Logging and Monitoring
About the course:
The course will give students the knowledge and skills needed to properly analyze and interpret various security-related logs produced by different security-related technologies. This course will focus on standard logs and on Intrusion Detection and Prevention Systems. Students will also be introduced to forensic analysis and Chain of Custody. Objectives: Be able to analyze the output of various security-related logs. Be able to interpret the output of various security-related logs. Understand the different types of security technologies that monitor a network and produce logs. Utilize Intrusion Detection and Prevention technologies in both hardware and software formats. Understand the basics of Forensic Analysis. Understand Order of Volatility and Chain of Custody and related concepts.