Learning is Better with Friends
Invite your friends to enjoy free, online cyber security and IT video courses
< Back to Threat Intelligence

Module 1 - Introduction

Module 2 - Intelligence Foundations

Module 3 - CTI Perceptions

Module 4 - Tactical Threat Intelligence

Module 5 - Operational Threat Intelligence

Module 6 - Strategic Threat Intelligence

Module 7 - The Cyber Kill Chain

Module 8 - Tactical Threat Intelligence Requirements

Module 9 - Cyber Kill Chain Analysis

Module 10 - Cyber Kill Chain Management

Module 11 - Using Open Source Intelligence

Module 12 - Summary

The Cyber Kill Chain – Deep Dive

FacebookTwitterGoogle+LinkedInEmail
Learning should be free
Cybrary's open source learning community and hands on marketplace enables you to earn new skills and collaborate in an engaging and rewarding way. Join the other 1,562,699 IT professionals today to get free access to
  • Unlimited Free and Open Source Cyber Security Learning
  • CEU/CPE Certificates of Completion
  • Innovative Micro-Certifications
  • Over 200 Certification-based Practice Labs and Practice Tests
  • And much more!
Join Cybrary for Free
Already a member?
Login to view this lesson
Description
Virtual Practice Lab
Practice Test
Resources
The Cyber Kill Chain – Deep Dive

Module 8 is a deep dive into the Cyber Kill Chain (CKC) that was introduced in an earlier module. The phases of teh CKC lifecycle are:

  • Passive data discovery
  • Detection
  • Denial
  • Delaying
  • Degrading

Lockheed Martin (LM) has produced an intelligence-driven defense model consisting of seven steps. Dean begins reviewing this model by discussing passive discovery of data and the many different sources of data within an environment.

Next he discusses detecting future threat actions and capabilities and how this can be accomplished by reverse engineering malware. This process can provide clues to understanding how malware operates and how the infection occurred. Such knowledge can help prevent future infections.

Detecting weaponization is discussed next. This involves detecting malicious payloads, Trojans, or what is being targeted such as a file or app. Evidence of such payloads can manifest as registry changes, new or missing files, and other artifacts as well as suspicious traffic activity.

The video concludes with a discussion of the analysis of the attack timeline, when the malware was created, tested, and deployed, its capabilities and level of sophistication which all can provide clues to crafting a defense and detection methods.

Coming Soon
Learn on the go.
The app designed for the modern cyber security professional.
Get it on Google PlayGet it on the App Store
Hands On Lab
Verified
Introduction to Wireshark Virtual Lab
Set yourself apart as a network analyst by learning the standard in network analyzer tools. The Introduction to Wireshark Virtual Lab will prepare you to properly utilize Wireshark for network troubleshooting, analysis, software and communications protocol developme
22 Hours
Hands On Lab
Verified
Introduction to Network Security Tools Virtual Lab
Determine the necessary network security tools needed to safeguard your organization. Because there is no ‘one size fits all’ solution to network security, the Introduction to Network Security Tools Virtual Lab will prepare you with a basic knowledge about which
19 Hours
Practice Test
Verified
Cisco 200-105: Interconnecting Cisco Network Devices Part 2
Evolve your networking skills to fill the role of a core network engineer by learning the ins and outs of real Cisco Routers and Switches. You have passed the ICND1 and are ready to take the Interconnecting Cisco Network Devices Part 2 certification exam. The Cisco
Practice Test
Verified
Cisco 200-125: Cisco Certified Network Associate (CCNA)
Evolve your networking skills to fill the role of a core network engineer by learning the ins and outs of real Cisco Routers and Switches. The CCNA Practice Test will prepare you to install, manage, monitor, secure, and troubleshoot basic router and switches.
22 Hours
Recommended Study Material

Recorded Future Cyber Daily

 

 

With new threats lurking around every corner, you need to be prepared. Join thousands of your infosec peers and subscribe to the Cyber Daily for free trending threat intelligence insights.

 

 

Practice Labs and Exam Vouchers

Congratulations! You're taking the first step to getting certified. Get some hands on experience with available practice labs OR save some money, support Cybrary, and purchase discounted exam vouchers. Ready to earn your next industry certification? Join cyber security's largest community and start learning today.

JOIN CYBRARY

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel