This cybersecurity module will explore the practical use of Fortinet solutions as Threat Intelligence and Threat Hunting platforms. Comprised of theory lessons and hands-on labs, this course will get the students to understand fundamental concepts about cyber threat intelligence and how to leverage Fortinet solutions to perform Threat Intelligence management (collection, enrichment, and so on) and Threat Hunting.
Students will leverage widely adopted industry frameworks and models to comprehend how to use Threat Intelligence to understand adversary behavior and perform threat hunting in search of indicators of undetected threats that are occurring or may have occurred in the past. They will then emulate adversary behavior to reproduce certain threat scenarios and execute threat hunting activities using Fortinet solutions and 3rd party tools.
Pre-requisites
- NSE 4 certification
- Basic end-user experience with command line interfaces (Linux shell and Windows PowerShell)
- Solid knowledge of network protocols (such as IP, TCP, UDP, HTTP, DNS, and so on)
- Conceptual knowledge about Fortinet security operations solutions:
- FortiAnalyzer
- FortiSIEM
- FortiSOAR
- FortiEDR
- Attended the following NSE training
- NSE 5—FortiSIEM
- NSE 5—FortiEDR
- Recommended:
- NSE 5 (passed FortiSIEM and FortiEDR exams)
- NSE 7 Security Architect certification
- Hands-on experience with Fortinet security operations solutions
- FortiAnalyzer
- FortiSIEM
- FortiSOAR
- FortiEDR
- Basic hands-on experience with Kali Linux
- Metasploit
- Burp Suite
- Browser Exploitation Framework (BeEF)
Requirements:
- Students must have their own laptops (15” screen minimum)
- Broadband or LAN Internet connectivity
- Updated web browser (Google Chrome recommended)
- It’s highly recommended to have a second screen
Dates and Times:
Part 1: Tuesday, November 1 | 8:00 AM - 12:00 PM
Part 2: Wednesday, November 2 | 8:00 AM - 12:00 PM
Part 3: Wednesday, November 2 1:00 PM - 5:00 PM
Part 4: Thursday, November 3 | 8:00 AM - 12:00 PM