Kontakt oss nå og book din kurs.

GIAC - Firebrand's training for GIAC's Certified Intrusion Analyst | GCIA

Varighet

Varighet:

Bare 4 dager

Metode

Metode:

klasserommet / på nett / Hybrid

Neste dato

Neste dato:

24/6/2024 (Mandag)

Overview

On this 4-day GIAC Intrusion Analyst Certification course, you'll develop the competence to configure and monitor detection systems as well as understand, interpret and analyse network traffic and log files.

This course is aimed at professionals responsible for network and host monitoring, traffic analysis and intrusion detection. Some of the skills you'll learn include:

  • Developing a deeper understanding of traffic analysis tools to detect and subsequently respond to intrusions
  • Understanding the importance behind the optimal placement of IDS sensors and how network forensics can help identify intrusions
  • Understanding the intricacies behind detecting intrusions and assisting analysts with the necessary resources

Our unique Lecture | Lab | Review technique will immerse you in course content. Combining both theoretical knowledge with hands-on experience means you'll learn faster and you'll develop the skills necessary to put your new found knowledge to practice as soon as you return to work.

On this course, you'll be prepared for the GIAC Certified Intrusion Analyst (GCIA) exam. This is covered by your Certification Guarantee.

This course is aimed at those responsible for networking and host monitoring, traffic analysis and intrusion detection.

This course provides knowledge equivalent to the SANS SEC503: Intrusion Detection In-Depth.

Det vil ta deg bare et øyeblikk å se hvor billige våre kurs er...

 Se priser

Her er 8 grunner til hvorfor du skal gjennomføre ditt GCIA hos Firebrand Training:

  1. Du blir utdannet og sertifisert på bare 4 dager. Hos oss får du din utdanning og sertifisering på rekordtid, en sertifisering du også gjennomfører der og da som en integrert del av den intensive, akselererte utdanningen.
  2. Alt er inkludert. Et engangsbeløp dekker alt kursmaterial, eksamen, kost og losji og tilbyr den mest kostnadseffektive måten å gjennomføre ditt GCIA kurs og sertifisering på. Og dette uten noen uannonserte ytterligere kostnader.
  3. Du klarer sertifiseringen første gangen eller kan gå kurset om igjen kostnadsfritt. Det er vår garanti. Vi er sikre på at du vil klare din GCIA sertifisering første gangen. Men skulle du mot formodning ikke gjøre det kan du innen et år komme tilbake og kun betale for eventuelle overnattinger og din eksamen. Alt annet er gratis.
  4. Du lærer deg mer.Tradisjonelle utdanningsdager varer fra kl. 09.00 til 16.00 med lange lunsj- og kaffepauser. Hos Firebrand Training får du minst 12 timers effektiv og fokusert kvalitetsutdanning hver dag sammen med din instruktør, uten private eller arbeidsrelaterte, forstyrrende momenter.
  5. Du lærer deg GCIA raskere. Vi kombinerer de tre innlæringsmetodene (Presentasjon |Øving| Diskusjon) slik at vi gjennomfører kurset på en måte som sikrer at du lærer deg raskere og lettere.
  6. Du er i sikre hender.Vi har utdannet og sertifisert 134.561 personer, vi er partner med alle de store navn i bransjen og vi har vunnet atskillige utmerkelser, bla. a. "Årets Learning Partner 2010, 2011, 2012, 2013 og 2015” fra Microsoft Danmark og med en vekst på 1430 % siden 2009 er vi årets Gazelle prisvinner på Sjælland, Danmark.
  7. Du lærer deg ikke bare teorien. Vi har videreutviklet GCIA kursen og tilbyr flere praktiske øvelser og sikrer på den måten, at du kan bruke dine ferdigheter for å løse daglige praktiske problemstillinger.
  8. Du lærer av de beste. Våre instruktører på GCIA er de beste i bransjen og tilbyr en helt unik blanding av kunnskap, praktisk erfaring og pasjon for å lære bort.

Benefits

Please Note

  • Examination vouchers not included for GIAC, CREST and CISSP CBK Review
  • On site testing not included for GIAC, CREST or ITIL Managers and Revision Certification Courses

Er du klar for kurset? Ta en GRATIS test for å måle og vurdere kunnskapsnivået ditt.

