SOC Analyst

Topic	Replies	Views	Activity
About the SOC Analyst category	1	480	February 8, 2024
Keen Observation for Network based detection	2	8	July 12, 2025
Spearphishing with link Guided Exercise Lab	10	29	May 22, 2025
Struggling with ransomware campaign lateral movement lab	1	6	July 10, 2025
Help: EDR Basics 1.2 Guided Exercise	3	5	July 9, 2025
Host Based Detection - Assessment	3	20	July 6, 2025
Host Based Detection (Prove)	7	140	July 4, 2025
SIEM Detection and Alerting and Assessment	4	19	July 1, 2025
Domain Authentication in Windows - Guided Excercise	2	13	June 26, 2025
Local Authentication in Windows - Guided Exercise	3	16	June 26, 2025
Log analysis - Search and destroy - Challenge	2	67	January 30, 2025
Help: I can't save the hosts (notepad) document	5	20	June 18, 2025
Spearphishing with a Link- EML Analyzer page is not loading	11	49	June 16, 2025
Terminal icon not found	4	21	June 13, 2025
Challenge in Siem detection and alerting guided exercise	2	27	June 2, 2025
Execution in Windows guided excercise	3	25	May 29, 2025
Issue with SIEM Detection and Alerting	8	247	May 20, 2025
Network Observables - Guided Exercise	3	16	May 19, 2025
Siem Detection and alerting - not able restart the service	3	22	May 19, 2025
Local Authentication in Windows Challenge #5 and #6	1	11	May 18, 2025
SIEM Detection and alerting challenge is not providing flag	2	47	May 16, 2025
SIEM Basics - Challenge Exercise Search Query learning	1	24	May 14, 2025
Issues Loading Wazuh Bookmark SIEM Dashboards	3	197	May 10, 2025
1. What are the two most prevalent "data.win" fields? Hint: data.win.___ and data.win.__ (SIEM Search Expressions GE 1.2)	6	37	May 10, 2025
Siem dashboard guided exercise	5	26	May 8, 2025
EDR Basics Guided exercise	2	28	May 8, 2025
2. What is the data.win.eventdata.processName value in the alert details?HINT•:\\•••••••\\••••••••\\•••••••.•••	1	30	May 1, 2025
SIEM search expression GE 1.2	19	105	April 29, 2025
Local Authentication in Windows	1	10	April 21, 2025
Log analysis lab	17	785	April 21, 2025