Chronicle SIEM: Introduction & Single Event Rules
Offered By: Google via Google Cloud Skills Boost
Course Description
Overview
In this lab you perform basic configuration tasks within a Chronicle environment instance.
Syllabus
- GSP1098
- Overview
- Objectives
- Setup and requirements
- YARA-L Overview
- Writing Rules
- Exercise 1: Duplicate and Test a Rule
- Review Exercise 1: Duplicate and Test a Rule
- Combining UDM and RegEx from a Single Event
- Exercise 2: Single Event Rule
- Review Exercise 2: Single Event Rule
- Congratulations!
Tags
Related Courses
Chronicle SIEM: Outcomes & FunctionsGoogle Cloud via Coursera Chronicle SIEM: Multi Event Rules
Google Cloud via Coursera Chronicle SIEM: Introduction & Single Event Rules
Google Cloud via Coursera Chronicle SIEM: Outcomes & Functions
Google via Google Cloud Skills Boost Chronicle SIEM: Multi Event Rules
Google via Google Cloud Skills Boost