TAG Information Security Society Presents: Build Your Own Security Lab
Monday, October 25, 2021 (10:00 AM - 5:30 PM) (EDT)
Want to be a Cyber Security Investigator? Learn Purple Team / attack simulations and threat hunting basics with hands-on exercises. Get the basics of how to build your own security lab and continue to grow your skills.
In this session, you will learn how to build a lab environment, conduct attacks within it and learn to detect threats. For those of you who want to get hands-on experience, this is an ideal course. If you want to learn the fundamentals and not be hands on, we also have an audit option which allows you to learn by observing.
This one-day virtual course is geared towards those new to cyber security and is also for the security professionals who want to learn more about threat hunting / purple training.
Seating is limited to 20 hands-on participants and 20 audit-only attendees. Register today!
Registration will close on October 18th.
10:00 - 11:30 am: Introduction and Windows AD connection, basic setup of lab, configuring logs, possible Sysmon setup
11:30 - 12:00 pm: Break
12:00 - 1:30 pm: Hooking up logs to Azure Sentinel, Running basic queries in KQL - possibly some Sysmon tuning
1:30 - 2:00 pm: Break
2:00 - 3:30 pm: Purple Team / Attack simulations and Threat Hunting in KQL
3:30 - 4:00 pm: Break
4:00 - 5:30 pm: Joining Sentinel workspaces together with Lighthouse, more threat hunting queries, networking hunting, and final remarks
Society - Information Security