Back to all modules

Incident Response

Incident Response icon

Understand the mindset behind effective response on security incidents, and apply them through real-world tactics and techniques.

The goal of this module is to develop in you the mindset that an effective incident responder has. We’ll be diving through a tactical dissection of proven response processes, from preparing your environment to be a fertile ground for response, to the containment and removal of malicious software. We’ll also be discussing how to recover and consequently learn from everything to prime yourself for the next response.

Incident Response icon
image

0%

Preparation

A look into the Preparation phase of the Incident Response.

image

0%

Identification & Scoping

A look into the second phase of the Incident Response Framework, Identification & Scoping.

image

0%

Threat Intel & Containment

Learn what threat intelligence looks like, and some containment strategies used in the IR process.

image

0%

Eradication & Remediation

A look into the fourth phase of the Incident Response framework: Eradication, Remediation, and Recovery.

image

0%

Lessons Learned

A look into the fifth phase of the Incident Response framework: Lessons Learned.

image

0%

Tardigrade

Can you find all the basic persistence mechanisms in this Linux endpoint?

Need to know

Need to know: Log Analysis

Log Analysis

Log analysis is collecting, parsing and processing log files and turning data into actionable knowledge to detect security threats and anomalies and identify system performance issues.

Need to know: Advanced Splunk

Advanced Splunk

Understand advanced Splunk capabilities to search data for anomalies by creating complex search queries, applying regex, and creating presentable reports and dashboards.

Need to know: Advanced ELK

Advanced ELK

Learn about the main components of the ELK stack by going through the installation and configuring process and linking them together to form an effective log analysis utility.

Need to know: Threat Hunting

Threat Hunting

Understand the fundamentals of threat hunting, and learn how to build your own methodology for effective hunting across your infrastructure.

Next steps

Next steps: Malware Analysis

Malware Analysis

Explore the world of malware and analyse how malware can infect systems and cause damage.

What are modules?

A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).

Module tree diagram

We use cookies to ensure you get the best user experience. For more information contact us.

Read more