Browse the Full Catalog

Established IT professionals can level up by obtaining their CompTIA Advanced Security Practitioner CAS-004 CASP+ certification. This brief course provides an overview of the exam and certification.

The Tech+ exam preparation bundle helps prepare students for the CompTIA Tech+ certification exam. The Tech+ certification gives students fundamental knowledge in IT that helps them prepare for careers as System Administrators.

In this CompTIA IT Fundamentals: Basic IT Literacy course you will learn basic methods of navigating an operating system, how to implement basic support concepts, and basic backup concepts.

In this CompTIA IT Fundamentals: Networking course you will learn about ethernet, local vs. hosted storage, and network attached storage (NAS).

In this CompTIA IT Fundamentals: Security course you will learn about physical security, security best practices, and how to recognize a secure connection/website.

In this CompTIA IT Fundamentals: Hardware course you will learn about common computer connector types and internal computer components.

In this CompTIA IT Fundamentals: Operating Systems course you will learn about common operating systems, operating systems and hardware, and operating systems and applications.

Prepare for the AWS Certified Solutions Architect Associate exam (SAA-C03), which is for those in a solutions architect role and experience designing available, efficient, fault-tolerant, and scalable systems on AWS. The exam measures your ability to: architect and deploy applications, define solutions, and provide implementation guidance.

Gain hands-on experience creating a launch template for an Amazon Elastic Cloud Compute (Amazon EC2) instance. Lab activities include: configuring a key pair and a security group, creating a launch template based on an Amazon Machine Image (AMI), launching an EC2 instance, and establishing an SSH terminal connection to the instance using PuTTy.

Gain hands-on experience configuring storage by using Amazon Elastic Block Store (EBS) to create a volume that you can attach to an Amazon Elastic Compute Cloud (EC2) instance. Lab activities include: creating an EBS volume, modifying the EBS volume, and attaching the EBS volume to an EC2 instance.

‍

Gain hands-on experience configuring AWS data transfer and storage options. Lab activities inlcude: creating a new Amazon Simple Storage Service (S3) bucket, enabling transfer acceleration, classifying stored files, and configuring file storage to use the most cost-effective storage tiers.

In this challenge, you will create a custom VPC with public and private subnets, and an Internet and NAT Gateway, and then you will associate route tables with the correct subnets.

In this Challenge Lab, you will configure an Amazon Simple Storage Service (S3) notification that will send an email when new content is uploaded to an S3 bucket.

In this lab, you will establish a location for the exchange of files with external customers. You will create a new S3 bucket that uses version control; create a new S3 bucket for data; enable logging, version control, and file encryption; upload a file and modify the file permissions; and verify access and version control.

In this AWS Certified Solutions Architect Associate: Exam Review course, you will find exam tips and a summary of major topics for the exam.

In this AWS Certified Solutions Architect Associate: Design Cost-Optimized Architecture course you will learn about cost management.

In this AWS Certified Solutions Architect Associate: Design High-Performing Architectures course, you will learn about compute (EC2), databases, storage, microservices and decoupling, and serverless.

In this AWS Certified Solutions Architect Associate: Design Resilient Architectures course, you will learn about architecture design concepts, networking, and high availability, high performance, scaling, and resiliency.

In this AWS Certified Solutions Architect Associate: Design Secure Architectures course, you will learn about identity and access management, management and governance, and security.

In this lab, students will create an S3 bucket and then enable cross-region replication (CRR). Students will then add resources to the bucket and verify access to the bucket.

In this lab, students will create a security group and configure a launch template. Students will then create an Auto Scaling group.

The AWS Certified Cloud Practitioner practice test helps students prepare for the AWS Certified Cloud Practitioner certification examination. This exam verifies the student's knowledge in the shared responsibility model and fundamental AWS services, like Shield, IAM, S3, EC2, and AWS billing.

Gain hands-on experience monitoring applications by using an Amazon CloudWatch dashboard. Lab activities include: connecting to the web servers that are running behind a load balancer, creating a CloudWatch metric filter for errors on each web server, and creating a custom CloudWatch dashboard to display the memory, CPU, and load balancer metrics.

Gain hands-on experience creating a scalable website. Lab activities include: creating security groups for a load balancer and an Auto Scaling group, creating a launch template that you will use to create Amazon EC2 instances, attaching a new load balancer to a Auto Scaling group, and connecting to the website through the load balancer.

Create an Amazon DynamoDB table that will be used to access data for a Python application. Lab activities include: creating an IAM policy to allow access to a DynamoDB table, installing the Boto3 and pandas Python libraries in the AppServer instance, and connecting to an Amazon EC2 instance to test access to the table from the Python application.

In this hands-on challenge, you will practice researching log events related to a reported spearphishing attack.

In this hands-on challenge, you will practice researching network observables.

In this hands-on challenge, you will practice analyzing log events related to Windows authentication.

In this hands-on challenge, you practice profiling a suspicious process on a Windows system.

In this hands-on challenge, you will practice using SIEM search expressions to locate suspicious activity related to XRDP traffic.

CVE-2024-23897 is a critical security flaw affecting Jenkins, a Java-based open-source automation server widely used for application building, testing, and deployment. It allows unauthorized access to files through the Jenkins integrated command line interface (CLI), potentially leading to remote code execution (RCE).

In this hands-on challenge, you will practice using SIEM search expressions to locate suspicious activity related to XRDP traffic.

CVE-2023-27524 is a critical vulnerability in Apache Superset, affecting versions up to 2.0.1. It enables attackers to bypass authentication by exploiting weak or default SECRET_KEY values. Attackers can forge session cookies to gain admin access, leading to potential remote code execution and unauthorized data access.

‍

Confluence suffers from a Broken Access Control vulnerability that affects Data Center and Server versions 8.0.0 to 8.3.2, 8.4.0 to 8.4.2, and 8.5.0 to 8.5.1. Threat actors exploit this vulnerability to obtain administrator access to Confluence servers. Put on your Red Team hat to create your own malicious admin account leveraging this CVE!

Royal is a spin-off group of Conti, which first emerged in January of 2022. The group consists of veterans of the ransomware industry and brings more advanced capabilities and TTPs against their victims. Begin this campaign to learn how to detect and protect against this newer APT group!

Magic Hound (APT35) is an Iranian state-sponsored threat group that primarily targets organizations across various industries and geographic regions through cyber espionage. Launch this campaign to start detecting the sophisticated techniques leveraged by this threat group.

Raspberry Robin is a malware family that continues to be manipulated by several different threat groups for their purposes. These threat actors (Clop, LockBit, and Evil Corp) specialize in establishing persistence on a compromised host and creating remote connections to use later. Once established, these C2 connections can be used for multiple purposes, including data exfiltration, espionage, and even further exploitation.

Threat actors will use stolen data exfiltrated from victim systems to extort organizations. Once they gain a foothold, they delete critical system files and threaten to release the data or disrupt operations if the victims do not pay up. Understanding these techniques is vital to defending your organization from such attacks.

Threat actors continue to leverage ransomware to extort victim organizations. What was once a simple scheme to encrypt target data has expanded to include data disclosure and targeting a victim’s clients or suppliers. Understanding the techniques threat actors use in these attacks is vital to having an effective detection and mitigation strategy.