Cybersecurity Threat Hunting for SOC Analysts
- CategoryOther
- TypeTutorials
- LanguageEnglish
- Total size5.8 GB
- Uploaded Bytutsnode
- Downloads163
- Last checkedApr. 20th '22
- Date uploadedApr. 17th '22
- Seeders 38
- Leechers7
Description
Zeek + Suricata.
Splunk.
Sysmon.
Microsoft Advanced Threat Analytics.
TCPdump + ngrep
Wireshark + tshark.
Wait, I’m not done.
capinfos.
RITA.
Bloodhound.
Bad Blood.
Detection Lab.
Metasploit + msfvenom + Meterpreter + Process Injection.
Mimikatz.
OS Query.
Velociraptor + Memory Forensics.
Taking a breath… one sec… okay..
Fleet.
MITRE ATT&CK.
MITRE Caldera.
Prelude Operator.
Atomic Red Team.
Purple Sharp.
Boss of the SOC???
Yup.
This is one course. One source. One resource that has the potential to change your professional life.
Check out the free content and level up your cyber skills by learning how to become a threat hunter…
Everything is step by step.
You will learn how to detect advanced threat actors on enterprise networks…
How will you learn this?
By building a modern lab replete with a Domain Controller, Windows 10 endpoint instrumented with Powershell logging, Sysmon, OS Query, Velociraptor and more.
You will attack and detect threats like a pro.
This was the dream course I wish I had when I was getting into cyber.
Everything is carefully, patiently and thoughtfully explained.
It took me two months to build this course and I’ve poured my heart and soul into every lecture.
If you’re trying to get into cybersecurity from another career or you’re curious how the bad guys breach and persist in networks then this course is for you. I’ve not held anything back. Everything you need to become a competent threat hunter is included in over 8 hours of content.
Are you ready?
I am! sign-up now and let’s get started!
Who this course is for:
New Security Operations Center (“SOC”) analysts
New and Intermediate Cyber Threat Hunters
New and Intermediate Penetration Testers
New and Intermediate Red Team Operators
Cybersecurity Managers
IT professionals (trying to get into cyber)
Accountants, Lawyers and… really ANYONE curious about Cybersecurity!
Requirements
A Windows Laptop
16GB RAM (for the DetectionLab)
A curious heart hungry to learn
Last Updated 3/2022
Files:
Cybersecurity Threat Hunting for SOC Analysts [TutsNode.com] - Cybersecurity Threat Hunting for SOC Analysts 8. Threat Hunting Hands on Practice- 10. Adversary Emulation Caldera.mp4 (343.2 MB)
- 10. Adversary Emulation Caldera.srt (39.6 KB)
- 1. Threat Hunting with Splunk + Zeek.srt (32.6 KB)
- 12. Enhanced Lab Realism Bad Blood + Microsoft ATA + Bloodhound!.srt (32.1 KB)
- 7. Adversary Emulation Atomic Red Team + MITRE ATT&CK.srt (27.5 KB)
- 6. Purple Team Scenario Meterpreter + MSFVenom + Process Injection + Velociraptor!.srt (23.9 KB)
- 5. Purple Team Scenario Mimikatz.srt (16.8 KB)
- 2. Threat Hunting with Splunk + Sysmon.srt (15.6 KB)
- 4. Threat Hunting with Velociraptor.srt (15.3 KB)
- 11. Adversary Emulation Prelude Operator.srt (14.8 KB)
- 3. Threat Hunting with OS Query + Fleet.srt (12.2 KB)
- 14. Bonus! Adversary Tooling The C2 Matrix!.srt (8.5 KB)
- 8. Adversary Emulation Purple Sharp.srt (8.5 KB)
- 9. Adversary Emulation Sysmon Simulator.srt (7.8 KB)
- 13. Splunk Boss of the SOC (BOTS).srt (6.3 KB)
- 7.2 Atomic Red Team Attack Navigator Layer.html (0.2 KB)
- 14.2 The C2 Matrix Google Sheet.html (0.2 KB)
- 2.1 Sysmon.html (0.1 KB)
- 7.4 MITRE ATT&CK Navigator.html (0.1 KB)
- 3.1 Cisco Talos OS Queries.html (0.1 KB)
- 9.1 Sysmon Simulator.html (0.1 KB)
- 2.2 Sysmon Modular.html (0.1 KB)
- 7.3 MITRE ATT&CK.html (0.1 KB)
- 12.2 Bloodhound.html (0.1 KB)
- 12.3 Sharphound.html (0.1 KB)
- 8.1 Purple Sharp.html (0.1 KB)
- 5.1 Mimikatz.html (0.1 KB)
- 8.2 Purple Sharp Playbooks.html (0.1 KB)
- 12.1 Bad Blood.html (0.1 KB)
- 4.1 Velociraptor.html (0.1 KB)
- 14.1 The C2 Matrix.html (0.1 KB)
- 10.1 MITRE Caldera.html (0.1 KB)
- 7.1 Atomic Red Team.html (0.1 KB)
- 11.1 Prelude Operator.html (0.1 KB)
- 13.1 Splunk BOTS.html (0.1 KB)
- 3.2 Fleet DM.html (0.1 KB)
- 3.3 OS Query.html (0.1 KB)
- 12. Enhanced Lab Realism Bad Blood + Microsoft ATA + Bloodhound!.mp4 (323.1 MB)
- 1. Threat Hunting with Splunk + Zeek.mp4 (232.0 MB)
- 7. Adversary Emulation Atomic Red Team + MITRE ATT&CK.mp4 (231.4 MB)
- 6. Purple Team Scenario Meterpreter + MSFVenom + Process Injection + Velociraptor!.mp4 (215.2 MB)
- 2. Threat Hunting with Splunk + Sysmon.mp4 (146.2 MB)
- 5. Purple Team Scenario Mimikatz.mp4 (110.3 MB)
- 11. Adversary Emulation Prelude Operator.mp4 (106.4 MB)
- 3. Threat Hunting with OS Query + Fleet.mp4 (100.8 MB)
- 4. Threat Hunting with Velociraptor.mp4 (94.9 MB)
- 14. Bonus! Adversary Tooling The C2 Matrix!.mp4 (72.9 MB)
- 9. Adversary Emulation Sysmon Simulator.mp4 (65.5 MB)
- 8. Adversary Emulation Purple Sharp.mp4 (63.4 MB)
- 13. Splunk Boss of the SOC (BOTS).mp4 (53.4 MB)
- 1.1 VMWare Workstation Pro Trial.html (0.1 KB)
- 3. Download Kali Linux VM.srt (2.8 KB)
- 3.1 Download Kali Linux.html (0.1 KB)
- 4.1 7-Zip.html (0.1 KB)
- 5.1 PimpMyKali BASH Script.html (0.1 KB)
- 6.1 .tmux.conf (0.7 KB)
- 7. Configure Kali Linux VM Odds and Ends.srt (10.9 KB)
- 6. Configure Kali Linux VM TMUX.srt (10.6 KB)
- 5. Configure Kali Linux VM pimpmykali.sh.srt (8.9 KB)
- 4. Install Kali Linux VM.srt (7.8 KB)
- 1. Download VMWare Workstation Pro.srt (4.4 KB)
- 2. Install VMWare Workstation Pro.srt (3.3 KB)
- 5. Configure Kali Linux VM pimpmykali.sh.mp4 (71.4 MB)
- 4. Install Kali Linux VM.mp4 (58.2 MB)
- 7. Configure Kali Linux VM Odds and Ends.mp4 (54.3 MB)
- 6. Configure Kali Linux VM TMUX.mp4 (54.0 MB)
- 1. Download VMWare Workstation Pro.mp4 (37.1 MB)
- 2. Install VMWare Workstation Pro.mp4 (28.3 MB)
- 3. Download Kali Linux VM.mp4 (19.5 MB)
- 1. Finding Beacons Long and Cumulative Connections.srt (25.9 KB)
- 5. Finding Beacons Business Need Analysis (Part 4).srt (21.9 KB)
- 6. Finding Beacons Unexpected app on Standard Port.srt (16.4 KB)
- 3. Finding Beacons Business Need Analysis (Part 2).srt (14.2 KB)
- 4. Finding Beacons Business Need Analysis (Part 3).srt (13.8 KB)
- 2. Finding Beacons Business Need Analysis (Part 1).srt (12.9 KB)
- 9. Finding Beacons Internal Endpoint Investigation.srt (7.9 KB)
- 8. Finding Beacons Destination IP Reputation Check.srt (3.7 KB)
- 1.1 DNS Dumpster.html (0.1 KB)
- 1.2 Fiesta EK.html (0.1 KB)
- 1.3 Passive Total.html (0.1 KB)
- 7. Finding Beacons Unexpected Protocol Behavior.srt (3.2 KB)
- 5.1 URLScan.html (0.1 KB)
- 5.2 VirusTotal.html (0.1 KB)
- 6.1 JA3S Hashes.html (0.2 KB)
- 1. Finding Beacons Long and Cumulative Connections.mp4 (192.5 MB)
- 5. Finding Beacons Business Need Analysis (Part 4).mp4 (185.3 MB)
- 4. Finding Beacons Business Need Analysis (Part 3).mp4 (132.9 MB)
- 3. Finding Beacons Business Need Analysis (Part 2).mp4 (106.1 MB)
- 2. Finding Beacons Business Need Analysis (Part 1).mp4 (98.5 MB)
- 6. Finding Beacons Unexpected app on Standard Port.mp4 (90.1 MB)
- 9. Finding Beacons Internal Endpoint Investigation.mp4 (39.5 MB)
- 8. Finding Beacons Destination IP Reputation Check.mp4 (23.4 MB)
- 7. Finding Beacons Unexpected Protocol Behavior.mp4 (19.7 MB)
- 2. Suricata vs RITA Zeus Malware.srt (18.0 KB)
- 1. Suricata Capabilities + Installation!.srt (12.3 KB)
- 3. Suricata vs RITA Powershell Empire.srt (12.2 KB)
- 1.1 Add_to_Suricata_YAML.txt (2.1 KB)
- 2.2 Zeus.html (0.1 KB)
- 2.1 Emotet + Trickbot.html (0.1 KB)
- 3.2 Trickbot + Powershell Empire.html (0.1 KB)
- 1.2 Suricata.html (0.1 KB)
- 3.1 BC-SECURITY Powershell Empire C2.html (0.1 KB)
- 2. Suricata vs RITA Zeus Malware.mp4 (186.3 MB)
- 1. Suricata Capabilities + Installation!.mp4 (123.8 MB)
- 3. Suricata vs RITA Powershe
Code:
- udp://open.stealth.si:80/announce
- udp://tracker.tiny-vps.com:6969/announce
- udp://fasttracker.foreverpirates.co:6969/announce
- udp://tracker.opentrackr.org:1337/announce
- udp://explodie.org:6969/announce
- udp://tracker.cyberia.is:6969/announce
- udp://ipv4.tracker.harry.lu:80/announce
- udp://tracker.uw0.xyz:6969/announce
- udp://opentracker.i2p.rocks:6969/announce
- udp://tracker.birkenwald.de:6969/announce
- udp://tracker.torrent.eu.org:451/announce
- udp://tracker.moeking.me:6969/announce
- udp://tracker.dler.org:6969/announce
- udp://9.rarbg.me:2970/announce