Met onze Microsoft FastPass bundel, kun je tot 31 december 2021 onbeperkt Microsoft Online Instructor-geleide cursussen volgen voor slechts € 6.750 excl. BTW

GIAC - Firebrand's training for GIAC's Certified Intrusion Analyst | GCIA

Looptijd

Looptijd:

Slechts 4 dagen

Methode

Methode:

Klas / Online / Hybride

Volgende datum

Volgende datum:

7/2/2022 (Maandag)

Overview

On this 4-day GIAC Intrusion Analyst Certification course, you'll develop the competence to configure and monitor detection systems as well as understand, interpret and analyse network traffic and log files.

This course is aimed at professionals responsible for network and host monitoring, traffic analysis and intrusion detection. Some of the skills you'll learn include:

  • Developing a deeper understanding of traffic analysis tools to detect and subsequently respond to intrusions
  • Understanding the importance behind the optimal placement of IDS sensors and how network forensics can help identify intrusions
  • Understanding the intricacies behind detecting intrusions and assisting analysts with the necessary resources

Our unique Lecture | Lab | Review technique will immerse you in course content. Combining both theoretical knowledge with hands-on experience means you'll learn faster and you'll develop the skills necessary to put your new found knowledge to practice as soon as you return to work.

On this course, you'll be prepared for the GIAC Certified Intrusion Analyst (GCIA) exam. This is covered by your Certification Guarantee.

This course is aimed at those responsible for networking and host monitoring, traffic analysis and intrusion detection.

This course provides knowledge equivalent to the SANS SEC503: Intrusion Detection In-Depth.

Zeven redenen waarom u met uw GCIA cursus voor Firebrand Training moet kiezen

  1. U zult in slechts 4 dagen GCIA gecertificeerd zijn. Met ons bent u in recordtijd GCIA getraind
  2. Onze GCIA cursus is all-inclusive. Een eenmalige contributie bekostigt alle cursusmaterialen, accommodaties en maaltijden.
  3. Slaag de eerste keer voor GCIA of volg de training nogmaals. Dit is onze garantie. Wij zijn er zeker van dat u de eerste keer zult slagen voor uw GCIA cursus. Mocht dit niet het geval zijn, dan kunt u binnen het jaar terugkomen en enkel voor de accommodatie en examens te betalen. De rest is gratis
  4. U zult meer GCIA leren. Een dag met een traditionele training aanbieder duurt over het algemeen van 9 uur 's ochtends tot 17 uur in de middag, met een lange lunchpauze. Met Firebrand Training kunt u rekenen op minstens 12 uur leren per dag met uw instructeur
  5. U zult GCIA snellerde theorie beheersen. De kans bestaat dat u een andere manier van leren heeft dan uw omgeving. Wij combineren visuele, auditieve en tastbare leerstijlen, dit zorgt voor een snellere en eenvoudigere manier van leren
  6. U zult GCIA studeren met de beste. We hebben het Q-For kwaliteit label, dat onze standaarden en professionaliteit in de training markt erkent. Naast het winnen van nog vele andere prijzen, hebben we inmiddels 108243 professionals getraind en gecertificeerd en we zijn partners met alle grote namen in deze tak van het bedrijfsleven
  7. U zult meer doen dan alleen GCIA de cursusstof bestuderen. We maken gebruik van laboratoria, case-studies en oefentests, om ervoor te zorgen dat u uw nieuwe kennis in uw werkomgeving kan toepassen. Onze instructeurs gebruiken demonstraties en hun eigen ervaringen om de dag interessant en boeiend te houden

Benefits

Please Note

  • Examination vouchers not included for GIAC, CREST and CISSP CBK Review
  • On site testing not included for GIAC, CREST or ITIL Managers and Revision Certification Courses

Curriculum

Advanced IDS Concepts

  • Demonstrate an understanding of IDS tuning methods and correlation issues (e.g., snort, bro)

Application Protocols

  • The candidate will demonstrate knowledge, skill, and ability relating to application layer protocol dissection and analysis including HTTP, SMTP, and various Microsoft protocols

Concepts of TCP/IP and the Link Layer

  • The candidate will understand the TCP/IP communications model and link layer operations

DNS

  • The candidate will demonstrate a thorough understanding of how DNS works for both legitimate and malicious purposes

Fragmentation

  • The candidate will demonstrate comprehension of how fragmentation works through theory and packet capture examples, as well as the concepts behind fragmentation-based attacks

IDS Fundamentals and Initial Deployment (e.g., snort, bro)

  • Understand architecture, benefits/weaknesses, and configuration options of common IDS systems. Demonstrate ability to configure and deploy IDS (e.g., snort, bro)

IDS Rules (e.g., snort, bro)

  • Create effective IDS (e.g., snort, bro) rules to detect varied types of malicious activity

IP Headers

  • The candidate will demonstrate the ability to dissect IP packet headers and analyse them for normal and anomalous values that may point to security issues

