Players Quick Start Guide

Welcome! Follow these steps to be ready for your first Malware & Monsters session in about 10 minutes.

Your First Session in 5 Steps

1. Skim what M&M is (2 min) — Read the opening of the Introduction to understand the vibe and goals.
   
2. Get a role (2 min) — Your IM assigns you a role in the game Incident Response Roles.
   
3. Open your role card (2 min) — Keep the matching card handy in Role Cards.
   
4. Agree on table norms (2 min) — Quick norms: ask questions early, think aloud, keep turns short, and let everyone contribute. The Quick Reference shows the session flow.
   
5. Join the scenario your IM opens (2 min) — Keep the scenario card handy and your role card open for quick reference.

What to Have Open

• This guide (for the steps)
  
• Your Role Card and the Quick Reference
  
• The current Scenario Card (your facilitator will share or you can open it from the link above)
  
• Optional: a simple notepad to jot clues and actions

Role Snapshot (1-liners)

• Detective (Cyber Sleuth): Find clues, connect evidence, build the timeline.
  
• Protector (Digital Guardian): Contain the threat and keep systems running.
  
• Tracker (Data Whisperer): Watch the network, follow data flows, block exfil.
  
• Communicator (People Whisperer): Coordinate people, translate impact, manage stakeholders.
  
• Crisis Manager (Incident Commander): Set priorities, allocate resources, keep the team moving.
  
• Threat Hunter (Pattern Seeker): Hunt hidden threats, anticipate next moves, use intel.

See full details in Role Cards and the Quick Reference.

Level Up After Your First Game

• Learn the creatures: Understanding Malmons
  
• See how actions resolve: Game Mechanics
  
• Understand containment choices: Containment System