eCIR - Incident Handling & Response Professional

Are you interested in learning how to professionally analyze, handle, and respond to security incidents on heterogeneous networks and assets? The Incident Handling & Response Professional Learning Path will help you understand the mechanics of modern cyber-attacks and how to detect them. This learning path will actually teach you how to effectively use and fine-tune open-source IDS, log management, and SIEM solutions in order to detect and even hunt for intrusions. Specifically, you will analyze traffic, flows, and endpoints, as well as utilize analytics and tactical threat intelligence during the learning process. The Incident Handling & Response Professional Learning Path also prepares you for the eCIR exam and certification.

INE - eCIR - Incident Handling & Response Professional
Size: 268 MB
Contains: 2.677 Files, 52 Folders

Course Contents:
Section 1
1. Practical Incident Handling
- Incident Handling & Response
- Preparing & Defending Against Reconnaissance & Information Gathering
- Preparing & Defending Against Scanning
- Preparing & Defending Against Exploitation
- Preparing & Defending Against Post-Exploitation
2. Incident Handling & Response: Network Traffic & Flow Analysis
- Intrusion Detection by Analyzing Traffic - Part 1
- Intrusion Detection by Analyzing Traffic - Part 2
- Intrusion Detection by Analyzing Flows
3. Incident Handling & Response: SOC 3.0 Operations & Analytics
- SIEM Fundamentals & Open Source Solutions
- Logging
- SMTP, DNS & HTTP(S) Analytics
- Endpoint Analytics
- Creating a Baseline & Detecting Deviations

FOR EDUCATIONAL PURPOSES ONLY!