a complete course in SOC tier1.tips and tricks on how to be a SOC analysts.in this repository i tried to collects codes,notes,slides of my Soc class.
- Security+
- SANS Sec 504
- SANS Sec 450
- Splunk Fundamentals
- Forensics by Powershell
Title | Description | Link |
---|---|---|
Security + | Differentiate Among Risk, Threat And Vulnerability | Link |
Security + | Understanding Malicious Codes | Link |
Security + | Understanding different attack types | Link |
Security + | Appropriate security tools to facilitate network security | Link |
Security + | Cryptography and Digital Certificate | Link |
Security + | Wireless security | Link |
Security + | Remote access security | Link |
Security + | Access Control | Link |
Security + | Environment and Physical security | Link |
Title | Description | Link |
---|---|---|
SANS SEC504 | Hacker Tools,Techniques,and Incident Handling | Link |
SEC504.1 | Incident Response and Cyber Investigations | Link |
SEC504.2 | Recon, Scanning, and Enumeration Attacks | Link |
SEC504.3 | Password and Access Attacks | Link |
SEC504.4 | Public-Facing and Drive-By Attacks | Link |
SEC504.5 | Evasion and Post-Exploitation Attacks | Link |
SEC504.6 | Capture-the-Flag Event | Link |
Title | Description | Link |
---|---|---|
SANS SEC450 | Blue Team Fundamentals Security Operations and Analysis | Link |
SEC450.1 | Blue Team Tools and Operations | Link |
SEC450.2 | Understanding Your Network | Link |
SEC450.3 | Understanding Endpoints, Logs, and Files | Link |
SEC450.4 | Triage and Analysis | Link |
SEC450.5 | Continuous Improvement, Analytics, and Automation | Link |
SEC450.6 | Capstone Defend the Flag | Link |
Title | Description | Link |
---|---|---|
Introducing Splunk | Link | |
Understand the uses of Splunk | Link | |
Define Splunk Apps | Link | |
Learn basic navigation in Splunk Searching | Link | |
Run basic searches | Link | |
Use autocomplete to help build a search | Link | |
Set the time range of a search | Link | |
Identify the contents of search results | Link | |
Refine searches | Link | |
Use the timeline | Link | |
Work with events | Link | |
Control a search job | Link | |
Save search results | Link | |
Using Fields in Searches | Link | |
Understand fields | Link | |
Use fields in searches | Link | |
Use the fields sidebar | Link | |
Use search modes (fast, verbose, and smart) | Link | |
Creating Reports and Dashboards | Link | |
Save a search as a report | Link | |
Edit reports | Link | |
Create reports that display statistics (tables) | Link | |
Create reports that display visualizations (charts) | Link | |
Create a dashboard | Link | |
Add a report to a dashboard | Link | |
Edit a dashboard | Link | |
Splunk’s Search Language Fundamentals | Link | |
Understand the search pipeline | Link | |
Understand search syntax concepts | Link | |
Use the following commands to perform searches | Link | |
Tables | Link | |
Rename | Link | |
Fields | Link | |
Dedup | Link | |
Sort | Link | |
Using Basic Transforming Commands | Link | |
The top command | Link | |
The rare command | Link | |
The stats command | Link | |
Creating and Using Lookups | Link | |
Describe lookups | Link | |
Examine a lookup file example | Link | |
Create a lookup file and create a lookup definition | Link | |
Configure an automatic lookup | Link | |
Use the lookup in searches | Link | |
Creating Scheduled Reports and Alerts | Link | |
Describe scheduled reports | Link | |
Configure scheduled reports | Link | |
Describe alerts | Link | |
Create alerts | Link |
This project is licensed under the Creative Commons Zero v1.0 Universal license. See the LICENSE file for details
Creative Commons Zero v1.0 Universal
Please inform me if i have violated any Copyright related issues.I great fan of Protecting Copyright.Karma or Laws whatever it is,it is preventing me from doing such thing.
Contributions are welcome! If you have a cool trick or command that you would like to share, feel free to open a pull request.