🕵️

Introduction to Threat Hunting 101

Apr 1, 2025

BlackPerl Academy - Threat Hunting 101

Course Overview

  • Title: Threat Hunting 101
  • Focus: Understanding the MITRE Framework and its application in threat hunting
  • Course Designer: Archan Choudhury, CEO of BlackPerl

About Archan Choudhury

  • Over 15 years in security roles for global companies
  • Expertise in defensive security, Incident Response, and forensic investigation
  • Developed capabilities in cloud security, security operations, and automation
  • Works in Global SOCs, providing cybersecurity services

Course Details

  • Audience:
    • Absolute beginners in threat hunting
    • Current professionals seeking to strengthen foundational knowledge
    • Incident responders and security analysts
  • Sections:
    1. Basics of Threat Hunting
    2. Preparing for Threat Hunting
    3. Live Hunting Labs
    4. Course Closing

Major Topics Covered

  • Understanding the role of threat hunting in organizations
  • The importance of threat hunting
  • "Pyramid of Pain" concept
  • Threat Hunt Maturity Model (THMM)
  • Types of hunts and hypothesis formulation
  • Application of the MITRE Framework

Course Content

  • Basics of Threat Hunting:
    • What is TH?
    • Threat hunting's organizational role
    • Pyramid of Pain
    • Introduction to THMM
    • Hypothesis generation and usage
  • Preparation for Hunting:
    • Developing a hunting loop
    • Planning and reporting on threat hunts
  • Live Lab Exercises:
    • Ransomware TTP hunting
    • PowerShell abuse hunting
    • AWS Cloudtrail programmatic hunting

Resources Provided

  • Lifetime access to course material
  • Access to sysmon logs and Jupyter Notebook for practical exercises

Support and Prerequisites

  • Support:
  • Prerequisites:
    • Enthusiasm for learning
    • Access to a computer and Oracle Virtual Machine
    • Recommended use of Elastic SIEM

Course Access

  • Available on Chrome, Edge, Safari browsers across multiple OS

Reviews and Ratings

  • Overall rating of 4.9 from 8 reviews
  • Positive feedback on content and real-time applications

Contact and Policies

  • Terms, Privacy, and Refund policies available online
  • Contact through various social media platforms

This document summarizes the key aspects of the Threat Hunting 101 course offered by BlackPerl Academy, detailing the course structure, topics, and support resources.

View note sourcehttps://academy.blackperldfir.com/learn/home/Threat-Hunting-101/section/334677/lesson/2059932?