SANS FOR572: Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response

This domain is used to house shortened URLs in support of the SANS Institute's FOR572 course.

You may be interested in the following resources:
  • SANS FOR572: Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response
  • Network Forensic Fundamentals: A collection of videos designed for anyone interested in Network Forensics that needs a refresher or to be brought up to speed on the core concepts and tools built upon in network forensic casework
  • Intro Lab Material: Public introduction lab content to reinforce core network forensic skills and to show the approach taken in FOR572's classroom lab materials.
  • SANS DFIR Network Forensics Poster: Wall-sized resource for all things Network Forensics. Available in soft-copy via the link, or request a physical poster if you like.
  • FOR572 Notebook: Public resource with additional information relevant to the course
  • SOF-ELK VM Distribution: Security Operations and Forensics Elasticsearch, Logstash, and Kibana - an appliance-like VM that's ready to ingest a variety of log and NetFlow data for DFIR and security operations purposes.
  • The SANS Institute: The most trusted source for computer security training, certification and research
  • SANS DFIR: Digital Forensics and Incident Response
Facebook