Threat Hunting: Review, Automate, and Improve

Focused View

Brandon DeVault

1:36:25

88 View

Module 1 - Course Overview

1. Course Overview.mp4

01:48

Module 2 - Continuous Improvement and Reporting

1. Welcome to the End.mp4

02:15

2. After-action Reporting.mp4

07:18

3. Demo - Reporting Tools.mp4

10:33

4. Maturing the Process.mp4

05:53

5. Measuring Success.mp4

07:47

Module 3 - Custom Detection and Automation

1. Aggregating Findings.mp4

10:48

2. Demo - Exploring the Data.mp4

06:38

3. Automation.mp4

08:24

4. Demo - Automating Detection.mp4

07:36

5. Maturing Automation.mp4

01:05

Module 4 - Emulation and Detection

1. Discovering New Threats.mp4

06:47

2. Emulating Threat Actors.mp4

06:44

3. Demo - Emulation with Atomic Red Team.mp4

05:53

4. Testing With Detection.mp4

05:47

5. The End Is A New Beginning.mp4

01:09

Description

What are the follow-on tasks after completing a threat hunt? This course will teach you how to generate tangible outcomes and improve your threat hunting process.

What You'll Learn?

Completion of a threat hunt involves not only the hunting, but ensuring tangible outputs to improve your organization's security. In this course, Threat Hunting: Review, Automate, and Improve, you'll learn to complete the threat hunting cycle with continuous automation and improvement. First, you'll explore the reporting process and how to measure success. Next, you'll discover how to build custom detection and automation mechanisms. Finally, you'll learn how to employ adversary emulation to improve detections. When you're finished with the course, you'll have the skills and knowledge of threat hunting needed to improve the maturity of your organization's threat hunting program.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Ethical Hacking

Cyber Security

Network Security

Information Security

Cyber Security Awareness

CompTIA Pentest+

Brandon DeVault

Instructor's Courses

Brandon DeVault is an Sr. Security Author focusing on general blue team operations, incident response, and threat hunting at Pluralsight. He is also a member of the Florida Air National Guard and works as a threat hunter on a Mission Defense Team (MDT) defending North America’s air tracks. Prior to joining Pluralsight, Brandon worked with Elastic as an Education Architect creating and delivering security content. He also worked with Special Operations Command where he had two deployments to Afghanistan on deployable communications teams. His experience spans satellite communications, radio technologies, system and network administration. Brandon is also passionate about hardware hacking, soldering, hiking, and currently holds the GCIA, GCED, and Security+ certifications.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.