Hunt the Hacker
|Duration: 2 days||
700 € (+ VAT 20%)
A practical training that teaches attendees how to discover hackers that have bypassed
existing security mechanisms, and are now operating invisibly within the internal
network. This course is Windows domain centric.
Everybody who needs to know more about what threat hunting is, why it is necessary,
what is required to start doing it, and how it should be done. Appropriate roles include: CISOs, Security
Managers, SOC staffers, Incident Responders, Forensic Analysts and System Administrators.
Participants will understand what threat hunting is, be utterly convinced of the need
for it, know what infrastructure is required to facilitate it, and be able to start doing it with confidence
within their own organizations
To maximize value to the attendee, prior HOHE participation is highly recommended, but
The trainers engage participants with lectures, live demonstrations and Q&A sessions.
Each participant spends the majority of their time performing a wide variety of hands-on hunts within
our fully-patched (yet thoroughly hacked) Windows 10 lab network, using a range of highly effective
threat hunting technologies and techniques. Technologies used: Sysmon, the Elastic stack (formerly
“ELK”), WinRM, PowerShell, YARA.
Training duration: 2 days of instruction, predominantly in the form of hands-on hunting labs.