ＨｉｄｅＺｅｒｏＯｎｅ

FOR578 is a comprehensive course designed to teach cybersecurity professionals how to collect, analyze, and operationalize cyber threat intelligence (CTI) to proactively defend against advanced threats. The course covers intelligence lifecycle fundamentals, adversary tracking, attribution analysis, and threat modeling techniques such as the MITRE ATT&CK framework. Participants will learn how to leverage open-source intelligence (OSINT), analyze threat actor tactics, techniques, and procedures (TTPs), and integrate CTI into security operations. Through hands-on labs and real-world case studies, FOR578 equips analysts, SOC teams, and security leaders with the skills needed to transform raw data into actionable intelligence that enhances threat detection, incident response, and strategic decision-making.

CyberChef for Security Analysts will teach you how to use CyberChef to perform common data manipulation, transformation, deobfuscation, and extraction techniques using real security data*. This isn’t just a simple tutorial, you’ll work through diverse exercises using real-world security data to build a toolkit of techniques.Simply put, CyberChef for Security Analysts is an example-driven master class on dealing with the most common types of data you’ll encounter in common blue team roles like SOC analysts, malware reverse engineering, forensic investigations, threat hunting, and threat intelligence.

Syllabus

• CyberChef Basics
• Character Encoding and Encryption
• Data Formatting, Parsing, and other Manipulation
• Defeating Malware Obfuscation
• Log File and Forensic Analysis Techniques
• Image Manipulation
• HTTP Requests and JSON Data

CyberChef for Security Analysts

FOR572 is an advanced course designed for cybersecurity professionals seeking to master network forensics, threat hunting, and incident response. The course focuses on deep packet analysis, intrusion detection, and uncovering adversary activity within large-scale enterprise environments. Participants will learn how to analyze network traffic, identify anomalies, and reconstruct cyber attacks using tools such as Zeek (Bro), Suricata, Wireshark, and Security Information and Event Management (SIEM) solutions.

FOR572 is an advanced course designed for cybersecurity professionals seeking to master network forensics, threat hunting, and incident response. The course focuses on deep packet analysis, intrusion detection, and uncovering adversary activity within large-scale enterprise environments. Participants will learn how to analyze network traffic, identify anomalies, and reconstruct cyber attacks using tools such as Zeek (Bro), Suricata, Wireshark, and Security Information and Event Management (SIEM) solutions.

SEC541 is an advanced course that focuses on understanding and defending against attacker techniques in cloud environments. Participants will learn how adversaries exploit misconfigurations, abuse cloud-native services, and bypass security controls across AWS, Azure, and Google Cloud. The course covers threat detection, cloud monitoring, and incident response strategies to counter real-world cloud threats.

SEC504 is a foundational course that provides a comprehensive understanding of the tools and techniques used by attackers, as well as strategies for detecting and responding to cyber incidents. The course teaches participants to think like an attacker while strengthening their defensive skills. Key topics include reconnaissance, scanning, exploitation, post-exploitation tactics, and malware analysis.