 Gratis Test

Curriculum

Advanced IDS Concepts

  • Demonstrate an understanding of IDS tuning methods and correlation issues (e.g., snort, bro)

Application Protocols

  • The candidate will demonstrate knowledge, skill, and ability relating to application layer protocol dissection and analysis including HTTP, SMTP, and various Microsoft protocols

Concepts of TCP/IP and the Link Layer

  • The candidate will understand the TCP/IP communications model and link layer operations

DNS

  • The candidate will demonstrate a thorough understanding of how DNS works for both legitimate and malicious purposes

Fragmentation

  • The candidate will demonstrate comprehension of how fragmentation works through theory and packet capture examples, as well as the concepts behind fragmentation-based attacks

IDS Fundamentals and Initial Deployment (e.g., snort, bro)

  • Understand architecture, benefits/weaknesses, and configuration options of common IDS systems. Demonstrate ability to configure and deploy IDS (e.g., snort, bro)

IDS Rules (e.g., snort, bro)

  • Create effective IDS (e.g., snort, bro) rules to detect varied types of malicious activity

IP Headers

  • The candidate will demonstrate the ability to dissect IP packet headers and analyse them for normal and anomalous values that may point to security issues

IPv6

  • The candidate will demonstrate knowledge, skill and ability relating to the analysis of IPv6 as well as issues involving IP6 over IPv4

Network Architecture and Event Correlation

  • The candidate will demonstrate competence with issues relating to IDS/IPS management, network architecture as it pertains to intrusion detection, and event correlation and management

Network Traffic Analysis and Forensics

  • The candidate will demonstrate the ability to analyse real traffic and associated artifacts: malicious, normal and application traffic; and demonstrate the ability to discern malicious traffic from false positives

Packet Engineering

  • The candidate will demonstrate knowledge, skill, and ability relating to packet engineering and manipulation including packet crafting, OS fingerprinting, and IDS Evasion/Insertion

Silk and Other Traffic Analysis Tools

  • The candidate will demonstrate the ability to use Silk and other tools to perform network traffic and flow analysis

TCP

  • The candidate will understand TCP communications as well as expected responses to given stimuli at this layer

Tcpdump Filters

  • The candidate will demonstrate the skill and ability to craft tcpdump filters that match on given criteria

UDP and ICMP

  • The candidate will demonstrated the ability to analyse both UDP and ICMP packets and recognise common issues

Wireshark Fundamentals

  • The candidate will demonstrate the knowledge, skills, and abilities associated with traffic analysis using wireshark from an intermediate to high degree of proficiency

Exam Track

This course will prepare you for the following exam. The exam fee is not included in the course price. If you wish to take the exam, we’ll provide instructions on how to register with GIAC.

  • GIAC Certified Intrusion Analyst (GCIA)

Additional Exam Details:

  • 1 proctored exam
  • 150 questions
  • Time limit of 4 hours
  • Minimum passing score of 67%
  • Certifications must be renewed every 4 years

What's Included

On this accelerated course, you'll get access to the following:

  • Firebrand official training materials

Prerequisites

While there are no official prerequisites for this course, you should have a working knowledge of TCP/IP and hexadecimal. As well as this, you should have an understanding of Linux commands such as cd, sudo and pwd.

Anmeldelser

Vi har lært opp 134.561 personer på 12 år. Vi ba dem om å anmelde vår akselererte opplæring. Akkurat nå har 96,41% angitt at Firebrand overgikk forventningene:

"Best way to fully focus for complex certifications while benefiting from the real-life experience of the instructor"
Anonymous. (4/9/2023 (Mandag) til 8/9/2023 (Fredag))

"The instructor has a wealth of knowledge in OT, controls and automation. This especially true within the Oil and Gas industry. The training was significantly enhanced through this real-world experience and his ability interact with the class to cover off syllabus topics."
Anonymous. (28/11/2022 (Mandag) til 2/12/2022 (Fredag))

"Ive used Firebrand several times now over multiple job roles. I found this course GICSP was the most interesting course so far. This was hugely down to the instructor's interaction with the team and his shared real life scenarios. He is very knowledgeable indeed and presents the course in such a manner he made the subject feel much easier than it was. Its obvious that he is both passionate and dedicated in what he does. I look forward to attending onsite next year with him as the tutor"
Dave white, Essar Oil. (28/11/2022 (Mandag) til 2/12/2022 (Fredag))

"The GICSP training was excellent!"
AS. (28/11/2022 (Mandag) til 2/12/2022 (Fredag))

"Firebrand are well organised and their facilities, accommodation and training rooms are more than fit for purpose. The all-inclusive course represents good value and I would not hesitate to recommend to a friend or colleague, and have already done so!"
P.J., EDF Energy. (26/4/2021 (Mandag) til 30/4/2021 (Fredag))

Kursdatoer

Start

Slutt

Kapasitet

Plass

Registrer deg

19/2/2024 (Mandag)

22/2/2024 (Torsdag)

Ferdig - Gi tilbakemelding

-

 

24/6/2024 (Mandag)

27/6/2024 (Torsdag)

Venteliste

Landsdekkende

 

5/8/2024 (Mandag)

8/8/2024 (Torsdag)

Begrenset kapasitet

Landsdekkende

 

16/9/2024 (Mandag)

19/9/2024 (Torsdag)

Ledige plasser

Landsdekkende

 

28/10/2024 (Mandag)

31/10/2024 (Torsdag)

Ledige plasser

Landsdekkende

 

9/12/2024 (Mandag)

12/12/2024 (Torsdag)

Ledige plasser

Landsdekkende

 

Siste anmeldelser fra studenten vår

Trustpilot