Certified Cyber Threat Intelligence Analyst
3.7 (11 ratings)
Instead of using a simple lifetime average, Udemy calculates a course's star rating by considering a number of different factors such as the number of ratings, the age of ratings, and the likelihood of fraudulent ratings.
205 students enrolled
Wishlisted Wishlist

Please confirm that you want to add Certified Cyber Threat Intelligence Analyst to your Wishlist.

Add to Wishlist

Certified Cyber Threat Intelligence Analyst

Learn to intelligently detect and take down cyber threats
3.7 (11 ratings)
Instead of using a simple lifetime average, Udemy calculates a course's star rating by considering a number of different factors such as the number of ratings, the age of ratings, and the likelihood of fraudulent ratings.
205 students enrolled
Created by CyberTraining 365
Last updated 3/2017
English
Curiosity Sale
Current price: $10 Original price: $100 Discount: 90% off
30-Day Money-Back Guarantee
Includes:
  • 9.5 hours on-demand video
  • Full lifetime access
  • Access on mobile and TV
  • Certificate of Completion
What Will I Learn?
  • 7 threat intelligence phases
  • Hunting - The goal of hunting is to establish techniques to collect samples from different sources that help to start profiling malicious threat actors.
  • Features Extraction - goal of Features Extraction is to identify unique Static features in the binaries that help to classify them into a specific malicious group.
  • Behavior Extraction - The goal of Behavior Extraction is to identify unique Dynamic features in the binaries that help to classify them into a specific malicious group.
  • Clustering and Correlation - The goal of Clustering and Correlation is to classify malware based on Features and Behavior extracted and correlate the information to understand the attack flow.
  • Threat Actor Attribution - The goal of Threat Actors is to locate the threat actors behind the malicious clusters identified.
  • Tracking - The goal of tracking is to anticipate new attacks and identify new variants proactively.
View Curriculum
Requirements
  • Familiar with cyber exploits and breaches that have occurred in the public
Description

The Cyber Security Threat Intelligence Researcher Certification will help you acquire the skills needed to find out who is behind an attack, what the specific threat group is, the nation from which the attack is being launched, as well as techniques being used to launch this attack.

You will know how to take a small piece of malware, find out who is responsible for launching it, the threat actor location and also how to take down that threat actor, with the support of your local law enforcement.

In today’s cyber security landscape, it isn't possible to prevent every attacks. Today’s attackers have significant funding, are patient, sophisticated, and target vulnerabilities in people and processes as well as technologies. With organizations increasingly relying on digitized information and sharing vast amounts of data across the globe, they have become easier targets for many different forms of attack. As a result, every company’s day-to-day operations, data and intellectual property are seriously at risk. In a corporate context, a cyber attack can not only damage your brand and reputation, it can also result in loss of competitive advantage, create legal/regulatory noncompliance and cause steep financial damage.

Today’s secure environment will have vulnerabilities in it tomorrow, so an organization cannot allow itself to become complacent. There is only so much an organization can do by defending itself against threats that have already occurred. If an organization only reacts to new threats as they come up, are likely acting too late. It is important to understand and prioritize cyber threat intelligence processes, and how they can be integrated into an organization’s security operations in a way that adds value. 

Cyber threat intelligence (CTI) is an advanced process enabling organizations to gather valuable insights based on analysis of contextual and situational risks. These processes can be tailored to the organization’s specific threat landscape, industry and market. This intelligence can make a significant difference to organizations' abilities to anticipate breaches before they occur. Giving organizations the ability to respond quickly, decisively and effectively to confirmed breaches allows them to proactively maneuver defense mechanisms into place, prior to and during the attack.

In this course, we’ll introduce you to the 8 phases of threat intelligence:

  • Hunting - The goal of hunting is to establish techniques to collect samples from different sources that help to start profiling malicious threat actors.
  • Features Extraction - The goal of Features Extraction is to identify unique Static features in the binaries that help to classify them into a specific malicious group.
  • Behavior Extraction - The goal of Behavior Extraction is to identify unique Dynamic features in the binaries that help to classify them into a specific malicious group.
  • Clustering and Correlation -  The goal of Clustering and Correlation is to classify malware based on Features and Behavior extracted and correlate the information to understand the attack flow.
  • Threat Actor Attribution - The goal of Threat Actors is to locate the threat actors behind the malicious clusters identified.
  • Tracking - The goal of tracking is to anticipate new attacks and identify new variants proactively.
  • Taking Down - The goal of Taking down is to Dismantled Organized Crime Operations.
Who is the target audience?
  • anyone interested in preventing cyber threats
Students Who Viewed This Course Also Viewed
Curriculum For This Course
69 Lectures
09:39:19
+
Phases Overview
16 Lectures 01:48:59


