Defensive Security Intro

easy30 mintryhackme

Introduction to defensive security. Covers SOC (Security Operations Center), Threat Intelligence, DFIR (Digital Forensics and Incident Response), and Malware Analysis. The practical exercise is a simulated SIEM dashboard where you identify a malicious alert, investigate suspicious IP 143.110.250.149 using IP-SCANNER.THM, confirm it's malicious, escalate to the SOC Team Lead, and block it on the firewall. Flag: THM{THREAT-BLOCKED}.

Skills You Will Learn

defensive-security-conceptssoc-operationssiem-basicsdfir-concepts

Prerequisites

thm-offensivesecurityintro

Walkthrough Phases

Introduction to Defensive Security

Understand what defensive security is and how Blue Teams operate

Areas of Defensive Security

Learn about SOC, Threat Intelligence, DFIR, and Malware Analysis

Practical: SIEM Simulation

Use a simulated SIEM dashboard to investigate and block a threat

5 questions to answer

alienrecon start thm-defensivesecurityintro

Don't have AlienRecon? Get started here