Chronicle SIEM: Introduction & Single Event Rules
Offered By: Google via Google Cloud Skills Boost
Course Description
Overview
In this lab you perform basic configuration tasks within a Chronicle environment instance.
Syllabus
- GSP1098
- Overview
- Objectives
- Setup and requirements
- YARA-L Overview
- Writing Rules
- Exercise 1: Duplicate and Test a Rule
- Review Exercise 1: Duplicate and Test a Rule
- Combining UDM and RegEx from a Single Event
- Exercise 2: Single Event Rule
- Review Exercise 2: Single Event Rule
- Congratulations!
Tags
Related Courses
Chronicle SIEM: Multi Event RulesGoogle via Google Cloud Skills Boost Chronicle SIEM: Outcomes & Functions
Google via Google Cloud Skills Boost Chronicle SIEM: Rules
Google via Google Cloud Skills Boost Security Practices with Chronicle SIEM - Locales
Google via Google Cloud Skills Boost Chronicle SIEM: Introduction & Single Event Rules
Google Cloud via Coursera