Phases Overview Part 2
05:40

Phases Overview Part 3
05:29

Hunting Part 1
06:11

Hunting Part 2
09:22

Features Extraction Part 1
07:50

Features Extraction Part 2
07:17

Behavior Extraction Part 1
06:53

Behavior Extraction Part 2
05:54

Behavior Extraction Part 3
06:45

Clustering and Correlation
08:04

Threat Actor Attribution Part 1
05:27

Threat Actor Attribution Part 2
05:58

Tracking
05:46

Taking Down
08:12

Threat Intelligence Overview
6 questions
+
Hunting
10 Lectures 02:08:25
VirusTotal Part 1
07:41

VirusTotal Part 2
07:02

Hacking Forums Part 1
07:05

Hacking Forums Part 2
05:18

Hacking Forums Part 3
05:13

DeepWeb Part 1
07:07

DeepWeb Part 2
08:10

Honeypot and OSINT
10:06

Lab: VirusTotal Intelligence
38:07

Lab: Binary-Level Detection with Yara
32:36

Hunting
4 questions
+
Features Extraction
7 Lectures 01:13:42
Features Extraction Goal Part 1
06:28

Features Extraction Goal Part 2
06:36

Import Table Hash (imphash) Part 1
06:22

Import Table Hash (imphash) Part 2
08:18

Fuzzy Hash (ssdeep)
06:14

Lab: Extracting VBA Macros with Didier Stevens Tools
22:27

Lab: C2 IP Pivoting
17:17

Features Extraction
4 questions
+
Behavior Extraction
7 Lectures 48:34
Dynamic Indicators Part 1
08:09

Dynamic Indicators Part 2
05:42

Dynamic Indicators Part 3
07:01

Dynamic Indicators Part 4
06:20

Process Infector and Keyloggers
07:13

Passive DNS (DNSDB) Part 1
08:14

Passive DNS (DNSDB) Part 2
05:55

Behavior Extraction
4 questions
+
Clustering & Correlation
7 Lectures 01:05:51
How Clustering & Correlation Works Part 1
07:59

How Clustering & Correlation Works Part 2
05:10

How Clustering & Correlation Works Part 3
05:53

How Clustering & Correlation Works Part 4
05:25

GraphDB Part 1
06:26

GraphDB Part 2
05:14

LAB: Clustering & Correlation Works
29:44

Clustering & Correlation
4 questions
+
Attribution
10 Lectures 01:12:11
Where are they Located? Part 1
07:50

Where are they Located? Part 2
08:55

Who are the Targets?
07:13

Initial Compromise
07:02

Privilege Escalation
07:07

Persistence
05:57

Lateral Movement Part 1
06:43

Lateral Movement Part 2
05:41

Exfiltration Strategy
09:01

Profiling the Attacker
06:42

Attribution
4 questions
+
Tracking
6 Lectures 36:39
Passive DNS & Internet Port Scan Part 1
07:17

Passive DNS & Internet Port Scan Part 2
06:21

Passive DNS & Internet Port Scan Part 3
04:59

Passive DNS & Internet Port Scan Part 4
03:52

Lookups, OSINT, and Hacking Forums Part 1
06:35

Lookups, OSINT, and Hacking Forums Part 2
07:35

Tracking
2 questions
+
Taking Down
6 Lectures 44:58
Sinkhole Part 1
06:45

Sinkhole Part 2
09:56

How it works? Part 1
06:50

How it works? Part 2
09:17

Hacking Forums
05:30

Victims Notification
06:40

Taking Down
4 questions
About the Instructor
CyberTraining 365
4.1 Average rating
2,248 Reviews
44,562 Students
16 Courses
Best Selling Instructor, 30,000+ Students

 Join the Cyber Security Industry in 2017!

Interested in starting a career in the Cyber Security Industry? 2017 is the time! 

Learning the fundamentals of Cyber Security provides you with a powerful, and very useful, set of skills. Learn to think like a hacker so you can better defend your networks and data by studying Penetration Testing and Ethical Hacking.   

Jobs in Cyber Security are plentiful. Receiving your Certified Ethical Hacker, Certified Hacker Forensic Investigator, Penetration Tester and Security+ certification will give you a strong background to more easily tackle and pick up more advanced exams, such as the CISSP certification.  

Get certified and land an entry level Cyber Security position paying upwards of six figures! There are currently over one million Cyber Security job openings globally. Demand is greatly outpacing supply which means more opportunity, job security and higher pay for you!   

But, don't take our word for it... take a look at the FREE previews (they are available in all our courses) and see for yourself!

About Us:

CyberTraining 365 is an online academy that offers most in-demand cybersecurity training and certification through different subscription models. Members have access to the ever growing library of quality, engaging videos that are taught by some of industry’s best and most recognized experts.

CyberTraining365 is powered by Social27's patented cloud-based eLearning platform, providing members with an engaging and collaborative learning environment. Through best in class content, social learning tools, and gamification, CyberTraining365 is taking eLearning from Isolation to Collaboration.