NB! Koolitus on inglise keeles. Koolituse toimumiseks on minimaalne osavõtjate arv 6.
Practical training that teaches attendees how to discover hackers that have bypassed existing security mechanisms, and are now operating invisibly within the internal network. This course is Windows domain-centric. Brought to you by professional hackers!
Sihtgrupp: Everybody who needs to know more about what threat hunting is, why it is necessary, what is required to start doing it, and how it should be done. Appropriate roles include: CISOs, Security Managers, SOC staffers, Incident Responders, Forensic Analysts, and System Administrators.
Participants will understand what threat hunting is, be utterly convinced of the need
for it, know what infrastructure is required to facilitate it, and be able to start doing it with confidence
within their own organizations
Koolitusel osalemise eeldused (soovitavalt): To maximize value to the attendee, prior HOHE participation is highly recommended, but not mandatory.
Maht: 16 akadeemilist tundi
Tunnistuse väljastamise eelduseks on koolitusel osalemine terves mahus.
Koolitusel käsitletavad teemad ja sisukirjeldus:
The trainers engage participants with lectures, live demonstrations, and Q&A sessions.
Each participant spends the majority of their time performing a wide variety of hands-on hunts within our fully-patched (yet thoroughly hacked) Windows 10 lab network, using a range of highly effective threat hunting technologies and techniques. Technologies used: Sysmon, the Elastic stack (formerly
“ELK”), WinRM, PowerShell, YARA.