Network Forensics and Incident Response w/ Troy Wojewoda (PDF-VID-LAB)

1,250.00

Incident responders are continually faced with the challenge of collecting and analyzing relevant event data—network communications is no exception. This course uses an assortment of network data acquisition tools and techniques with a focus on open-source, vendor-neutral solutions. Students who take this course will learn how to perform network traffic and protocol analysis that ultimately supports cybersecurity incident response efforts. From reconnaissance to data exfiltration, network traffic scales to provide a bird’s-eye view of attacker activity. Leveraging the vantage point of key network traffic chokepoints, this course explores nearly every phase of an attacker’s methodology. Students will learn network traffic analysis concepts and work through hands-on lab exercises that reinforce the course material using real-world attack scenarios.

 

HOMEPAGE – https://www.antisyphontraining.com/network-forensics-and-detection-w-troy-wojewoda/

 

Original Price: $575
Our Price: $15

Description

Size:  11.1 GB

WHO SHOULD TAKE THIS COURSE

  • Incident Responders
  • SOC Analysts
  • Digital Forensic Investigators
  • Network Threat Hunters
  • Information Technology/Security enthusiasts wanting to expand their knowledge on network traffic analysis

KEY TAKEAWAYS

  • Learn fundamental concepts of incident handling and response
  • Gain insight into attacker methodologies and learn various techniques to uncover adversarial activity
  • Learn how to detect network protocol abuse against common protocols found in enterprise environments
  • Students will get hands-on experience:
    • Analyzing network packet captures with a variety of tools, techniques, and filtering options
    • Extracting files and metadata from network packet captures
    • Creating custom Zeek scripts to support incident response efforts
    • Creating custom Zeek scripts for Zeek log enrichment
    • Analyzing network flow data
    • Real-world attack scenarios and techniques for response
    • Methods to aid investigators when dealing with the challenges of encrypted communications
    • A culminating CTF challenge combining all course learning objectives