Skip to main content

Skillber v1.0 is here!

Learn more
On this page

Threat Detection & Intelligence

Checking access...

Threat detection is how organizations find attackers in their environment before damage is done. This module covers SIEM, SOC, threat intelligence, hunting, and detection engineering.

Pages

PageDescription
SIEM FundamentalsSIEM architecture, log collection, correlation, SPL/KQL
SOC OperationsSOC tiers, metrics, shift handoff, escalation
Threat IntelligenceCTI lifecycle, OSINT, MITRE ATT&CK, STIX/TAXII
Threat HuntingHypothesis hunting, Pyramid of Pain, Velociraptor
Detection EngineeringSigma rules, detection as code, Atomic Red Team
Log ManagementWindows Event Logging, Sysmon, syslog, ELK pipeline
Detection LabHands-on: deploy ELK, write detection rule
FlashcardsTest your knowledge