Hello everyone,
I’ve got a question about the “Security Incident Report” module in HTB Academy including the exam report writing.
When taking the certification we have to solve two incidents and write a report for each of these incidents.
In the HTB-CDSA example report (https://docs.sysreptor.com/assets/reports/HTB-CDSA-Report.pdf) we can read at point “3. Exam Objectives (Read Carefully)” that the “Cyber Kill Chain” needs to be adressed, but the module never mentions this part, nor the “Real-word Incident Report”. The only relatable part is the timeline but not exactly the “Cyber Kill Chain” 
.
Can any one clarify what we are suppose to write in the incident reports for the exam?
Thanks for reading 