In this course, you will learn how to perform OS analysis using Nagios XI from a security blue team perspective, to effectively create better awareness around common MITRE TTPs.
In this course, you will learn how to perform OS analysis using Nagios XI from a security blue team perspective, to effectively create better awareness around common MITRE TTPs.
Would you like to be able to effectively detect the beginning stages of the most common attacks by identifying activity like powershell execution or monitor the status of constant services like your windows firewall? In this course, OS Analysis with Nagios, you’ll cover how to utilize Nagios XI to secure a live enterprise environment. First, you’ll explore the detection of command shells like Powershell. Next, you’ll apply alerts to detect if the Windows Firewall service is ever disabled. Finally, you’ll review some of the event logging capabilities to increase overall awareness. In addition to these main objectives, you will also explore some of the graphing and network visibility features of Nagios XI as well. When you’re finished with this course, you’ll have the skills and knowledge to detect Command and Scripting Interpreter: PowerShell (T1059.001), Impair Defenses: Disable or Modify Firewall (T1562.007), and File and Directory Discovery (T1083) using Nagios XI.
OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.
Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.
Find this site helpful? Tell a friend about us.
We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.
Your purchases help us maintain our catalog and keep our servers humming without ads.
Thank you for supporting OpenCourser.