Download Udemy – Detection Engineering Masterclass: Part 1 2023-7

Detection Engineering Masterclass: Part 1

Description

Detection Engineering Masterclass: Part 1. Overview of the two-part course This course first teaches the theory of security operations and detection engineering. Then we’ll start building our home lab using VirtualBox and Elastic’s security offering. We then run three different attack scenarios, each more complex than the previous one. We detect our attacks and learn how to document our detections. Next, we’ll dive into coding and Python by writing validation scripts and learning to interact with Elastic through their API. Wrapping things up, we host all of our detections on GitHub and sync with Elastic through our GitHub Action automations. As a cherry on top, we’ll have a final section on how to write scripts to collect important metrics and visualizations. This course introduces students to AZ in the life cycle of diagnostic engineering and the technical implementation of diagnostic engineering architecture. While this course is marketed as entry level, any prerequisite knowledge will help with the course’s learning curve. Familiarity with security operations, search logs, security analysis, or any related skill set would be helpful (but not required). Part 1 Overview: This is the first part of a two-part series on diagnostic engineering! This course is designed for beginning anyone interested in security analysis, diagnostic engineering, and security architecture.

The first part is the meat of this course, in which we will examine:

  1. Diagnostic engineering theory
  2. Setting up our lab
  3. Working with our Logging and SIEM
  4. Execution of attack scenarios to generate logs and generate alerts
  5. Learn how to use Atomic Red Team for testing

The second part will cover detection as code philosophies, which will be very Python and GitHub heavy (but don’t worry! I’ll walk you through everything step by step.)

At the end of this two-part course, you will have a complete diagnostic engineering architecture. You will be able to:

  1. Run invasive tests
  2. Review reports
  3. Create an alert
  4. Save alerts using a standard template
  5. Apply template data through code
  6. Programmatically push alerts to SIEM
  7. Run periodic benchmarks from diagnostic data

The entire course takes about 11 hours, but should take 20-40 hours to complete. If you want to skip the Python heavy parts, all the code written in the course is available on GitHub.

Requirements: Ability to run 2-3 virtual machines on a local machine:

  • Ubuntu Linux
  • ParrotOS
  • Windows 11

Minimum requirements

  • CPU cores: 4
  • RAM: 8 GB
  • Hard disk space: 50 GB

Recommended requirements

  • CPU cores: 6+
  • RAM: 16GB+
  • Hard disk space: 50 GB +
  • Technically you can get by with just a few cores and 8GB of RAM on the main host, but any extra resources that can be allocated to your VMs will make the process smoother.

What you will learn in Detection Engineering Masterclass: Part 1

  • Understand the types of security functions

  • Enable advanced reporting and SIEM functionality

  • Ability to set up and create your own diagnostics in a SIEM

  • Learn how to run attacks through the Atomic Red team

This course is suitable for people who

  • Security analysts
  • Incident responders
  • Diagnostic engineers
  • Cyber ​​security college students

Details of the course Detection Engineering Masterclass: Part 1

  • Publisher: Udemy
  • teacher: Anthony Isherwood
  • Training level: beginner to advanced
  • Training duration: 5 hours and 54 minutes
  • Number of courses: 48

Course headings

The prerequisites of the course Detection Engineering Masterclass: Part 1

  • Basic understanding of cyber security concepts
  • A computer that can host a couple of VMs

Course images

Detection Engineering Masterclass: Part 1

Sample video of the course

Installation guide

After Extract, view with your favorite Player.

Subtitle: None

Quality: 720p

download link

Download part 1 – 1 GB

Download part 2 – 1 GB

Download part 3 – 646 MB

File(s) password: www.downloadly.ir

Size

2.6 GB

Be the first to comment

Leave a Reply

Your email address will not be published.


*