SOC Analyst Bootcamp: Live Triage Lab
Three live sessions building an incident from initial alert to containment in a realistic enterprise lab. Includes Splunk queries, Velociraptor collections, and a graded final exercise.
Welcome to RecertHero!
Submit bugs, feature requests, and feedbackBrowse · 27 certifications tracked
Search webinars, courses, videos, and vendor training — each mapped to the certifications you’re actually renewing.
123 results
Three live sessions building an incident from initial alert to containment in a realistic enterprise lab. Includes Splunk queries, Velociraptor collections, and a graded final exercise.
Updated in May 2025. This course now features Coursera Coach! A smarter way to learn with interactive, real-time conversations that help you test your knowledge, challenge assumptions, and deepen your understanding as you progress through the course. Unlock the full potential of Microsoft Azure with this comprehensive course on storage, compute, containers, and automation. You’ll learn to manage complex cloud environments while building expertise in configuring and deploying Azure services. This course equips you with practical skills to streamline operations, optimize resources, and enhance scalability in your cloud infrastructure. The course begins with mastering Azure Storage, including data import/export, redundancy, and object replication. You'll progress to configuring Azure Files and Blob Storage, covering everything from file shares to lifecycle management. Practical demonstrations ensure you can integrate these tools seamlessly into real-world IT workflows. Dive deeper into automation using Azure Resource Manager templates and VM extensions. You’ll also explore virtual machine configurations, disk encryption, and resource management, building a robust foundation in virtualized compute environments. Further modules introduce container management, from scaling Kubernetes services to creating container apps, and finally, Azure App Service for custom domains, backups, and secure deployment. This course is designed for IT professionals, cloud administrators, and security specialists aiming to enhance their Azure expertise. A basic understanding of cloud computing and familiarity with Azure fundamentals is recommended. With hands-on exercises and expert guidance, this intermediate-level course will elevate your Azure management skills.
Cyber threats present a constant challenge today, costing billions and affecting everyone, from governments to small businesses. Are you ready to contribute to the solution? This course will provide you with a deep understanding of cybersecurity principles, industry standards, regulations, and audit processes. You will explore the fundamental concepts of information security and compliance, covering topics such as governance, risk, compliance, cybersecurity frameworks, and process management. You will also learn about IT service management and explore the NIST risk management framework and AI ethical considerations. You will gain insights into cybersecurity laws and regulations, focusing on both US and global perspectives, including HIPPA, GDPR, and PCI DSS. Additionally, you will familiarize yourself with the audit processes using the COBIT framework and SOC reports. You will also explore prominent standards such as OWASP, ISO, and IEEE, learning how to apply them effectively. Throughout this five-module self-paced course, you will engage in interactive activities to apply your knowledge in real-world scenarios. You will also complete a final project to test your skills and showcase your understanding. Join us on this cybersecurity journey!
En este curso, a través de una combinación de conferencias de video, demostraciones y prácticas, aprenderás acerca de los componentes principales de un sistema operativo y cómo realizar tareas críticas tales como administrar software y usuarios, y configurar hardware. Vamos a terminar con un ejemplo de cómo puede aparecer este contenido en una entrevista. Al final de este curso, podrás: ● navegar por los sistemas de archivos de Windows y Linux utilizando una interfaz gráfica de usuario y un intérprete de línea de comandos. ● configurar usuarios, grupos y permisos para el acceso a la cuenta. ● instalar, configurar y eliminar software en los sistemas operativos Windows y Linux. ● configurar particiones de disco y sistemas de archivos. ● comprender cómo funcionan los procesos del sistema y cómo gestionarlos. ● trabajar con registros del sistema y herramientas de conexión remota. ● utilizar el conocimiento del sistema operativo para solucionar problemas comunes en un rol de Especialista de soporte de TI.
***This course was developed by members of AWS Technical Field Communities (TFC), an AWS community of technical experts. The content is intended to complement our standard training curriculum and augment your AWS learning journey. We are aware some courses have accessibility limitations and are working to address. If you require accommodation, please contact [AWS Training and Certification Customer Support](https://support.aws.amazon.com/#/contacts/aws-training).*** In this course you will learn how to choose an AWS identity or access management service, what each service does, and which services are applicable to your current needs.
