Log analysis is collecting, parsing and processing log files and turning data into actionable knowledge to detect security threats and anomalies and identify system performance issues.

This module covers the must-to-know concepts of logs for security analysts and investigators. You will learn and understand log file structure, parsing and processing, correlating and analysis. By the end of the module, you will master log file analysis and be ready to use different techniques and solutions to conduct advanced-level analysis for Detection Engineering, Incident Response and Threat Hunting.

Intro to Logs

Learn the fundamentals of logging, data sources, collection methods and principles to step into the log analysis world.

Log Operations

Learn the operation process details.

Intro to Log Analysis

An intro to log analysis, best practices, and essential tools for effective detection and response.

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Next steps

Advanced Splunk

Understand advanced Splunk capabilities to search data for anomalies by creating complex search queries, applying regex, and creating presentable reports and dashboards.

What are modules?

A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).

Hierarchical diagram showing how learning pathways contain modules, which contain individual rooms.