Skip to content
Threat Hunting – Endpoint Hunting
Section 1. Introduction
1. Course Overview
Sample Lesson
Section 2. Endpoint Data Sets
1. Who Are You and Where Are We Now
2. Approaching an Intel Based Threat Hunt
3. Demo – MITRE ATT&CK
4. Where’s the Data Come From
5. Scaling and Obfuscation
Section 3. Access and Implants
1. Gaining Access
2. Demo – Process Execution
Sample Lesson
3. LNK Parser
4. Demo – LNK Analysis
5. User Behavior
Section 4. Persistance
1. Digging In
2. Demo – Hunting for Registry Keys
Sample Lesson
3. More Holes
4. Demo – Hunting for Scheduled Tasks
5. Looking Harder
Section 5. Privilege Escalation and Credential Stealing
1. Elevating Status
2. Demo – Mimikatz Execution
3. Hunting with Expertise
Section 6. Impossible Login
1. What Are They up To
1 of 2
Previous Lesson
Next Lesson
2. Demo – Process Execution
Threat Hunting – Endpoint Hunting
2. Demo – Process Execution
Play
Previous Lesson
Back to Course
Next Lesson
Scroll to top
Scroll to top
Login
Accessing this course requires a login. Please enter your credentials below!
Username or Email Address
Password
Remember Me
Lost Your Password?
Register
Don't have an account? Register one!
Register an Account
×
