Trainings

Practitioner-led, technically rigorous training grounded in real-world research. No vendor agendas. No certification churn. Just operational knowledge that transfers directly to the work.

Training is how research becomes knowledge

IVOTRA is not a training company. Training is the first thing we are offering because it is the most direct way to transfer the practical knowledge generated by our research into the hands of practitioners who need it.

Every course we deliver is designed by the same people who do the research. The labs use real data, real tooling, and real scenarios drawn from active investigations. There are no slides about what tools exist — there is hands-on work with the tools.

Our long-term vision extends well beyond training: original research, intelligence services, open-source tools, conference publications, and community. Training is the starting point.

Upcoming trainings

DEF CON 33

DEF CON — Las Vegas, NV

August 2025
DEF CON 33 · Las Vegas

Hands-On Adversary Infrastructure Hunting

Intermediate 2 days 16 seats

A two-day practitioner workshop covering passive DNS analysis, certificate intelligence, ASN pivoting, WHOIS clustering, and infrastructure pattern recognition. Students leave with a structured, repeatable hunting methodology.

Topics Covered
  • Passive DNS analysis and pivot chaining
  • Certificate transparency logs as a hunting primitive
  • ASN and BGP-level infrastructure correlation
  • Clustering adversary hosting into named clusters
  • Operationalizing hunting workflows at scale
16 hours Register Interest
DEF CON 33 · Las Vegas

OSINT for Threat Investigators

Beginner–Intermediate 1 day 20 seats

Structured open-source intelligence tradecraft for analysts conducting adversary research and digital investigations. Covers collection planning, source validation, attribution hygiene, and analytical workflow integration.

Topics Covered
  • Structuring OSINT collection plans
  • Source validation and confidence assessment
  • Operational security for OSINT investigators
  • Digital footprint analysis and persona research
  • Integrating OSINT into CTI workflows
8 hours Register Interest
Black Hat USA 2025

Black Hat — Las Vegas, NV

August 2025
Black Hat USA 2025 · Las Vegas

Practical CTI: From Raw Data to Finished Intelligence

Beginner–Intermediate 2 days 20 seats

A structured introduction to the full intelligence cycle — from requirement definition and collection planning through analysis, production, and dissemination — using real threat data and practitioner workflows.

Topics Covered
  • Intelligence requirements and collection planning
  • Source evaluation and structured analysis techniques
  • Threat actor profiling and tracking methodologies
  • Finished intelligence production and dissemination
  • Building and maintaining threat intelligence programs
16 hours Register Interest
Black Hat USA 2025 · Las Vegas

Malware Analysis Fundamentals for Threat Analysts

Intermediate 2 days 16 seats

Ground-up malware analysis training designed for CTI analysts — not reverse engineers. Covers static and behavioral analysis with a focus on extracting intelligence-relevant artifacts rather than full code reversing.

Topics Covered
  • Static analysis: PE headers, strings, imports
  • Behavioral analysis in controlled environments
  • Extracting IOCs and network indicators
  • Identifying malware families and code reuse
  • Writing intelligence-focused analysis reports
16 hours Register Interest
Private

Private & Corporate Training

By arrangement

All public-conference courses can be delivered privately for organizations. We also develop bespoke training programs tailored to your team's specific needs, threat landscape, and skill level. Minimum cohort sizes apply.

Private · On-site or Remote

Detection Engineering Practicum

Advanced 2–3 days Custom

Hands-on detection development for security teams — from threat modeling through analytic development, testing, and operationalization. Delivered against your own environment and data.

Custom Enquire
Private · On-site or Remote

Threat Intelligence Program Development

Intermediate–Advanced 3 days Custom

For organizations building or maturing a CTI capability. Covers program architecture, collection infrastructure, analytic workflows, stakeholder integration, and measuring intelligence value.

Custom Enquire

Don't miss future training announcements

IVOTRA will be expanding its training calendar. Get in touch to register your interest or enquire about private delivery for your team.

Get in Touch Read Research