Dive into a comprehensive 7-hour tutorial series on Splunk SIEM for incident response, log management, threat hunting, and blue team operations. Learn to investigate various cyber threats including Cerber ransomware, advanced persistent threats (APTs), web application attacks like SQL injection and XSS, USB attacks, FTP vulnerabilities, and crypto miners. Explore how to leverage Splunk for analyzing Amazon Web Services (AWS) cloud events, authentication logs, and Microsoft Office macro malware. Gain practical experience with hands-on exercises from TryHackMe's Boss of the SOC challenges, covering topics such as web activity investigation, cloud security, and ransomware analysis, including a focus on Conti ransomware targeting Microsoft Exchange servers.
Overview
Syllabus
Investigating Cerber Ransomware with Splunk | TryHackMe Boss of the SOC V1.
Hunting Advanced Persistent Threat APT with Splunk | TryHackMe Boss of the SOC V1.
Introduction to Splunk For Cyber Security | TryHackMe Splunk 101.
Web Activity Investigation with Splunk | TryHackMe Splunk 2 Boss of the SOC V2.
Detecting SQL and XSS Web Application Attacks with Splunk | TryHackMe Splunk 2.
USB Attacks Investigation with Splunk | TryHackMe Splunk 2 Boss of the SOC v2.
Investigating FTP with Splunk | TryHackMe Boss of the SOC v2.
Investigating Amazon Web Service Cloud Events with Splunk | TryHackMe Splunk3.
Crypto Miners Investigation with Splunk | TryHackMe Splunk3.
Investigating Authentication Events in Amazon Web Service with Splunk | TryHackMe.
Investigating Microsoft Office Macro Malware Events with Splunk | TryHackMe Splunk 3.
Investigating Compromised Machines with Splunk | TryHackMe Splunk3.
Investigating Conti Ransomware on Microsoft Exchange with Splunk | TryHackMe.
Taught by
Motasem Hamdan
Reviews
5.0 rating, based on 1 Class Central review
-
Splunk SIEM Training Tutorials was Great Course. Learned a lot of things from the tutorial series. Thank you very much.
