a complete course in SOC tier1.tips and tricks on how to be a SOC analysts.in this repository i tried to collects codes,notes,slides of my Soc class.
- Security+
- SANS Sec 504
- SANS Sec 450
- Splunk Fundamentals
- Forensics by Powershell
| Title | Description | Link |
|---|---|---|
| Security + | Differentiate Among Risk, Threat And Vulnerability | Link |
| Security + | Understanding Malicious Codes | Link |
| Security + | Understanding different attack types | Link |
| Security + | Appropriate security tools to facilitate network security | Link |
| Security + | Cryptography and Digital Certificate | Link |
| Security + | Wireless security | Link |
| Security + | Remote access security | Link |
| Security + | Access Control | Link |
| Security + | Environment and Physical security | Link |
| Title | Description | Link |
|---|---|---|
| SANS SEC504 | Hacker Tools,Techniques,and Incident Handling | Link |
| SEC504.1 | Incident Response and Cyber Investigations | Link |
| SEC504.2 | Recon, Scanning, and Enumeration Attacks | Link |
| SEC504.3 | Password and Access Attacks | Link |
| SEC504.4 | Public-Facing and Drive-By Attacks | Link |
| SEC504.5 | Evasion and Post-Exploitation Attacks | Link |
| SEC504.6 | Capture-the-Flag Event | Link |
| Title | Description | Link |
|---|---|---|
| SANS SEC450 | Blue Team Fundamentals Security Operations and Analysis | Link |
| SEC450.1 | Blue Team Tools and Operations | Link |
| SEC450.2 | Understanding Your Network | Link |
| SEC450.3 | Understanding Endpoints, Logs, and Files | Link |
| SEC450.4 | Triage and Analysis | Link |
| SEC450.5 | Continuous Improvement, Analytics, and Automation | Link |
| SEC450.6 | Capstone Defend the Flag | Link |
| Title | Description | Link |
|---|---|---|
| Introducing Splunk | Link | |
| Understand the uses of Splunk | Link | |
| Define Splunk Apps | Link | |
| Learn basic navigation in Splunk Searching | Link | |
| Run basic searches | Link | |
| Use autocomplete to help build a search | Link | |
| Set the time range of a search | Link | |
| Identify the contents of search results | Link | |
| Refine searches | Link | |
| Use the timeline | Link | |
| Work with events | Link | |
| Control a search job | Link | |
| Save search results | Link | |
| Using Fields in Searches | Link | |
| Understand fields | Link | |
| Use fields in searches | Link | |
| Use the fields sidebar | Link | |
| Use search modes (fast, verbose, and smart) | Link | |
| Creating Reports and Dashboards | Link | |
| Save a search as a report | Link | |
| Edit reports | Link | |
| Create reports that display statistics (tables) | Link | |
| Create reports that display visualizations (charts) | Link | |
| Create a dashboard | Link | |
| Add a report to a dashboard | Link | |
| Edit a dashboard | Link | |
| Splunk’s Search Language Fundamentals | Link | |
| Understand the search pipeline | Link | |
| Understand search syntax concepts | Link | |
| Use the following commands to perform searches | Link | |
| Tables | Link | |
| Rename | Link | |
| Fields | Link | |
| Dedup | Link | |
| Sort | Link | |
| Using Basic Transforming Commands | Link | |
| The top command | Link | |
| The rare command | Link | |
| The stats command | Link | |
| Creating and Using Lookups | Link | |
| Describe lookups | Link | |
| Examine a lookup file example | Link | |
| Create a lookup file and create a lookup definition | Link | |
| Configure an automatic lookup | Link | |
| Use the lookup in searches | Link | |
| Creating Scheduled Reports and Alerts | Link | |
| Describe scheduled reports | Link | |
| Configure scheduled reports | Link | |
| Describe alerts | Link | |
| Create alerts | Link |
This project is licensed under the Creative Commons Zero v1.0 Universal license. See the LICENSE file for details
Creative Commons Zero v1.0 Universal
Please inform me if i have violated any Copyright related issues.I great fan of Protecting Copyright.Karma or Laws whatever it is,it is preventing me from doing such thing.
Contributions are welcome! If you have a cool trick or command that you would like to share, feel free to open a pull request.
