Learning path

SOC Level 1

This path introduces a wide array of essential defensive security topics and real-world analysis scenarios. By completing it, you will gain the knowledge and practical skills needed to become a successful SOC Level 1 Analyst, or to better structure your existing expertise if you are already working in the field.

Modules
14
Hands-on labs
65
Difficulty level

easy

Path SOC Level 1

Learn the skills needed to jumpstart your career as a SOC Level 1 Analyst or Security Analyst.

  • Learn SOC tools and operations
  • Explore network and web attacks
  • Monitor endpoints for threats
  • Utilise SIEM to handle incidents
Certificate of Completion
Example learning path completion certificate

Complete this learning path to
develop your skills and earn a
certificate of completion.

SAL1 Professional Certification completion certificate
SAL1 Professional Certification

Get hired with an industry-recognised, practical defensive certification.

Introduction

The Security Operations Center (SOC) is a central hub for securing many large organizations, and junior analysts are among the most numerous and demanding roles in a SOC. In the analyst role, you will work with logs, triage and prioritize alerts, collaborate with your teammates and other departments, and be the first line of defense in reacting to cyber incidents. This comprehensive path covers the necessary technical and operational skills to make you a qualified, universal SOC analyst.

Section 1

Blue Team Introduction

Room Junior Security Analyst IntroJunior Security Analyst IntroRoom SOC Role in Blue TeamSOC Role in Blue TeamRoom Humans as Attack VectorsHumans as Attack VectorsRoom Systems as Attack VectorsSystems as Attack Vectors

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 2

SOC Team Internals

Room SOC L1 Alert TriageSOC L1 Alert TriageRoom SOC L1 Alert ReportingSOC L1 Alert ReportingRoom SOC Workbooks and LookupsSOC Workbooks and LookupsRoom SOC Metrics and ObjectivesSOC Metrics and Objectives

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Scenario Introduction to PhishingIntroduction to PhishingScenario Introduction to Phishing

Section 3

Core SOC Solutions

Room Introduction to EDRIntroduction to EDRRoom Introduction to SIEMIntroduction to SIEMRoom Splunk: The BasicsSplunk: The BasicsRoom Elastic Stack: The BasicsElastic Stack: The BasicsRoom Introduction to SOARIntroduction to SOAR

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 4

Cyber Defence Frameworks

Room Pyramid Of Pain Pyramid Of Pain Room Cyber Kill Chain Cyber Kill Chain Room Unified Kill ChainUnified Kill ChainRoom MITREMITRERoom SummitSummitRoom EvictionEviction

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 5

Phishing Analysis

Room Phishing Analysis FundamentalsPhishing Analysis FundamentalsRoom Phishing Emails in Action Phishing Emails in Action Room Phishing Analysis ToolsPhishing Analysis ToolsRoom Phishing PreventionPhishing PreventionRoom The Greenholt PhishThe Greenholt PhishRoom Snapped Phish-ing LineSnapped Phish-ing Line

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Scenario Phishing UnfoldingPhishing UnfoldingScenario Phishing Unfolding

Section 6

Network Traffic Analysis

Room Network Traffic BasicsNetwork Traffic BasicsRoom Wireshark: The BasicsWireshark: The BasicsRoom Wireshark: Packet OperationsWireshark: Packet OperationsRoom Wireshark: Traffic AnalysisWireshark: Traffic AnalysisRoom NetworkMinerNetworkMiner

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 7

Network Security Monitoring

Room Network Security EssentialsNetwork Security EssentialsRoom Network Discovery DetectionNetwork Discovery DetectionRoom Data Exfiltration DetectionData Exfiltration DetectionRoom Man-in-the-Middle DetectionMan-in-the-Middle DetectionRoom IDS FundamentalsIDS FundamentalsRoom SnortSnort

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 8

Web Security Monitoring

Room Web Security EssentialsWeb Security EssentialsRoom Detecting Web AttacksDetecting Web AttacksRoom Detecting Web ShellsDetecting Web ShellsRoom Detecting Web DDoSDetecting Web DDoS

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Scenario Upload and ConquerUpload and ConquerScenario Upload and Conquer

Section 9

Windows Security Monitoring

Room Windows Logging for SOCWindows Logging for SOCRoom Windows Threat Detection 1Windows Threat Detection 1Room Windows Threat Detection 2Windows Threat Detection 2Room Windows Threat Detection 3Windows Threat Detection 3

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 10

Linux Security Monitoring

Room Linux Logging for SOCLinux Logging for SOCRoom Linux Threat Detection 1Linux Threat Detection 1Room Linux Threat Detection 2Linux Threat Detection 2Room Linux Threat Detection 3Linux Threat Detection 3

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Scenario BlackCatBlackCatScenario BlackCat

Section 11

Malware Concepts for SOC

Room Malware ClassificationMalware ClassificationRoom Intro to Malware AnalysisIntro to Malware AnalysisRoom Living Off the Land AttacksLiving Off the Land AttacksRoom Shadow TraceShadow Trace

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 12

Threat Analysis Tools

Room Intro to Cyber Threat IntelIntro to Cyber Threat IntelRoom File and Hash Threat IntelFile and Hash Threat IntelRoom IP and Domain Threat IntelIP and Domain Threat IntelRoom Invite OnlyInvite Only

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 13

SIEM Triage for SOC

Room Log Analysis with SIEMLog Analysis with SIEMRoom Alert Triage With SplunkAlert Triage With SplunkRoom Alert Triage With ElasticAlert Triage With ElasticRoom ItsyBitsyItsyBitsyRoom BenignBenign

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Section 14

SOC Level 1 Capstone Challenges

Room TempestTempestRoom Boogeyman 1Boogeyman 1Room Boogeyman 2Boogeyman 2Room Boogeyman 3Boogeyman 3

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Scenario Hidden HooksHidden HooksScenario Hidden HooksScenario Open DoorOpen DoorScenario Open Door

We use cookies to ensure you get the best user experience. For more information see our cookie policy.