Course details

IOCs, Deploying AMP Connectors, and AMP Analysis Tools

IOCs, Deploying AMP Connectors, and AMP Analysis Tools

Target Audience
Expected Duration
Lesson Objectives
Course Number
Expertise Level

Advanced Malware Protection (AMP) is a feature that sets Cisco firewalls apart from other legacy solutions in the marketplace. Here the topics of To know IOCs and IOC Scanning, Deployment of AMP Connectors, and AMP Analysis Tools are covered. This course is one in a series in the Skillsoft learning path that covers the objectives of the Implementing Cisco Threat Control Solutions (SITCS) 1.5 exam, 300-210.

Target Audience
IT professionals including managers, engineers, and developers evaluating or implementing network and application security using new Cisco technology, as well as CCNP security certification candidates


Expected Duration (hours)

Lesson Objectives

IOCs, Deploying AMP Connectors, and AMP Analysis Tools

  • start the course
  • describe Indications of Compromise (IOCs)
  • define IOC scanning
  • customize IOCs
  • create groups
  • deploy Windows Connectors
  • deploy Direct Download
  • create the installer (public cloud)
  • deploy Email
  • describe Microsoft Windows installation and interface
  • specify connectivity considerations
  • perform command line installation
  • describe Event View Filters and Events List
  • define Event Detail: File Detection and Connector info
  • describe File Analysis and the File Analysis page
  • recognize File Analysis Results and File Repository
  • describe Trajectory and the File Trajectory Page, Device Trajectory, Filters, and Search
  • define Prevalence
  • recognize vulnerable software
  • report and create a report
  • define IOCs and IOC Scanning, Deploying AMP Connectors, and AMP Analysis tools
  • Course Number:

    Expertise Level