Some further info... (Score 1)

You can find out the info at their webpage and get some more detailed information in the publications, especially the ones by Ragsdale and Schepens. http://www.itoc.usma.edu/CDX/wpia.htm I have attended two talks by LTC Dan Ragsdale and had the opportunity to meet with him to discuss the development of similar cyber defense exercises at UMBC CISA http://cisa.umbc.edu/ According to him the exercises use both linux and windows operating systems and teams are required to provide certain services (ftp, dns, etc.) They get points for having these services up and running and lose points for any downtime. New to the exercise this year are: an orange team (naval postgraduate school) allowing social engineering attacks All attacks are carried out over a VPN and as to the nature of the NSA red teams attacks... that is unknown, even to the exercise coordinators. So there could be exploits being tested here without anyone elses knowledge.