Analyzing Network Data
Network security monitoring (NSM) takes a bird’s-eye view of an organization, with the mindset that a threat actor will eventually need to cross a network boundary in order to accomplish their objective. In this course, you will learn about the principles of NSM, common tools (Bro and Suricata), and how to leverage the Elastic Stack for analytics.
Note: This course is a module of the Security Analytics specialization.
After completing this class, you’ll be able to use the Elastic Stack to harden your network security by reducing time to detection.
- Introduction to Network Security
- Bro IDS Data
- Suricata Data
- Threat Hunting with Kibana
- Stable internet connection
- Mac, Linux, or Windows
- Latest version of Chrome or Firefox (other browsers not supported)
- Disable any ad blockers and restart your browser before class
Virtual Classroom Information
This instructor-led course is only taught in a virtual environment. We encourage participants to set up their systems prior to logging into the training environment the first day of the class. We also encourage being logged in 15 minutes prior to the start of class each day.
This course is a module of the Security Analytics specialization. Find out how our focused Training Specializations can help you with your use case.