In this course, you’ll explore the world of authorization and authentication, and understand the concepts of two-step authentication and single sign-on policies. You’ll also become familiar with the features and capabilities of Azure Active Directory (Azure AD), particularly those relating to the benefits of using Azure AD to manage an enterprise’s security requirements including access management, identity governance, and management. This course will take you one step closer to the Microsoft Cybersecurity Analyst Professional Certificate, which requires no degree or prior experience.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Updated in May 2025. This course now features Coursera Coach! A smarter way to learn with interactive, real-time conversations that help you test your knowledge, challenge assumptions, and deepen your understanding as you progress through the course. Strengthen your expertise in network security and troubleshooting with this advanced course. Delve into the latest techniques to secure networks, establish robust connections, and proactively address vulnerabilities. You’ll learn how to counter sophisticated cyber threats, optimize remote access, and implement wireless security measures effectively. The course begins with a deep dive into network security essentials. Explore topics such as remote access protocols, social engineering tactics, VPN implementation, and enterprise physical security. Understand best practices for network hardening, from securing SNMP communications to advanced wireless protections like geofencing and EAP. Transitioning to troubleshooting, the course follows CompTIA's structured model, guiding you through problem identification, testing theories, implementing solutions, and system verification. You’ll master essential tools for diagnosing and resolving network issues, including cabling challenges, software tools, IP commands, and DNS troubleshooting techniques. Designed for IT professionals, network administrators, and cybersecurity specialists, this course requires a foundational understanding of networking concepts. If you’re ready to tackle advanced security and troubleshooting challenges, this course is for you.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
AI For Red Teams — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
AI For Incident Responders — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
AI For Grc Analysts — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
AI Best Practices — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
This course teaches you how to implement various capabilities that include data organization and management, application security, actions and integrations in your app using AppSheet. The course also includes topics on managing and upgrading your app, improving performance and troubleshooting issues with your app.
Updated in May 2025. This course now features Coursera Coach! A smarter way to learn with interactive, real-time conversations that help you test your knowledge, challenge assumptions, and deepen your understanding as you progress through the course. This comprehensive course is designed to equip you with the knowledge and skills necessary to effectively audit IT project governance and system development processes. It begins with an overview of project governance and management, emphasizing the roles and responsibilities of key stakeholders, including project sponsors and the Project Management Office (PMO). You will gain a solid understanding of project initiation, planning, and execution phases, learning how to differentiate between auditing project content and project execution. Special focus is given to the project management methodologies, such as Agile and Predictive approaches, and the essential procedures for closing projects, ensuring you are well-versed in each phase of the project lifecycle. The course then transitions to system development and risk management, where you will explore various system development lifecycle (SDLC) models and their associated risks. You will learn how to assess these risks and understand different software development methods, including the use of Computer Aided Software Engineering (CASE) tools and fourth-generation languages (4GLs). Key topics such as business case development, feasibility analysis, and the identification and design of effective data controls are thoroughly covered, preparing you to evaluate system and software development from an IS auditor's perspective. In the final modules, the focus shifts to testing methodologies, data integrity, and change management. You will delve into decision support systems, testing plans, and methodologies to ensure data integrity and accuracy in application systems. The course also covers data migration processes, changeover techniques, and post-implementation reviews (P
This is a self-paced lab that takes place in the Google Cloud console. This lab provides a variety of different use cases enabled by multimodality with Gemini Pro Vision.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Agile Project Management — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
Advanced Penetration Testing — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
Large Scale Enterprise Computing powers all major transactions, and the Mainframe is responsible for 87% of all credit card transactions and enables 71% of all Fortune 500 companies. Mainframes are fundamental on how we do business, and IBM Z is the only production mainframe sold today. Virtually everyone depends on it. This is your introduction to the hardware, operating systems, security, and features that make this possible. On successful completion of this course, learners are eligible to earn their Introduction to Enterprise Computing badge. More information can be found here: https://www.youracclaim.com/org/ibm/badge/introduction-to-enterprise-computing
This course is for early career researchers and mentors who believe that modern scientific careers require management skills and want to be research leaders. This curriculum gives you skills to effectively implement funded projects, thereby enhancing your career success. Research leaders take on a number of new roles, rights, and responsibilities--as scientific leaders, financial administrators, managers, and mentors. In this course, we explain how to optimize the people, teams, projects, and finances for which you are responsible. Despite your research training, you are probably facing an urgent training gap in leadership and management skills. Scientific careers falter for non-science reasons when researchers fail to execute a scope of work: struggle to track expenses and returns substantial unspent grant funds; or run out of funds by spending on the wrong people or mismanaging the right people. Consequently, projects close with inadequate progress on aims, thus compromising successful competition for future funding. This course will help avoid these traps. Leadership and management are essential skills for researchers. Several early career researchers, senior scientists, and administrative leaders are eager to share their expertise and experiences with you.
Ready to turn uncertainty into opportunity? This Short Course was created to help data analysts master Monte Carlo simulation techniques to quantify risk and forecast outcomes under uncertainty. By completing this course, you'll transform complex probabilistic scenarios into actionable insights. You'll build robust simulation models, conduct sensitivity analysis, and create probability distributions that inform critical business decisions with confidence. By the end of this course, you will be able to: Build Monte Carlo simulation models for project ROI analysis Evaluate sensitivity through tornado chart analysis Construct currency-exchange exposure simulations Determine optimal iteration counts for model convergence This course is unique because it combines theoretical foundations with hands-on Python implementation, providing both Excel-based and programmatic approaches to Monte Carlo modeling. To be successful in this project, you should have a background in basic statistics and Python programming.
