications. The Exercise in 2021 involved about 5000 virtualised systems that were subject to more than 4000 attacks. The teams must be effective in reporting incidents, executing strategic decisions and solving forensic, legal and media challenges. To keep up with technology developments, Locked Shields focuses on realistic scenarios and cutting-edge technologies, relevant networks and attack methods
Australian Government, Department of Human Services cyber war games
U.S, Atlantic council, cyber 9/12 (Excellent)
Thinktanks
The CNA page is packed with useful and insightful wargaming information in general
 
For example, from their website they have 4 types of 'games' which can be applied in different contexts:
 
  • Force-on-Force Operational Wargames – A “classic” wargame where teams controlling opposing forces debate and decide on combat movement and actions.
  • Operational Troop-to-Task Wargames – CNA developed this style of resource management wargame to explore organization staffing. By building a custom wargame around an organization’s staff and specific circumstances, this style of wargame can be used to stress-test a new or proposed organizational design before it is implemented and avoid inadvertent holes in the new structure.
  • Event-driven Decision Support Wargames – These are the most diverse style of wargame that CNA regularly runs. These wargames are best in the early stages of concept development, when participants want to explore the planning process of a potential action.
  • Seminar-Style Wargames – The seminar style wargame focuses less on the specifics of what is happening in an operational setting and focuses more on the exchange of ideas between the participants. Seminar-style wargames bring in the top experts in their field to engage with each other to focus on education and idea generation.
Military & Defence perspectives
China
Analogue games
Drills & Exercises 2021
  • APCERT 2021 Drill
  • JPN-ASEAN multilateral exercise (VPNs and Ransomware)
Historical war games
notion image
Health games

🦾 A.I & ML


Microsoft Cyber battle sim
Thanks to one particular A.I genius who shared these with me
Detection of malicious domains
Military applications

✍️ Academic Journals


Simulation for cybersecurity: state of the art and future directions
Deception of visual A.I
Dissertations

🏫 Universities


Australian Universities that I have identified that could facilitate wargaming research in my opinion
  • Monash University
  • Australian National University
    • National Security College
    • Strategic and Defence Studies Centre
    • School of Cybernetics (Potentially)
  • University of Sydney
  • University of Adelaide
UK and US institutions
  • Royal Holloway, University of London offer an information security PhD that has had a wargaming topic completed in the past
  • Bath Spa University has a wargaming expert that could take PhDs. I think there was a recent scholarship going in the topic of AI and Wargaming.
  • Whilst I haven't spoken with them directly, I am under the impression that wargaming, cybersecurity and AI would be a complimentary topic to the folk at RAND
  • Bristol and Swansea also deserve mentions however I have not been able to reach any researchers yet to speak about wargaming.
  • King's College London has an impressive wargaming network. However I cannot speak to the cybersecurity and AI aspects as they have not replied back on the matter. They also had a recent event with an impressive amount of wargaming activity.
  • US Naval War College is my current preferred recommendation however for most folk this is unobtainable.
  • It may also be worth enquiring with an NATO and UN universities and education providers. However, for most folk interested in these topics, your milage may vary in terms of how much correspondence you can achieve.
  • I can confirm that Georgetown University has a demonstrable capacity for wargaming with a potential interest in cyber security as well
  • I've cast my eye recently (2021) on Stanford because as a non-American, it seems the most straight forward for applications, and having the strong networks
JPN
CREST approved institutions
Technically, any of these institutions should have the capacity to assist with cyber research but I have not personally validated this yet
notion image
 

🥂Associations


Australian based
UK & Europe
US
Global CSIRTs

🇺🇳 Humanitarian sim ex


💡
We were able to share the game with Simulation Australasia at their 2021 conference. It was very well received.
Useful links

Cool sites


 

Blogs & Podcasts


🥷 Cyber security


No brainers

👾 Adversary Emulation


  • A general list, quite good

📈 The Boardroom


💡
My research and techniques are outstanding ways to 'play' in the c-suite and management to formulate strategy. I will update this section shortly.

👁‍🗨 CERTS


I have decided to focus on computer emergency response teams as part of a meta analysis on 'cyber power' in the strategic-national security nexus sense. tl;dr cyber statecraft & 5 w's (Who, can do what, where, when and why).
 

🎓 My Research


Undergrad days at the Strategic and Defence Studies Centre
  • There was a lot of foundational research and training in strategic policy, the science of security, defence, intelligence and affairs pertaining to Australia's national interest across every country in the Indo-Pacific. A lot of cross institutional exposure, particularly American institutions with a reputation of excellence in these areas. Course was designed as to have no peer competitors and in alignment with the standing of the College as global top 10 in D.I.M.E subjects. That's my long-winded way of saying, grand strategy.
National Security College & Asia-Pacific College of Diplomacy Days
  • This is where I began to formalise my speciality skills in cyber security (for example, nuclear security, psychological operations, ect) but I chose cyber security. ANU offered full rides in Masters in both degree's but I honestly grew bored as my foundational studies were so advanced.
Grad School Days at the School of Computing and Information Systems at the University of Melbourne
  • Melbourne at the time was the world's most liveable city and best in Australia and global top 30 for Information Systems and business. I mostly focused on synergistic aspects of cybersecurity (knowledge management systems, information science, human-computer interaction, consulting and business repertoire)
Research interests at Charles Darwin University
  • I'm unsure if it is pertinent to share my most recent research as it is sensitive and novel so not widely known or understood
Finding a home, doing a PhD
I'm still on the hunt for a place I can do my research. Basically every university you see in my universities list I've contacted but not been able to find an offering that is suitable for me. I have turned down an opportunity, for now, to work with UNSW@ADFA despite it being a personal dream of mine. Remember, when you have the goods, your negotiation position is stronger, so don't sell out your research and passions, or settle for things that aren't right. Rather, find a team and an institution that will rise with you.
University courses I have designed and taught
  • HCS261 Fundamentals of Humanitarian Practice
  • IAS335 War, Revolution and Terror

Tidbits


How did I make this blog?
I've been trying to build a website whereby I could use notion as my CMS and then have everything be dynamic and super easy. Here are a collection of links that I referenced in the process, and it couldn't be done without the love of open source.
 
Please note that I'm not a "classically trained dev" nor have I worked as one. So if you spot something on this site that could be improved, you're welcome to reach out and give us a hand. Protip for beginners, set up your environment first, and perhaps, don't rush and go through the NextJS tutes like you're supposed to. But if you like to learn by doing, just open all the tabs and give it a whirl.
 
Why did you make this?
I've been trying to find a home for my research into wargaming in cyberspace powered up with A.I for sometime. I've searched far and wide and reached out to some of the best universities, war-gamers and researchers around the world. But since I haven't actually found a place to do a doctorate of my own, I figured there's no reason to waste time and just start now. I'm hoping someone out there might put the captcha together and bring me onboard.
Are you available for consulting, advisory or joining our team?
Call me anytime. But at this stage I don't need to work and focus purely on my passion projects. Think John Wick meets Wozniak type of thing.
 

Archives


October 2021
Charles Darwin University Cert IV Cyber Security & Diploma
💡
The Cert IV for Cyber Security demonstration materials have now closed. Thank you for your interest in developing the cyber security talent of the NT
  • SWOT for the Victorian vs National Diploma level and Cert IV (Including advanced)
  • Preliminary lesson design and scaffolding
  • Early strategic estimates for cost, enrolments and planning over a 5 year duration
  • Foundation work on creating a VET program from scratch in cyber security in the NT-CDU context
  • Competitor analysis against Victorian, WA and NSW Tafe providers
🦘Cyber Taipan
  • Mentoring and coaching to both the students and the teaching staff
  • Resource gathering such as cyber study materials, check lists, code samples, virtual machine demonstrations
  • Competency and knowledge verification of cyber defence topics for students
  • Basically, gave the students the best chance they could have to represent the NT
Research