7+ hours of video training exploring key threat intelligence and threat hunting concepts

Overview:

A cybersecurity professional needs to understand threats, threat actors, and have a clear understanding of where attackers are trying to take advantage of vulnerabilities. With more than 7 hours of video training, Threat Intelligence and Threat Hunting LiveLessons provides learners with a look at where the vulnerabilities in software, cloud, and other attack surfaces exist. Throughout the course, the learner will explore how to classify threats, work with the vulnerabilities, and use common assessment methodologies. The course will also dive into understanding threats against Internet of Things, real-time operating systems, and cloud-based environments.

Threat Intelligence and Threat Hunting LiveLessons is taught by expert trainer, author, and cybersecurity expert Aamir Lakhani using hands-on demos, in-depth discussions, and lightboard explanations. The course will cover the best practices for cybersecurity in a way that is easy to access and implement in real world situations.

Topics include:

• Importance of Threat Data and Intelligence
• Utilizing Threat Intelligence to Support Organization Security
• Vulnerability Management Activities
• Analyzing Output from Common Vulnerability Assessment Tools
• Threats Associated with the Cloud and Specialized Technology
• Implementing Controls to Mitigate Attacks and for Software Vulnerabilities
• Analyzing Logs and Impact Analysis

Mr. Lakhani creates technical security strategies and leads security implementation projects for Fortune 500 companies. Industries of focus include healthcare providers, educational institutions, financial institutions, and government organizations. Aamir has designed offensive counter-defense measures for the Department of Defense and national intelligence agencies. He has also assisted organizations with safeguarding IT and physical environments from attacks perpetrated by underground cybercriminal groups. His areas of expertise include cyber defense, mobile application threats, malware management, Advanced Persistent Threat (APT) research, and investigations relating to the Internet’s dark security movement.

Skill Level:

• Beginner

• Apply key threat intelligence and threat hunting concepts
• Understand and classify hot attacks are taking advantage of vulnerabilities
• Use common vulnerability assessment methodologies
• Understand threats against Internet of Things, real-operating systems, and cloud-based environments

• Cybersecurity Professionals
• Anyone interested in learning cyber security fundamentals

• There is no required prerequisite

Pearson publishes expert-led video tutorials covering a wide selection of technology topics designed to teach you the skills you need to succeed. These professional and personal technology videos feature world-leading author instructors published by your trusted technology brands: Addison-Wesley, Cisco Press, Pearson IT Certification, Sams, and Que. Topics include: IT Certification, Network Security, Cisco Technology, Programming, Web Development, Mobile Development, and more. Learn more about Pearson Video training at http://www.informit.com/video .

Table of Contents

Introduction

Threat Intelligence and Threat Hunting: Introduction

Lesson 1: Importance of Threat Data and Intelligence

Learning objectives

1.1 What is Threat Intelligence

1.2 Threat Sources - Part 1

1.3 Threat Sources - Part 2

1.4 Threat Classifications

1.5 Cyber Threat Investigation - Part 1

1.6 Cyber Threat Investigation - Part 2

1.7 Social Media Graphs - Part 1

1.8 Social Media Graphs - Part 2

1.9 Log Challenges - Part 1

1.10 Log Challenges - Part 2

1.11 Advanced Threat Hunting - Part 1

1.12 Advanced Threat Hunting - Part 2

1.13 Endpoint Detection

Lesson 2: Utilizing Threat Intelligence to Support Organization Security

Learning objectives

2.1 Attack Frameworks - Part 1

2.2 Attack Frameworks - Part 2

2.3 Threat Research

2.4 Threat Modeling Methodologies and Threat Intelligence Sharing with Support Functions

2.5 Wireless Analysis Techniques

Lesson 3: Vulnerability Management Activities

Learning objectives

3.1 Vulnerability Identification - Part 1

3.2 Vulnerability Identification - Part 2

3.3 Validation

3.4 Remediation and Mitigation and Inhibitors

3.5 Scanning Parameters and Criteria

3.6 Vulnerability Scanning - Part 1

3.7 Vulnerability Scanning - Part 2

3.8 Enumeration

Lesson 4: Analyze Output from Common Vulnerability Assessment Tools

Learning objectives

4.1 Understanding Results

4.2 Web Application Scanners

4.3 Infrastructure Vulnerability Scanner

4.4 Software Assessment Tools and Techniques

4.5 Wireless Assessment

4.6 Cloud Infrastructure Assessment

Lesson 5: Threats and Vulnerabilities Associated with Specialized Technology

Learning objectives

5.1 Mobile

5.2 Internet of Things (IoT) and Embedded Devices - Part 1

5.3 Internet of Things (IoT) and Embedded Devices - Part 2

5.4 APTs

5.5 Embedded and Real-Time Operating Systems (RTOS)

5.6 SOC and FPGA

5.7 Physical Access Control

5.8 Building Automation Systems, Vehicles, and Drones

5.9 Industrial Control Systems (ICS) and Process Automation

5.10 Defending Critical Infrastructure

5.11 Supervisory Control and Data Acquisition (SCADA) - Part 1

5.12 Supervisory Control and Data Acquisition (SCADA) - Part 2

5.13 Verifications and Quality Controls

Lesson 6: Threats Associated with the Cloud

Learning objectives

6.1 Cloud Service, FaaS, and Deployment Models

6.2 IaC, Insecure Applications

6.3 Application Programming Interface

6.4 Improper Key Management

6.5 Logging and Monitoring

Lesson 7: Implement Controls to Mitigate Attacks

Learning objectives

7.1 Attack Types and XML Types

7.2 SQL Attacks

7.3 Overflow Attacks

7.4 Cross-Site Scripting

7.5 Remote Code Execution

7.6 Directory Traversal

7.7 Privilege Escalation

7.8 Password Spraying

7.9 Credential Stuffing

7.10 Impersonation

7.11 On-path and Man-in-the-Middle

7.12 Session Hijacking

Lesson 8: Implement Controls for Software Vulnerabilities

Learning objectives

8.1 Vulnerabilities Improper Error Handling

8.2 Dereferencing

8.3 Insecure Object Reference

8.4 Race Condition

8.5 Broker Authentication

8.6 Sensitive Data Exposure

8.7 Insecure Components

8.8 Insufficient Logging and Monitoring

8.9 Weak or Default Configurations

Lesson 9: Analyzing Logs and Impact Analysis

Learning objectives

9.1 Event Logs

9.2 Syslogs

9.3 Firewall Logs

9.4 Web Application Firewall (WAF)

9.5 Proxy

9.6 Intrusion Detection and Prevention (IDS/IPS)

9.7 Impact Analysis

9.8 Organizations Impact vs. Localized Impact

9.9 Immediate vs. Total

Summary

Threat Intelligence and Threat Hunting: Summary