O`REILLY – Threat Hunting with Wireshark for SecOps
English | Tutorial | Size: 3.3 GB
Learn how to analyze network traffic, a critical skillset for all cybersecurity professionals
Don’t wait for alerts from your IDS/IPS systems to hunt for threats in network traffic
Capture, analyze, and isolate suspect traffic and indicators of compromise with Wireshark
The field of cybersecurity has grown tremendously in the past few years. With every new breach, we realize just how important analysis skills have become in identifying, mitigating, and protecting networks. Wireshark is one of the most important tools in the toolbox for identifying threats, spotting unusual behavior, and analyzing malware behavior; you just need to know how to use it.
In this class, we dive deep into traffic flows to learn how Wireshark can be used to analyze different steps in the Cyber Kill Chain. This is a lab-driven course, with plenty of hands-on, to learn about:
Creating a security profile
Filters to spot abnormal traffic patterns
Analyzing scan activity
Malware analysis
How to spot data exfiltration
Finding traffic from unusual sources with GeoIP
Analyzing a brute-force attack
What you’ll learn and how you can apply it
Where to look on the network for threat hunting
How nmap scans work and other active recon tools
How attackers move laterally and exploit network vulnerabilities
And you’ll be able to:
Quickly analyze network traffic to spot nmap scan activity
Analyze malware behavior and spot indicators of compromise
Isolate traffic patterns at all stages of the MITRE ATT&CK Framework and Cyber Kill Chain
This live event is for you because.
This course is targeted toward network engineers or SOC analysts who are responsible for analyzing traffic with Wireshark.
Beginners will learn how to be more comfortable with the Wireshark interface and how attacks look in the packets. Intermediate/advanced analysts will pick up some new tips to identify and isolate suspect traffic quickly.
Prerequisites
Familiarity with networking concepts: routing, switching, firewalls, and the basics of how packets flow through a network. It is not required to have a CCNA level of experience, but it would be a good starting point.
RAPIDGATOR
rapidgator.net/file/4efd30b514acaae5d4628284ecd9c10a/Threat_Hunting_with_Wireshark_for_SecOps.part1.rar.html
rapidgator.net/file/564b3384ac0e64a5f8ccce6142c8ad57/Threat_Hunting_with_Wireshark_for_SecOps.part2.rar.html
rapidgator.net/file/a73469fa4d894dc856ae6fc953f2fbcc/Threat_Hunting_with_Wireshark_for_SecOps.part3.rar.html
rapidgator.net/file/e8d3cd0d3875bdf05339194656348c2c/Threat_Hunting_with_Wireshark_for_SecOps.part4.rar.html
rapidgator.net/file/f5bed5b846335b61a9363f500407574c/Threat_Hunting_with_Wireshark_for_SecOps.part5.rar.html
NITROFLARE
nitroflare.com/view/5AABD4F0A447423/Threat_Hunting_with_Wireshark_for_SecOps.part1.rar
nitroflare.com/view/97B862C99505E31/Threat_Hunting_with_Wireshark_for_SecOps.part2.rar
nitroflare.com/view/200188ED0994778/Threat_Hunting_with_Wireshark_for_SecOps.part3.rar
nitroflare.com/view/25E5C3CE3EC30F3/Threat_Hunting_with_Wireshark_for_SecOps.part4.rar
nitroflare.com/view/A6CFB4ED022E0A8/Threat_Hunting_with_Wireshark_for_SecOps.part5.rar