CyberOps 200-201 // Week 1

SOC Foundations

Master the core concepts every Security Operations Center analyst needs: CIA fundamentals, threat landscape, risk management, and traffic analysis basics.

Topics Completed

0/15

Time Invested

0h

Quiz Scores

--

Evaluation Status

Locked

Learning Path

Security Foundations

Core principles that underpin all security operations

1

CIA Triad

Confidentiality, Integrity, Availability - the three pillars of information security

-
2

Threat Actor Types

Understanding adversaries: nation-states, hacktivists, insiders, and more

-
3

Access Control Models

DAC, MAC, RBAC, ABAC - controlling who accesses what

-

Risk & Vulnerability Management

Assessing and prioritizing security threats

4

Security Approaches

Defense in depth, zero trust, and security architecture patterns

-
5

Risk Rating

Calculating and communicating risk levels to stakeholders

-
6

Risk Register

Documenting and tracking organizational risks

-
7

CVSS Terminology

Common Vulnerability Scoring System - vectors, metrics, and calculator

-
8

Attack Surface

Attack Surface Management - identify, classify, prioritize, remediate

-

SOC Operations

Tools and processes for security monitoring

9

SOC Overview

Security Operations Center structure, roles, and responsibilities

-
10

SIEM Overview

Security Information and Event Management - log aggregation and correlation

-

Traffic Analysis

Monitoring and interpreting network communications

11

5-Tuple Approach

Identifying network sessions: source/dest IP, source/dest port, protocol

-
12

Data Visibility

TAP vs SPAN vs NetFlow - collection methods and sensor placement

-
13

Data Types from Output

Log formats, alert structures, and field extraction

-
14

Detection Methods

Signature vs Anomaly vs Behavioral - when to use each approach

-
15

Data Loss from Traffic

Detecting exfiltration: DNS tunneling, HTTP encoding, encrypted channels

-

Hands-On Labs

Top Hacker Shows Us How It's Done

Video analysis: Watch and analyze real-world hacking demonstrations

Lab

Learning the Details of Attacks

OSINT research: Document a real cyber attack with IOCs and MITRE mapping

Lab

Becoming a Defender

Career exploration: Self-assess skills and create your development roadmap

Lab

Identify Running Processes

Terminal lab: Enumerate and analyze processes on Linux and Windows

Lab

Processes, Threads, Handles & Registry

Windows internals: Explore system components with PowerShell

Lab

Create User Accounts

User management: Create and manage accounts on Linux and Windows

Lab

Week 1 Evaluation

Complete all 15 topics to unlock the comprehensive assessment.

Complete Topics to Unlock
Requires: 15/15 topics completed
CyberOps Home | Week 2: Security Monitoring