IPv6

  • The candidate will demonstrate knowledge, skill and ability relating to the analysis of IPv6 as well as issues involving IP6 over IPv4

Network Architecture and Event Correlation

  • The candidate will demonstrate competence with issues relating to IDS/IPS management, network architecture as it pertains to intrusion detection, and event correlation and management

Network Traffic Analysis and Forensics

  • The candidate will demonstrate the ability to analyse real traffic and associated artifacts: malicious, normal and application traffic; and demonstrate the ability to discern malicious traffic from false positives

Packet Engineering

  • The candidate will demonstrate knowledge, skill, and ability relating to packet engineering and manipulation including packet crafting, OS fingerprinting, and IDS Evasion/Insertion

Silk and Other Traffic Analysis Tools

  • The candidate will demonstrate the ability to use Silk and other tools to perform network traffic and flow analysis

TCP

  • The candidate will understand TCP communications as well as expected responses to given stimuli at this layer

Tcpdump Filters

  • The candidate will demonstrate the skill and ability to craft tcpdump filters that match on given criteria

UDP and ICMP

  • The candidate will demonstrated the ability to analyse both UDP and ICMP packets and recognise common issues

Wireshark Fundamentals

  • The candidate will demonstrate the knowledge, skills, and abilities associated with traffic analysis using wireshark from an intermediate to high degree of proficiency

Exam Track

This course will prepare you for the following exam. The exam fee is not included in the course price. If you wish to take the exam, we’ll provide instructions on how to register with GIAC.

  • GIAC Certified Intrusion Analyst (GCIA)

Additional Exam Details:

  • 1 proctored exam
  • 150 questions
  • Time limit of 4 hours
  • Minimum passing score of 67%
  • Certifications must be renewed every 4 years

What's Included

On this accelerated course, you'll get access to the following:

  • Firebrand official training materials

Prerequisites

While there are no official prerequisites for this course, you should have a working knowledge of TCP/IP and hexadecimal. As well as this, you should have an understanding of Linux commands such as cd, sudo and pwd.

Weet je niet zeker of je aan de vereisten voldoet? Maak je geen zorgen. Jouw trainingsadviseur bespreekt jouw achtergrond met je om te begrijpen of deze cursus geschikt is voor je.

Beoordelingen

Wereldwijd heeft Firebrand in haar 10-jarig bestaan al 108243 studenten opgeleid! We hebben ze allemaal gevraagd onze versnelde opleidingen te evalueren. De laatste keer dat we onze resultaten analyseerden, bleek 96.66% ons te beoordelen als 'boven verwachting'


"Firebrand are well organised and their facilities, accommodation and training rooms are more than fit for purpose. The all-inclusive course represents good value and I would not hesitate to recommend to a friend or colleague, and have already done so!"
P.J., EDF Energy. (26/4/2021 (Maandag) t/m 30/4/2021 (Vrijdag))

"I find courses can be stressful. - Find the place, get there and home each day, Firebrand have one requirement - find their facility. From that point on they will handle all your needs completely. Taking that extra work away from you allows you to learn more freely than in other settings. They have high-quality management staff and instructors. They cover a wide range of valuable course. I''ve used them at least 6 times now and always look at their website first if an opportunity for training comes up through my employer."
Wayne Thompson, United Utilities. (26/4/2021 (Maandag) t/m 30/4/2021 (Vrijdag))

"Highly recommended. I completed the GICSP training, which Im confident has put me in a good place to take the exam. The instructor was very knowledgeable and delivered the training in a straightforward manner that was easy to digest. The environment was open and supported my many questions. I found Firebrand pleasant to work with, quick to respond, and wouldnt hesitate to use again."
M.W.. (25/1/2021 (Maandag) t/m 29/1/2021 (Vrijdag))

"Excellent delivery and great facility."
David Chisholm, Rolls Royce. (21/10/2019 (Maandag) t/m 25/10/2019 (Vrijdag))

"Very informative. Lecturer was very knowledgeable on a wide variety of subjects. A pleasure being bombarded with so much information."
Japie Van Der Merwe, SBM. (8/7/2019 (Maandag) t/m 12/7/2019 (Vrijdag))

Cursusdata

Start datum

Eind datum

Status

Locatie

Nu boeken

23/8/2021 (Maandag)

26/8/2021 (Donderdag)

Beëindigde cursus - Geef feedback

-

 

 

7/2/2022 (Maandag)

10/2/2022 (Donderdag)

Beperkte beschikbaarheid

Landelijk

 

21/3/2022 (Maandag)

24/3/2022 (Donderdag)

Open

Landelijk

 

2/5/2022 (Maandag)

5/5/2022 (Donderdag)

Open

Landelijk

 

13/6/2022 (Maandag)

16/6/2022 (Donderdag)

Open

Landelijk

 

Nieuwste beoordelingen van onze studenten