Road to the Mastery of Self
Cyber Warrior Training | Month 1 | Splunk
Month | Title | Topic | Duration (days) | Course | Purpose | Requirements | Tags |
---|---|---|---|---|---|---|---|
Month 1 | Cyber Warrior Training | Month 1 | Splunk | Splunk (LogIT) Boss of the SOC (BOTS) Free Training Workshops | Hunting an APT with Splunk is a hands-on workshop designed to provide a deeper dive into a "fictional nation-state" Advanced Persistent Threat. This workshop leverages Splunk and Enterprise Security and uses the Lockheed Martin Kill Chain and MITRE ATT&CK to contextualize a hunt. PowerShell Empire is the primary focus in this workshop. All hunts in this workshop series leverage the popular Boss of the SOC (BOTS) dataset. Users will leave with a better understanding of how Splunk can be used to hunt for threats within their enterprise.
* Learn Splunk and Threat Hunting skills by looking at concrete use cases leveraging the BOTS v2 Dataset
* Learn useful Splunk commands for identifying anomalous activity
* Participate in guided activities that are instructor-led |