SOC-200: Security Operations and Defensive Analysis (OSDA)

Exploit misconfigurations, software flaws, and zero-day vulnerabilities to increase your level of network control

Understand how adversaries compromise Linux servers through privilege escalation methods, service exploits, and configuration weaknesses

Refine your evasion strategies by using firewalls, intrusion detection systems, and other tools to identify malicious activities

Use advanced methods for evading antivirus solutions and minimize your digital footprint with techniques like payload obfuscation and exploit customization

Avoid being detected by defensive technologies while making lateral network moves using covert communication methods and tunneling techniques

Uncover potential attack paths with methods and tools that gather information about Active Directory’s structure, users, groups, and permissions

Leverage compromised credentials, remote execution, and network pivoting to expand control in Windows environments post-exploit

Explore hidden accounts, service manipulation, and other methods of blending into network fabrics using the same techniques as attackers

Building an ELK SIEM: Get hands-on with setting up a SIEM solution using the ELK stack (Elasticsearch, Logstash, and Kibana). Learn how to install, configure, and integrate these components to start collecting and analyzing security logs

Operationalizing Your SIEM: Discover how to effectively manage and use your ELK SIEM deployment. Learn to collect logs from various sources, normalize data, create insightful dashboards, and set up alerts to proactively detect a security incident