SOC Analyst Training - Nov. 30 - Dec. 4, 2020 - 9 a.m.-5 p.m.

Out of Stock

Program Objectives

After completing this course, you should be able to understand the basics of:

  • What is cyber and information security and get familiar with the cyber world and its basic terms
  • Windows domain environment
  • TCP/IP model and network / application protocols
  • SQL and relational databases
  • Rule base of firewalls and SIEM

This course includes live simulated attacks inside the UTSA Cyber Range and covers both the technical and operational aspects of incident investigation. On the technical side, participants will learn tools and techniques used to investigate the network and will practice using these tools on the virtual environment. On the operational side, participants will learn about working as a team, dividing the tasks of monitoring and investigating between the different team members, drawing conclusions from the gathered information and applying mitigation processes.

Course Date and Time:

Monday, Nov. 30 - Friday, Dec. 4, from 9 a.m. - 5 p.m.

Day 1

  • Hardware
  • Windows 10 - Intro, Processes, Services
  • Networking – TCP/IP Model, Packet Tracer, Wireshark

Day 2

  • Linux Basics
  • Active Directory - Windows Domain Services
  • Range - Apache Shutdown Attack Simulation

Day 3

  • Web - HTTP, HTML, JS, PHP, Project
  • Web Attacks - SQL Injection
  • Range - Ransomware Attack Simulation

Day 4

  • Firewalls and VPN
  • Splunk as a SEIM
  • Range - The SMB Thief

Day 5

  • Basic Malware Analysis
  • Range - Trojan Data Leakage Attack Simulation

Stock number: