Splunk For SOC Analysts (New Course) [2023]

Splunk For SOC Analysts, Threat Hunters & SOC Leads

This course is specially designed for SOC analysts, Threat hunters and SOC Leads, so that they can use Splunk in completing their BAU tasks.

What you’ll learn

• Specially crafted course for SOC Analysts.
• How to use Splunk for Security Information and Event Management (SIEM) tasks.
• Setup of small home lab with real-time data in it..
• Learn important commands.
• Learn about how to create reports, alerts, dashboard and many more things required for SOC Analysts..

Course Content

• About the course –> 1 lecture • 1min.
• About Splunk –> 7 lectures • 33min.
• Splunk Home Lab Setup – Windows Based On Azure –> 5 lectures • 20min.
• Splunk home lab setup – Linux Based on VM Ware –> 2 lectures • 15min.
• Splunk default ports –> 1 lecture • 1min.
• Splunk directory structure –> 1 lecture • 5min.
• Splunk Configuration (.conf) files –> 1 lecture • 3min.
• Splunk App –> 1 lecture • 3min.
• Lab 2 : Simulation of Event Generation –> 2 lectures • 17min.
• Splunk GUI Overview –> 1 lecture • 25min.
• Available options of time ranges and abbreviations in searches –> 1 lecture • 9min.
• Splunk Search Timeline Controls –> 1 lecture • 3min.
• Available options of time ranges and abbreviations in search bar –> 1 lecture • 9min.
• Search Language Syntax concepts –> 1 lecture • 10min.
• Case Sensitivity During Splunk Search –> 1 lecture • 3min.
• Lab 3: How to upload and investigate logs in Splunk –> 2 lectures • 18min.
• Lab 4 : Monitor your own OS logs –> 1 lecture • 5min.
• Lab 5: Manual parsing of logs –> 1 lecture • 1min.
• Lab 6: How to monitor file path | Example of csv file extraction –> 1 lecture • 1min.
• Splunk Role Based Access –> 1 lecture • 16min.
• lookup, lookup definition, automatic lookup –> 1 lecture • 1min.
• Splunk Important Commands –> 14 lectures • 40min.
• Lookup Editor App Installation –> 1 lecture • 2min.
• Some more search commands –> 1 lecture • 24min.
• Splunk KV Store (Key Value Store) –> 1 lecture • 8min.
• Installation of Splunk Add-on for Microsoft Windows –> 1 lecture • 5min.
• Some More Splunk Search Commands –> 3 lectures • 31min.
• Types of Search Commands –> 1 lecture • 7min.
• Splunk data life cycle stages in term of buckets –> 1 lecture • 5min.
• General Search Practices –> 1 lecture • 6min.
• App Creation from GUI –> 1 lecture • 3min.
• Field extractions –> 1 lecture • 12min.
• Report & Alerts –> 1 lecture • 12min.
• Some more Splunk search commands –> 1 lecture • 8min.
• Splunk Dashboard Creation –> 1 lecture • 42min.
• Splunk Dashboard Optimization Using Base Search –> 1 lecture • 9min.
• Splunk Macros –> 1 lecture • 16min.
• Splunk Eventtypes –> 1 lecture • 8min.
• Resources For Splunk Alert Use-cases & Threat Hunting Hypothesis Creation –> 1 lecture • 4min.

Requirements

This course is specially designed for SOC analysts, Threat hunters and SOC Leads, so that they can use Splunk in completing their BAU tasks.

As a SOC analyst, learning Splunk is crucial to stay ahead in the constantly evolving cybersecurity landscape. Splunk is the industry-leading tool for collecting, analyzing, and visualizing data, and it is widely used by organizations of all sizes to manage their security operations.

By learning Splunk, you can efficiently monitor your organization’s network and systems logs, detect anomalies, and investigate incidents in real-time. You can also create custom dashboards and reports to visualize data and identify trends, which can help you make informed decisions and take proactive measures to prevent future security threats.

Moreover, having Splunk expertise on your resume can significantly improve your job prospects and career growth opportunities. Many organizations require SOC analysts to have Splunk skills, and the demand for Splunk professionals is rapidly increasing. So, learning Splunk not only enhances your skills and capabilities but also opens up new doors of opportunities in the cybersecurity industry.

In summary, learning Splunk is a smart investment in your career as a SOC analyst, and it can help you stay competitive and advance your career in the rapidly growing cybersecurity field.