INTERMEDIATE

Blue Team Operations & Forensics

Detect, hunt, respond, and investigate. Build the defensive muscle that turns telemetry into decisions.

2 courses~31 hours total

Outcomes

  • Triage alerts and engineer detections mapped to MITRE ATT&CK
  • Run a structured incident-response process
  • Preserve evidence and produce forensic reports

Course sequence

  1. 1
    INTERMEDIATE
    Digital Forensics16h

    Preserve evidence, investigate safely on fictional cases, and run a structured incident-response process.

    View course
  2. 2
    INTERMEDIATE
    Security Operations15h

    Turn telemetry into detections and hunts mapped to MITRE ATT&CK.

    View course
← Back to all paths