The key difference between threat hunting and incident response is that threat hunting is proactive, whereas incident response is reactive. Often times great incident responders make legendary threat hunters because their experience helps them to accurately determine how an attacker will behave and what they might do next.

To login to the environment, perform the following steps.

Once the login button is highlighted in blue, click GO! to start the experience.

Use the Testdrive Credentials provided in the Credentials menu on the top right corner to sign-in to VMware Horizon.

1. Click the copy icon next to the username to copy
2. Paste it on the Horizon username field by clicking on it, followed by pressing CTRL+v (Windows) or Command (⌘) + v (macOS) on your keyboard
3. Next, click the copy icon next to the password to copy
4. Paste it on the Horizon password field by clicking on it, followed by pressing CTRL+v (Windows) or Command (⌘) + v (macOS) on your keyboard
5. Click Login to access

Other pasting options:

• Windows: use right-click on your mouse/ trackpad and select Paste
• macOS: press and hold the control key while you click the Horizon username/password field and select Paste

Once logged in, search for 'Threat Hunting with Carbon Black' on the Apps Tab and click on the Horizon  Desktop to launch it on your Browser.

Now you'll be on the Carbon Black EDR desktop.

1. Once you gain access to TestDrive environment
2. Make sure you are logged into a TestDrive VDI Windows environment
   • Your username should be VMWDP\xxxx
3. On the desktop, you will find a text file ReadMe
4. In this ReadMe text file, you will find all the information about how to log into Carbon Black Cloud