Everything your team needs to plan, facilitate, and follow up on a tabletop exercise. From facilitator scripts to MITRE ATT&CK mappings, every resource is designed to produce actionable outcomes.
Structured playbooks that give facilitators everything they need to run a confident, well-paced exercise -- even if it is their first time.
Step-by-step guide covering opening remarks, inject delivery cadence, discussion prompts, and time management.
Pre-built inject sequences with branching logic so facilitators can adapt the exercise in real time.
Structured rubric for capturing gaps, noting team dynamics, and rating response maturity across key areas.
Hot-wash agenda, discussion prompts, and a framework for gathering candid feedback immediately after the exercise.
Printed or digital workbooks that keep participants engaged, focused, and documenting their decisions throughout the exercise.
Background context, organizational role assignments, and the threat landscape summary participants receive before the exercise.
Structured forms for documenting decisions, rationale, escalation paths, and communication actions at each inject.
Individual reflection template where participants identify their own gaps in knowledge, tooling, and process.
Post-exercise worksheet for capturing remediation items, owners, timelines, and priority levels.
Reference material that connects your exercises to real threat intelligence, industry frameworks, and proven methodology.
Every scenario inject is mapped to specific ATT&CK techniques, giving your team a shared language for adversary behavior.
Quarterly intelligence summaries covering the latest TTPs, active threat groups, and sector-specific risks relevant to your exercises.
Our full methodology document covering exercise design principles, alignment with CISA CTEP and NIST SP 800-84, and maturity scoring.
The structured After-Action Report template used to deliver findings, severity ratings, and a prioritized remediation roadmap.
Mapping of exercise outputs to common compliance frameworks including NIST CSF, ISO 27001, SOC 2, and HIPAA requirements.
Try a free interactive demo — a mini tabletop exercise with AI-powered facilitator feedback. Experience how our scenarios, injects, and coaching work together.
Browse Interactive Demos →Operational-tier engagements include all facilitator guides, participant workbooks, MITRE ATT&CK mappings, and quarterly threat intelligence updates for 12 months.
Get Started