IR ADVANCED

Training of IR Team – Advanced Training

knowledge and skills of experienced Incident Responders with advanced in-depth investigations into OS and Networks.

40 Hours

Cloud Environment

Instructor Led

Virtual Labs & Simulation

The course is aimed at professionals who have acquired basic Incident Responder skills and are looking to advance their capabilities: Developing additional skills in incident response, focusing on advanced analysis of networking artefacts and volatile memory investigations.

WHO IS IT FOR

IT and Cybersecurity juniors

Cybersecurity Analysts and Practitioners

Security Operations (SecOps) professionals

GOALS

Learn to use advanced investigation tools for more complex and ongoing incident response investigations

Acquire skills in advanced network and memory forensics, enhancing the ability to analyze and interpret forensic data effectively

Improve skills in handling a wide range of incidents, focusing on both immediate response and long-term investigation strategies

Requirements

Profound knowledge in IT infrastructures (both networks and operating systems, i.e. file systems, windows registry, common network protocols)

Basic knowledge and experience in SOC infrastructures, workflows and processes

Basic knowledge and experience in incident response tools, techniques and procedures

Incident Response Advance Investigation Tools

Advanced Incident Response – Intrusion Analysis
Advanced Incident Response – Packer, PE and Timeline Analysis

Advanced Network Forensics

Networking Protocols and Logs
Artifacts Extraction Tools

Advanced Memory Forensics

Memory Forensics in Incident Response

Incident Response – At the Level of Ongoing Incident

Covered in the above topics

CTF Scenario

Network Forensic

27 Hours of hands-on activities

Total amount of practical experience during this course.

Course Syllabus >>