برچسب: blue team

Designed for professionals that are just starting their defensive cybersecurity or security engineering journey, this learning path will introduce you to all of the concepts and skills you’ll need to succeed as a Defensive Security Engineer. Starting with an introduction to security engineering, and moving into more in-depth topics covering practical defensive engineering techniques and practices, this path will teach you the skills you need for a successful cybersecurity career. In addition, you will learn basic server and network hardening techniques, risk management strategies, how to properly design a secure architecture, and much more. With hands-on labs throughout, you’re not just reading slides and studying – you get your hands dirty working with real-world scenarios. This path will prepare learners for the eEDA certification releasing in 2023!

دانلود دوره

CompTIA’s Security+ certification is a widely recognized, industry-standard certification aimed at entry-level Cyber Security practitioners. This certification and learning path starts by introducing general Cyber Security topics and terms to get you familiar with fundamental security concepts. From there, we go into various types of threats and vulnerabilities that security administrators are responsible for analyzing and mitigating. In addition, you’ll learn how to properly architect a typical security infrastructure, including options for different security controls to better protect an organization’s systems, infrastructure, and data. Alongside that knowledge, you’ll also learn how to manage security controls, detect and manage vulnerabilities, and how to respond to an incident once it occurs. To wrap everything up, we’ll take a look at risk management and compliance topics, including third-party assessments and audits. The Security+ learning path is broken down according to the published Domains and Objectives from CompTIA. After completing this learning path, you’ll be armed with the knowledge to not only get started as a security administrator but also to successfully pass the Security+ exam.

دانلود دوره

The SentinelOne Singularity Administration course provides comprehensive training for cybersecurity professionals. Whether you’re a seasoned system administrator or a novice threat hunter, this course caters to various roles and experience levels.

دانلود دوره

The SentinelOne University Singularity Foundations course is designed to empower cybersecurity professionals with essential knowledge and skills related to the SentinelOne Singularity platform. Whether you’re a system administrator, an IT operations specialist, or a security analyst, this course provides a solid foundation for understanding and effectively utilizing SentinelOne’s cutting-edge security technology.

دانلود دوره

The SentinelOne University Incident Response course provides participants with the knowledge and skills necessary to effectively use the SentinelOne platform for identifying and responding to incidents. Whether you’re a seasoned incident responder or just starting out, this course equips you with actionable insights and practical techniques.

دانلود دوره

As a cyber security defender and investigator, we often just get to analyze an environment that suffered a ransomware attack after the ransomware execution, where we are trying to make our way back in time to understand the scope and initial infection vectors of a breach. However, knowing how attackers operate and having an understanding of their tools can help tremendously to conduct a more effective analysis and response and ultimately lower the impact of such attacks. This is why in this workshop we will teach you how to perform the common steps of every phase in a ransomware attack scenario as the attacker, from initial infection to impact.

We will set up a basic C2 infrastructure with PowerShell Empire, and execute attack phases such as initial access and reconnaissance, persistence mechanisms, privilege escalation, credential dumping, lateral movement, defense evasion, data exfiltration, and encryption with ransomware. In every step you will also learn about the fundamental concepts that are required to conduct the attack and defend against those including hands-on analysis using Splunk, Velociraptor and forensic tools as needed. In the last part of the workshop, you will learn best practices on how to effectively conduct investigations of the attacked environment using various tools that are part of the lab setup. Upon completion of the workshop, participants will have a better understanding of the steps ransomware threat actors take to achieve their objectives, as well as the best practices for detecting and ultimately preventing ransomware attacks.

Antisyphon: Ransomware Attack Simulation and Investigation for Blue Teamers

دانلود دوره