OS Analysis with Nagios
Offered By: Pluralsight
Course Description
Overview
In this course, you will learn how to perform OS analysis
using Nagios XI from a security blue team perspective, to
effectively create better awareness around common MITRE
TTPs.
Would you like to be able to effectively detect the beginning stages of the most common attacks by identifying activity like powershell execution or monitor the status of constant services like your windows firewall? In this course, OS Analysis with Nagios, you’ll cover how to utilize Nagios XI to secure a live enterprise environment. First, you’ll explore the detection of command shells like Powershell. Next, you’ll apply alerts to detect if the Windows Firewall service is ever disabled. Finally, you’ll review some of the event logging capabilities to increase overall awareness. In addition to these main objectives, you will also explore some of the graphing and network visibility features of Nagios XI as well. When you’re finished with this course, you’ll have the skills and knowledge to detect Command and Scripting Interpreter: PowerShell (T1059.001), Impair Defenses: Disable or Modify Firewall (T1562.007), and File and Directory Discovery (T1083) using Nagios XI.
using Nagios XI from a security blue team perspective, to
effectively create better awareness around common MITRE
TTPs.
Would you like to be able to effectively detect the beginning stages of the most common attacks by identifying activity like powershell execution or monitor the status of constant services like your windows firewall? In this course, OS Analysis with Nagios, you’ll cover how to utilize Nagios XI to secure a live enterprise environment. First, you’ll explore the detection of command shells like Powershell. Next, you’ll apply alerts to detect if the Windows Firewall service is ever disabled. Finally, you’ll review some of the event logging capabilities to increase overall awareness. In addition to these main objectives, you will also explore some of the graphing and network visibility features of Nagios XI as well. When you’re finished with this course, you’ll have the skills and knowledge to detect Command and Scripting Interpreter: PowerShell (T1059.001), Impair Defenses: Disable or Modify Firewall (T1562.007), and File and Directory Discovery (T1083) using Nagios XI.
Syllabus
- Course Overview 1min
- Using Nagios for OS Analysis 18mins
- Resources 1min
Taught by
Owen Dubiel
Related Courses
Nagios Certified Professional Prep CourseA Cloud Guru DevOps monitoring with Nagios: Configure Nagios in AWS EC2
Coursera Project Network via Coursera Learning Nagios
LinkedIn Learning Nagios Fundamentals
Pluralsight Building an Infosec Program from Ground Zero - From the Coat Closet to the Data Center
YouTube