Ensuring cyber security is a dynamic, demanding, and complex task. Due to the pace of development in this area, cyber security experts are forced to engage in constant education and have access to test environments and develop both offensive and defensive cyber techniques. The qualitative analyses of past attacks and other security incidents can present a significant contribution to the development of knowledge. In an effort to improve the attack modeling in critical infrastructure and remedy certain weaknesses of the existing models, we have developed a model called the Enhanced Structural Model. The purpose of this paper is to present both the possibilities of the attack modeling and our model for the analysis of past incidents and for educational purposes. The model is suitable for presenting the knowledge in the form of an analytical presentation of the attacks as well as for performing laboratory work and the examination of students.