Hey everyone,
I have some course suggestions. I have been transitioning from being "Red" heavy to "Blue" heavy... I have a list of some things I would love to see. In doing so I have been reading many text books and have noticed a trend: There are so many aids, videos etc. for going offensive. But the DFIR side has so much more beyond just knowing enough to get certified.
There are some deeper dives into specific skill sets needed for truly defending against the dark arts. Since I am already typing I might as well list them out.
[+] Malware Detection (Hunting)
[+] Malware Reverse Engineering and Analysis
[+] Setting up a malware safe lab (Honeypots?)
[+] Threat Hunting
[+] Building Elastic Stacks, Deploying Agents and building security focused dashboards in Kibana
[+] Memory Analysis
[+] Security focused log collection and analysis
[+] SOC Analyst skills (Very broad I know) - SIEM Operations
I know many IT Professionals and managers are cert focused.... but these are really valuable skills that usually just get a wave top explanation. Some deep dive videos would be amazing.
May I humbly suggest Tyler Hudak for the Malware Reverse Engineering.
If this is the wrong place to plop this down- my sincere apologies.
Cheers!