Curriculum
- 12 Sections
- 94 Lessons
- 12 Weeks
Expand all sectionsCollapse all sections
- Week 1Introduction to Information Security10
- 1.1Overview of Information Security60 Minutes
- 1.2Information Security vs. Cybersecurity
- 1.3Elements of Information Security: Confidentiality, Integrity, Availability, Non-Repudiation
- 1.4Security Controls: Managerial, Technical, Operational
- 1.5Introduction to Cybersecurity Frameworks: NIST, MITRE ATT&CK, ISO
- 1.6Identity & Access Management (IAM)
- 1.7Encryption & Data Protection
- 1.8Secure Software Development & Application Security
- 1.9Incident Response & Disaster Recovery
- 1.10Emerging Trends & Future of Information Security
- Week 2Security Operations Center (SOC) Foundations11
- 2.1Introduction to Security Management60 Minutes
- 2.2Introduction to the Security Operations
- 2.3Center (SOC)
- 2.4Why Do We Need a SOC?
- 2.5Role of a SOC Analyst in Modern Cybersecurity
- 2.6SOC Tiers and Responsibilities: Tier 1, Tier 2, Tier 3
- 2.7Key SOC Technologies and Terminologies
- 2.8SOC Workflow
- 2.9SOC Infrastructure & Deployment Models
- 2.10SOC & Threat Intelligence Integration
- 2.11SOC Incident Handling & Response
- Week 3Threat Landscape & Cyber Attacks7
- 3.1Types of Cyber Threats: Malware, Ransomware, Phishing, Insider, Threats
- 3.2Overview of Advanced Persistent Threats (APTs)
- 3.3Understanding Attacks and Their Patterns Case Studies: MOVEit Data Breach, SolarWinds Supply Chain Attack
- 3.4Real-World Case Studies & Lessons Learned
- 3.5Emerging & Next-Gen Cyber Threats
- 3.6Defending Against Cyber Threats
- 3.7Attack Patterns & Techniques
- Week 4Vulnerability Management & Risk Assessment8
- 4.1Understanding Vulnerability Assessment
- 4.2Types of Vulnerability Assessment
- 4.3Vulnerability Management Lifecycle: Asset Identification, Vulnerability Assessment Risk, Assessment Remediation, Verification Monitoring
- 4.4Common Vulnerabilities & Exploits
- 4.5Vulnerability Exploit Techniques & Real-World Examples
- 4.6Risk Assessment & Governance
- 4.7Vulnerability & Patch Management Best Practices
- 4.8Hands-On Labs & Practical Exercises
- Week 5Log Management & Analysis8
- 5.1Understanding Log Sources: Firewalls, IDS/IPS, Web Servers, Endpoints
- 5.2Hands-On with Centralized Logging Tool (Splunk)
- 5.3Identifying Anomalies in Logs
- 5.4Lab: Analyzing Apache Server Logs for Intrusion Attempts
- 5.5Security Log Analysis & Threat Detection
- 5.6Log Retention, Storage, & Compliance
- 5.7Advanced Log Analytics & Automation
- 5.8Lab: Log Analysis for Security Incidents
- Week 6Threat Intelligence & IoCs8
- 6.1What is Threat Intelligence?
- 6.2Why Do We Need Intelligence?
- 6.3Threats, Threat Actors, APTs, and Global Campaigns
- 6.4Types of Threats: Network-Level, Web Application-Level, Host-Level
- 6.5Indicators of Compromise (IoCs) vs. Indicators of Attack (IoAs) vs. Precursors
- 6.6Traffic Light Protocol (TLP)
- 6.7Understanding the Pyramid of Pain
- 6.8Practical Labs: Collecting IoCs, Exploring Threat Intelligence Platforms (e.g., Maltego, MISP), Checking IP/Domain Reputations, Analyzing Malicious Files
- Week 7Threat Hunting Essentials9
- 7.1Introduction to Threat Hunting
- 7.2Threat Hunting vs. Threat Detection
- 7.3Relationship Between Incident Response and Threat Hunting
- 7.4Threat Hunting Models: Hypotheses and Methodologies, Diamond Model of Intrusion Analysis, MITRE ATT&CK Framework
- 7.5Practical Labs: Network Traffic Analysis (Wireshark, Network Miner), Endpoint Process Analysis, Memory Hunt – Volatility Framework, Monitoring and Detecting USB drives in Windows
- 7.6Process Injection Lab in Wazuh
- 7.7Data Sources for Threat Hunting
- 7.8Threat Hunting Tools & Techniques
- 7.9Advanced Threat Hunting Strategies
- Week 8Security Information and Event Management (SIEM)7
- 8.1What is SIEM and Why Do We Need It?
- 8.2SIEM Components: Security Information Management (SIM), Security Event Management (SEM)
- 8.3SIEM Capabilities: Aggregation, Correlation, Alerts, Reporting
- 8.4Hands-On with Splunk: Installation, Rule Writing & Alert Creation, Event Analysis
- 8.5SIEM Use Cases & Threat Detection Scenarios
- 8.6SIEM Integration & Automation
- 8.7Advanced SIEM Concepts & Future Trends
- Week 9Malware Analysis - Basics & Hands-On Labs7
- 9.1Malware Analysis Basics
- 9.2Static vs. Dynamic Analysis
- 9.3Practical Labs: PE Analysis, YARA Rules, Traffic Analysis (Using Wireshark), Setting Up a Malware Lab, Anti-Sandboxing Techniques
- 9.4Anti-Sandboxing & Evasion Techniques
- 9.5Memory Forensics for Malware Analysis
- 9.6Reverse Engineering Malware
- 9.7Malware Detection & Threat Intelligence
- Week 10Digital Forensics & Incident8
- 10.1Response (DFIR) – Part 1
- 10.2Phases of Incident Response: Preparation, Detection, Containment, Eradication, Recovery
- 10.3Incident Playbook Overview
- 10.4Ticketing System
- 10.5Dissecting Phishing Emails (Practical): Identifying Red Flags in Phishing Emails, URL Reputation Analysis, File Reputation Analysis
- 10.6Hands-On Labs: Phishing & Email Forensics
- 10.7Advanced Topics & Additional Labs
- 10.8Real-World Case Studies & Simulation Exercises
- Week 11Authentication Mechanisms & Practical Labs7
- 11.1Authentication Mechanisms: SPF, DKIM, DMARC
- 11.2Hands-On Labs: Email Header Analysis, Analyzing Phishing Email Attachments, Extracting IoCs from Malicious Emails, Digital Forensics Case Study
- 11.3Certification & Career Guidance
- 11.4Advanced Access Control Mechanisms
- 11.5Common Authentication & Access Control Attacks
- 11.6Real-World Case Studies & Incident Analysis
- 11.7Resume Building & Job Interview Preparation
- Week 12Capstone Project & Final Assessment4
Resume Building & Job Interview Preparation
Prev