FireEye Alert Analysis and Endpoint Investigations: Nov 15 - 17, 2021

This 3-day course examines how to triage alerts generated by FireEye Network Security, derive actionable information from those alerts, and apply the fundamentals of live analysis and investigation to investigate associated endpoints.

Hands-on activities span the entire analysis and live investigation process, beginning with a FireEye-generated alert, leading to discovery and analysis of the host for evidence of malware and other unwanted intrusion. Analysis will be performed using FireEye products and freely available tools.

For FireEye Endpoint Security customers, activities focus on investigation techniques using features such as the Triage Summary and Audit Viewer. 

Event Information

Training provided by: FireEye

  • START DATE: November 15, 2021 9:00am GMT
  • END DATE: November 17, 2021 5:00pm GMT
  • LOCATION: ILT via WebEx. Details will be provided on successful registration.
  • COST: US$4000 or 4 EoD units

Prerequisites

A working understanding of networking and network security, the Windows operating system, file system, registry and regular expressions, and experience scripting in Python.

Recommended Pretraining

FireEye Network Security Deployment eLearning
*FireEye Endpoint Security Deployment eLearning

*Content only included for customers with FireEye Endpoint Security

Technical Requirements

Students must have access to a laptop running one of the following browsers: Chrome (latest), Firefox (latest), or Internet Explorer (10 or greater). Wireshark is recommended.

FireEye classes include hands-on activities in the FireEye Training Lab. Important: Students must be able to connect to the FireEye Training Lab. Please verify connectivity for the labs prior to the first day of class by visiting portal.ork.training.fireeye.com and portal.sfo.training.fireeye.com. You should see the lab login screens.

The lab is a protected environment and requires a login for access. Once registered for class, students will receive their training lab credentials via email. These credentials will not be activated until the first day of class, and will expire upon class completion. Please note that any attempts to log in prior to class commencement will fail.

Interested in this class?

If you have any additional questions, send us an email.

Thank you.