This is a self-paced lab that takes place in the Google Cloud console. This lab teaches you how logging works on GKE and some best practices for log collection by going through some common logging use cases.
This program equips cybersecurity professionals, IT teams, and system administrators with the foundational knowledge and practical skills needed to identify, analyze, and remediate vulnerabilities across modern enterprise environments. You’ll start by understanding the vulnerability assessment lifecycle, exploring how weaknesses emerge in networks, systems, and web applications, and learning the principles behind risk, exposure, and exploitability. Next, you’ll dive into hands-on vulnerability assessment techniques, using tools such as Nmap, Nikto, and open-source scanners to perform host discovery, service enumeration, and web application checks. You’ll learn how to validate findings, classify severity using structured scoring methods, and document vulnerabilities effectively for organizational reporting. You’ll then advance into vulnerability management, where you’ll design patching workflows, apply configuration hardening practices, automate remediation tasks, and perform post-fix validation. You will also learn how to build governance processes, track metrics, and create dashboards that support long-term risk reduction and audit readiness. By the end of this program, you will be able to: - Explain the core concepts of vulnerability assessment and the full assessment lifecycle. - Distinguish between vulnerabilities, threats, risks, and exploits in enterprise environments. - Conduct network and web vulnerability scans using open-source tools such as Nmap and Nikto. - Validate scan results, classify vulnerabilities, and prioritize remediation using risk-based scoring. - Implement patch management, configuration hardening, and automated remediation techniques. - Design and document a vulnerability management program aligned with governance requirements. - Create consolidated reports and dashboards to track vulnerabilities and support compliance. This course is designed for cybersecurity engineers, SOC analysts, network administrators, DevOps practitioners
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Multi-course professional certificate program on edX. Self-paced with verified certificate option. Visit the program page for full curriculum, institution, and pricing details.
Advanced Malware Analysis Redux — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
Advanced Cyber Threat Intelligence 2020 07 09 — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
Active Directory Basics Cefbf — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
This course is ideal for individuals with a basic understanding of digital technology as well as developers or security professionals wishing to expand their blockchain knowledge. It provides a comprehensive introduction to the world of blockchain technology. We will delve into the core principles of blockchain, exploring the critical decision-making processes involved in adopting this innovative technology. This course offers an overview of various blockchain platforms, hosting decisions, associated technologies, and the key development languages used. An important aspect of this course will be the introduction to the concept of consensus mechanisms and their integral role in maintaining the integrity of the blockchain. By the end of this course, you will be able to: - Describe how blocks are chained together - Compare and contrast Pure versus Hybrid blockchains - List the blockchain layers and describe what each of them does - Describe the difference between on-chain and off-chain data storage - Determine the right language and tools based on the blockchain platform and use case - Describe the Byzantine Generals Problem - Explain the blockchain trilemma - Explain how cryptography, consensus, and immutability enhance blockchain security
This course is designed for intermediate-level learners who want to enhance their security skills in Android development. Participants will analyze the structure of Android memory and evaluate its defenses against exploitation, including understanding pointers and their role in buffer overflow exploits. The course covers various types of overflows, mitigation techniques, and specific vulnerabilities such as the Stagefright buffer overflow. In addition to exploitation techniques, learners will explore secure data storage practices within the Android file system, implement cryptography concepts, and securely manage credentials using the Android Keystore. The course also addresses password security through hashing and salting techniques, common data risks, and secure storage practices to protect data at rest. Finally, participants will gain insights into network security, data protection in transit, and securing inter-process communications and webviews in Android applications.
Active Directory Basics — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
This course is designed to demystify Zero Trust security and guide learners through practical implementation. Based on the principle of “never trust, always verify,” this course explains what Zero Trust is, why it matters, and how organizations can begin their Zero Trust journey. Key topics include network, endpoint, and cloud security, starting with foundational concepts and addressing misconceptions—highlighting that Zero Trust is not achieved by simply deploying technologies. Real-world use cases, assessment methodologies, and maturity ranking techniques help participants create a customized Zero Trust strategy for their business. The curriculum explores modern Zero Trust standards and frameworks, such as NIST and the Open Group, moving from principles to architectural design. With a focus on practical application and strategic planning, this course is ideal for anyone responsible for organizational security seeking to enhance their defense strategy using Zero Trust.
