This course covers the fundamentals and concepts of network traffic analysis—how to search, filter, analyze, reconstruct, and preserve network traffic; and how to apply techniques learned to conduct a network forensics investigation utilizing the Trellix Network Forensics solution.Hands-on activities include building an analysis dashboard, executing queries, filtering results, and reconstructing network traffic. Learners will triage an alert and identify anomalies in network traffic to uncover and document indicators of compromise (IOCs) that build a case for a real-world advanced threat.
Who Should Attend:
Security analysts, incident responders and threat hunters who use Packet Capture and Investigation Analysis appliances to detect, investigate, and analyze cyber threats through packet data.
To learn more about this course, or to schedule a private session for your team, contact your Trellix account manager.
No Public Classes Scheduled, Please Contact Us to Schedule a Private Class for Your Company.
Cost
Number of Vouchers Needed: 147
If offered, seats for public courses can be purchased through your Trellix Partner or Reseller. Private training sessions are available for instructor led training.