SOC Level 2

Tryhackme Walkthrough

Skills needed as a SOC Analyst career

Security operations
Introductory incident response
Malware analysis
Threat hunting and threat emulation

LEVEL: HARD

SECTION 1 - Log Analysis

Intro to logs
Logs operations
Intro to log analysis

SECTION 2 - Advance Splunk

Splunk: Exploring SPL
Splunk: Setting up a SOC Lab
Splunk: Dashboards and Reports
Splunk: Data Manipulation
Fixit

SECTION 3 - Advanced ELK

Logstash: Data Processing Unit
Custom Alert Rules in Wazuh
Advanced ELK Queries
Slingshot

SECTION 4 - Detection Engineering

Intro to Detection Engineering
Tactical Detection
Threat Intelligence for SOC
Sigma
SigHunt
Aurora EDR
SOAR

SECTION 5 - Threat hunting

Threat hunting: Introduction
Threat hunting: Foothold
Threat hunting: Pivoting
Threat hunting: Endgame
Hunt Me I: Payment Collectors
Hunt Me II: Typo Squatters

SECTION 6 - Threat Emulation

Intro to Threat Emulation
Threat Modelling
Atomic Red Team
CALDERA
Atomic Bird goes Purple #1
Atomic Bird goes Purple #2

SECTION 7 - Phishing

Phishing Analysis Fundamentals
Phishing Emails in Action
Phishing Analysis Tools
Phishing Prevention
The Greenholt Phish

Page updated

Google Sites

Report abuse