Course Modules

Threat Hunting with Windows Event Forwarding

Module 1: What is Windows Event Forwarding?

07:16
1.1 Introduction
04:58
1.2 Native Windows Event Forwarding

Module 2: Prerequisites for Setting up Windows Event Forwarding

07:42
2.1 Group Policy for Event Collection
09:53
2.2 Microsoft System Monitor (SysMon)
06:23
2.3 Which Events to log for the Threat Hunt Part 1
07:54
2.4 Which Events to log for the Threat Hunt Part 2

Module 3: Configure Windows Event Collector (WEC)

04:24
3.1 Configure Windows Event Collector (WEC) Part 1
08:16
3.2 Configure Windows Event Collector (WEC) Part 2
08:12
3.3 Scaling and Performance of Windows Event Collection

Module 4: MIRE ATT&CK

09:12
4.1 MITRE ATT&CK Framework

Module 5: Lateral Movement Case Study

06:56
5.1 Lateral Movement as a Case Study

Instructed By

Instructor Profile Image
Gurvinder Singh
Instructor