This course covers the fundamentals of building or refining a hunt program in your own environment around a defined process; how to create consistent practices to identify, define, and execute a hunt mission; and how to measure success of your hunting program.
This four-day entry-level primer on FireEye Helix covers the Helix workflow, from triaging Helix alerts, creating and scoping cases and using Helix and Endpoint Security tools to conduct investigative searches across the enterprise.
This course is designed to prepare analysts to triage and derive meaningful, actionable information from alerts on FireEye File Protect.
In a hands-on lab environment, learners will be presented with various alert types and real-world scenarios in which they will conduct in-depth analysis on the behavior and attributes of malware to assess real-world threats.
This workshop introduces a framework for administration and diagnostics for the FireEye Network Security (NX) appliance. The course includes checklists, case studies, lab challenges and guidance for transitioning difficult cases to the FireEye Support team.
This course is designed to prepare analysts to triage and derive meaningful, actionable information from alerts on FireEye File Protect.
In a hands-on lab environment, learners will be presented with various alert types and real-world scenarios in which they will conduct in-depth analysis on the behavior and attributes of malware to assess real-world threats.
This 3-day course examines how to triage alerts generated by FireEye Network Security, derive actionable information from those alerts, and apply the fundamentals of live analysis and investigation to investigate associated endpoints.
This course introduces deployment, configuration and basic administration for FireEye Endpoint Security. From this baseline, the workshop introduces a framework for troubleshooting the FireEye Endpoint Security Server and the FireEye agent. The course includes checklists, case studies and guidance for transitioning difficult cases to the FireEye support team. Optional modules expand this workshop to include FireEye core hardware and virtual appliances..
This course covers the fundamentals of live analysis forensics and investigation for endpoints.
This is a two-day instructor-led class designed for analysts and email administrators.
This course is designed to prepare analysts to triage and derive meaningful, actionable information from alerts on FireEye File Protect.
In a hands-on lab environment, learners will be presented with various alert types and real-world scenarios in which they will conduct in-depth analysis on the behavior and attributes of malware to assess real-world threats.