Hunting Through the SIEM (W/ Splunk)
Master Defensive Cybersecurity with SCYTHE and Splunk
Join our immersive cybersecurity workshop, where you'll dive into the world of defensive threat hunting using SCYTHE to deploy multi-staged threats and Splunk (SIEM) to track and detect malicious activities. This hands-on experience is designed to enhance your threat detection and incident response skills, arming you with practical tools and techniques to stay ahead of sophisticated cyber threats.
What You'll Learn
Through this workshop, you'll:
🦄 Map malicious activities to the MITRE ATT&CK Matrix: Gain insights into how specific actions relate to well-known tactics and techniques.
🦄 Deploy multi-staged cyber threats: Build the skills to simulate real-world attacks and hunt for them effectively.
🦄 Analyze endpoint logs in Splunk (SIEM): Discover how to extract and use valuable data from Sysmon and Windows logs.
🦄 Create and customize dashboards: Develop your own threat detection dashboards and queries for ongoing monitoring.
🦄 Operationalize detection rules: Learn how to convert threat intel into actionable alerts and queries.
Why You Should Join
In today's ever-evolving cyber landscape, the ability to detect, analyze, and respond to threats is critical. This workshop offers a unique opportunity to gain hands-on experience, working with leading tools in the field to enhance your cybersecurity capabilities.
- Hands-On Practice: Apply your learning in real-time with SCYTHE and Splunk.
- Practical Insights: Master critical skills needed for advanced threat detection and incident response.
- MITRE ATT&CK Expertise: Understand how to map and mitigate threats based on this industry-standard framework.
What You Need
- A Computer: Just a device with a compatible web browser.
- An Appetite to Learn: No extensive prerequisites—just your passion for cybersecurity!
Don't miss out on this opportunity to take your cybersecurity expertise to the next level. Whether you're a seasoned professional or looking to expand your defensive capabilities, this workshop will equip you with the skills needed to stay ahead of advanced threats.
📅 23 October 2024
🕐 1 - 4 PM (ET)
Please register using a valid email address so we can provision your VMware lab environment before the workshop