CompTIA CASP+: Monitoring & Incident Response
CompTIA CASP+
| Intermediate
- 15 Videos | 1h 27m 43s
- Includes Assessment
- Earns a Badge
Enterprise IT monitoring is crucial in detecting potential security incidents. In this course, you'll explore various monitoring methods for hosts, devices, and networks. Next, you'll learn to configure log forwarding and work with logs through PowerShell. Moving on, you'll learn to recognize when to use honeyfiles, honeypots, and honeynets, as well as SIEM and SOAR solutions. You'll then examine intrusion detection and prevention and how they are used to secure a network. Lastly, you'll explore the use of tools such as Snort, tcpdump, nmap, and Wireshark for analyzing networks and network traffic. This course is one of a collection of courses that prepares learners for the CompTIA Advanced Security Practitioner (CASP+) CAS-004 exam.
WHAT YOU WILL LEARN
-
discover the key concepts covered in this courseidentify the various levels of IT monitoringenable syslog forwarding in Linuxmanage Windows logs using the GUImanage cloud-based loggingdifferentiate between honeynets, honeypots, and honeyfilesdescribe how IDS and IPS are used to secure a networkinstall Snort IDS
-
test Snort IDS rulesrecognize reasons for using SIEM and SOAR solutionsuse tcpdump to capture network trafficuse Wireshark to filter captured network trafficuse nmap to discover hosts and network servicesuse packettotal.com to analyze packetssummarize the key concepts covered in this course
IN THIS COURSE
-
1.Course Overview1m 37sUP NEXT
-
2.Host, Device, and Network Monitoring9m 25s
-
3.Enabling Linux Syslog Forwarding6m 14s
-
4.Managing Windows Event Viewer Logs5m 21s
-
5.Managing Cloud Logging and Alerts7m 10s
-
6.Honeynets, Honeypots, and Honeyfiles4m 51s
-
7.Intrusion Detection and Prevention9m 22s
-
8.Installing the Snort IDS5m 52s
-
9.Testing the Snort IDS4m 11s
-
10.SIEM and SOAR5m 31s
-
11.Network Traffic Capture Using tcpdump5m 34s
-
12.Network Traffic Filtering Using Wireshark7m 27s
-
13.Using nmap For Network Reconnaissance6m 40s
-
14.Analyzing Packet Captures for Malicious Activity7m 22s
-
15.Course Summary1m 5s
EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE
Skillsoft is providing you the opportunity to earn a digital badge upon successful completion of this course, which can be shared on any social network or business platform
Digital badges are yours to keep, forever.