A resource dedicated to SOC Analysts pursuing LetsDefend certification, featuring a detailed collection of write-ups and study materials. Each module in this repository provides in-depth explanations of SOC concepts and practical solutions to real-world scenarios, aiding in the learning journey and incident analysis.
This repository serves as a thorough compilation of write-ups and educational resources for the LetsDefend SOC Analyst Learning Path. It is structured to document the essential learning journey, delivering clear insights into a variety of Security Operations Center (SOC) concepts and providing solutions to practical scenarios faced during the certification process.
Repository Structure
The organization of the repository follows a modular approach, encompassing detailed markdown write-ups and relevant visual assets across various SOC topics:
.
├── SOC
│ ├── Assets # Visual aids and screenshots used in write-ups
│ │
│ ├── MD Files # Detailed markdown write-ups for each lecture
│ | |
│ | ├── 1 - SOC Fundamentals
│ | ├── 2 - Cyber Kill Chain
│ | ├── 3 - MITRE ATT&CK Framework
│ | ├── 4 - Introduction to Phishing
│ | ├── 5 - Detecting Web Attacks
│ | ├── 6 - Detecting Web Attacks - 2
│ | ├── 7 - How to Investigate a SIEM Alert
│ | ├── 8 - Malware Analysis Fundamentals
│ | ├── 9 - Dynamic Malware Analysis
│ | ├── 10 - Malicious Document Analysis
│ | └── 11 - Security Solutions
│ |
│ └── Labs
│ |
│ ├── 1 - SOC282 - Phishing Alert
│ ├── 2 - 14 - SOC104 - Malware Detected
│ ├── 3 - 36 - SOC104 - Malware Detected
│ ├── 4 - 83 - SOC119 - Proxy - Malicious Executable File Detected
│ ├── 5 - 85 - SOC109 - Proxy - Emotet Malware Detected
│ ├── 6 - 84 - SOC104 - Malware Detected
│ └── 7 - 92 - SOC145 - Ransomware Detected
│
├── LICENSE # MIT License
└── README.md # Project overview and structure
Modules Covered
- 1. SOC Fundamentals
- 2. Cyber Kill Chain
- 3. MITRE ATT&CK Framework
- 4. Introduction to Phishing
- 5. Detecting Web Attacks
- 6. Detecting Web Attacks - 2
- 7. How to Investigate a SIEM Alert
- 8. Malware Analysis Fundamentals
- 9. Dynamic Malware Analysis
- 10. Malicious Document Analysis
- 11. Security Solutions
Labs Covered
- 2. 14 - SOC104 - Malware Detected
- 3. 36 - SOC104 - Malware Detected
- 4. 83 - SOC119 - Proxy - Malicious Executable File Detected
- 5. 85 - SOC109 - Proxy - Emotet Malware Detected
- 6. 84 - SOC104 - Malware Detected
- 7. 92 - SOC145 - Ransomware Detected
*Disclaimer: These write-ups are for educational purposes and are based on the LetsDefend SOC Analyst Learning Path.
No comments yet.
Sign in to be the first to comment.