Access Control Basics 4b6c9 — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
Access Control Basics — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
Access Control And Identity Management — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
A Core 2 Software Troubleshooting — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
A Core 2 Security — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
A Core 2 Operational Procedures — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
A Core 2 Operating Systems — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
A Core 1 Virtualization And Cloud Computing — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
A Core 1 Networking — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
Updated in May 2025. This course now features Coursera Coach! A smarter way to learn with interactive, real-time conversations that help you test your knowledge, challenge assumptions, and deepen your understanding as you progress through the course. In this course, you’ll gain the foundational knowledge needed to respond effectively to cybersecurity incidents. You will be introduced to the key elements of identifying and analyzing cyber threats, attacks, and vulnerabilities. Throughout the course, you'll develop the skills to assess the security posture of a network and prepare a response to potential incidents. By the end, you'll have a comprehensive understanding of the cybersecurity landscape, empowering you to safeguard and protect organizational systems. The course begins with an in-depth exploration of the different types of cyber threats and actors, as well as the common attack vectors they use. You will learn how attacks are structured, their motives, and the impact they may have on businesses and individuals. In addition to understanding the threats, you'll delve into tools and techniques for vulnerability scanning, penetration testing, and network and system reconnaissance, all critical for identifying weaknesses before an attack happens. As you progress, the course will focus on gaining access through various attack techniques, including web app scanning, social engineering, and wireless attacks. You will also dive deeper into post-exploitation tactics such as data exfiltration, pivoting, lateral movement, and maintaining persistence. Equipped with these skills, you'll be able to recognize when an attack is underway and respond appropriately. This course is ideal for aspiring cybersecurity professionals or those looking to enhance their skills in incident response. It’s designed for individuals with a basic understanding of IT concepts, and while no advanced technical knowledge is required, familiarity with networking and security basics will hel
This course features Coursera Coach! A smarter way to learn with interactive, real-time conversations that help you test your knowledge, challenge assumptions, and deepen your understanding as you progress through the course. In this course, you'll embark on a journey through the world of Linux, gaining foundational knowledge to navigate and manage Linux operating systems. From understanding the history and usage of Linux to mastering essential command-line operations, this course will provide you with a strong base to begin your Linux journey. You'll also dive into Linux distributions, comparing popular versions like Ubuntu, CentOS, and Debian, and learn the nuances of installing and configuring them. As you progress, you'll explore using Linux’s powerful CLI (Command Line Interface) for tasks such as file management, software installation, networking, and scripting. You’ll learn how to manage networks, secure systems, and administer user accounts, empowering you to configure, manage, and secure Linux systems with confidence. The course is designed for beginners who want to start from the basics, progressing to more advanced Linux administration tasks. Whether you’re interested in IT, system administration, or development, this course will provide a solid foundation for managing Linux environments. No prior experience with Linux is required.
This is a self-paced lab that takes place in the Google Cloud console. In this lab, you migrate MySQL data from an Amazon RDS instance for MySQL to Cloud SQL for MySQL using a one-time Database Migration Service job and an IP allowlist for connectivity. After you create and run the migration job, you confirm that the data have been successfully migrated to your Cloud SQL for MySQL instance.
This course is meticulously designed for cybersecurity professionals eager to enhance their skills in identifying, analyzing, and mitigating vulnerabilities. Through hands-on lessons, you'll gain the expertise to implement effective vulnerability scanning methods, prioritize risks, and recommend strategic controls to protect against potential threats. Equip yourself with the knowledge to not only understand vulnerabilities but also to proactively defend against them, ensuring your organization's security posture remains robust and resilient.
This is a self-paced lab that takes place in the Google Cloud console. Learn how to secure a Compute Engine instance with Identity-Aware Proxy (IAP).
A Core 1 Mobile Devices — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
A Core 1 Hardware And Network Troubleshooting — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
A Core 1 Hardware — self-paced course on Cybrary. Visit the course page for full details and prerequisites.
NIST's finalized PQC standards, hybrid key exchange in TLS 1.3, and a phased migration playbook that prioritizes high-value, long-lived secrets.
How to author, test, and tune Sigma detections that survive contact with reality. Covers ATT&CK alignment, false-positive triage, and a CI pipeline for detections-as-code.
A focused refresher on CISSP Domain 1 for re-certifiers. Covers the major framework families (NIST, ISO, COBIT), risk treatment options, and exam-style scenario discussion.
Hands-on learning path on TryHackMe covering CompTIA PenTest+. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Azure Security. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Attacking and Defending AWS. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Advanced Endpoint Investigations. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering DevSecOps. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Pre Security. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Pentesting Fundamentals. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Junior Penetration Tester. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Pre Security (Legacy). Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering SOC Level 1. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering SOC Level 2. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering SOC Level 1 (Legacy). Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Red Teaming. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Hands-on learning path on TryHackMe covering Web Application Red Teaming. Self-paced sequence of practical rooms with live attacker/defender labs. Some rooms are free; full path access included in a TryHackMe subscription.
Showing 72 of 123
Load more →