Tools to learn for SOC Analysts

MyDFIR

Подписаться 41 тыс.

Просмотров 8 тыс.

50% 1

Видео Поделиться Скачать Добавить в

Опубликовано:

21 окт 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 43

@thefrub 10 месяцев назад

SANS needs to hire this man! You have a really concise yet entertaining way of presenting, keep it up!

@MyDFIR 10 месяцев назад

Haha thank you for the kind words!

@joshuaspeshock4636 10 месяцев назад

Really like how you not only covered tools but resources that you can use to get more hands on practice with them whether it’s through investigations or home labs. Also, liked how you brought up the context of it’s great to know the tools but it’s more important to understand the value behind them and when is best to use them. Overall, great explanations and really well done great job!

@MyDFIR 10 месяцев назад

Thanks! It’s always about the value, really understanding the WHY use a certain tool and how it functions.

@addey6323 10 месяцев назад

Calmly waiting for a piece on tool for digital forensic/eDiscovery. Thanks for sharing. Been watching from Ghana 🇬🇭 West Africa

@MyDFIR 10 месяцев назад

Soon 👀 will do a lot more DFIR related videos in the new year

@melaronvalkorith1301 10 месяцев назад

Great video! I appreciate how you call out the fact that tools are only as good as what you use them for. I’d love to see a video about your way (or various ways you know) of approaching an investigation and the thought process that goes into each step. Keep up the great work!

@MyDFIR 10 месяцев назад

Thanks! I have something similar coming out which is going through a PCAP. I do like the idea of talking about the thought process. Great suggestion ❤️

@RubenMuñozAragon-e9n 10 месяцев назад

Gracias por todo el contenido Nos ayuda mucho a la comunidad de Seguridad defensiva Blue Team. Normalmente en las Redes hay poca informacion. Un abrazo.

@Marilyn_ken 9 месяцев назад

Thanks for this video.. Been on ur page all night, this the answer I have been looking for

@MyDFIR 9 месяцев назад

Happy to help! Thanks for watching ❤️ let me know if you have any questions!

@irocz5150 10 месяцев назад

Great content. No Tools will cover everything...and are not 100% perfect. You are right when you mention a SIEM is no required...now we have hyperautomation as a "new" trend SIEM killer. Sometimes tools go hand 2 hand with required compliance like hippa, gdpr etc etc.

@MyDFIR 10 месяцев назад

Yup, “No Tools will cover everything” love it. ❤️

@gabegutz7120 8 месяцев назад

Kind of surprised to hear Arkime mentioned lol. My uncle helped develop the tool and the Cont3xt tool used within Arkime

@MyDFIR 8 месяцев назад

Wow! Thats amazing. Arkime is great, it is one of those tools you never thought you needed until you use it haha - Indexed PCAPs ....beautiful

@mrgolbez 10 месяцев назад

❤❤❤ best SOC info out there!

@MyDFIR 10 месяцев назад

Wow, thanks!

@Brantley_ZA 10 месяцев назад

Facts! 🔥

@abdoabdo-mj2hp 8 месяцев назад

Bro great job a lot important info

@MyDFIR 8 месяцев назад

Thanks a lot!

@b3rn4rd01 10 месяцев назад

❤❤❤❤❤❤❤❤ Awesome SOC info!!!!

@MyDFIR 10 месяцев назад

Thank you!!

@RandyAinsworth-tx6vn 10 месяцев назад

Wireshark and splunk and suricata for ips and some through thm

@MyDFIR 10 месяцев назад

Great choice of tools!

@RandyAinsworth-tx6vn 10 месяцев назад

@@MyDFIR but so many tools. Which best ips ids would be best suricata or solarwinds. Edr croudstrik or … lol but job wise learn splink and witeshark and see what ips ids and edr the company uses

@MyDFIR 10 месяцев назад

@@RandyAinsworth-tx6vn Agreed which is why at the end of the day, a tool is just a tool. Understand the use case and pick one that fits the business budget. As long as a tool can provide visibility, have logging and ability to search within the tool. That is a good tool. To make it a great tool, have responsive capabilities.

@elliscaicedo9045 8 месяцев назад

thanks for you content bro

@MyDFIR 8 месяцев назад

My pleasure

@dreamwilder 7 месяцев назад

Is a lab something I can download to my computer? What labs do you use for a windows based system?

@MyDFIR 7 месяцев назад

Yeah you can, or you can use sites like cyberdefenders, blue team level one, letsdefend and many others.

@SamuelDarko-ql5ov 10 месяцев назад

You are very good at what you do, and I want to be a SOC Analyst any mentorship available? Please help me.

@MyDFIR 10 месяцев назад

Yeah! Feel free to sign up on my site mydfir.com

@TheSilentLearner786 10 месяцев назад

Sir plz do tutorial videos related python for cybersecurity

@MyDFIR 10 месяцев назад

Anything specific you want to know? Thanks for the suggestion!

@estebangodoy386 7 месяцев назад

@@MyDFIRforensics or threat intelligence gathering with Python would be awesome 💯

@Kiran_gowda_kar 10 месяцев назад

Sir can u please suggest some laptop configurations along with laptop brand for learning and practsing Cybersecurity.

@MyDFIR 10 месяцев назад

Great question, for laptops you really need about 16GB+ RAM and the more the better. I don’t really have a particular brand I recommend, however a lot of my laptops (current & previous) are MSI laptops used for gaming. 😂

@Kiran_gowda_kar 10 месяцев назад

@@MyDFIR Thanks for the Replay sir and can u please share the link of laptop u have currently (MSI laptop link) please kindly share sir

@Kiran_gowda_kar 10 месяцев назад

Which graphics card is better NVidia or iris

@iamrestnpieces 10 месяцев назад

Your "Next Steps" page for your mentorship is asking for additional information but there are no input fields. Update: I just received an email. I will respond that way.

@MyDFIR 10 месяцев назад

Awesome! Thanks for signing up, I’ll go over my emails soon ❤️