Please note:
Threat hunting and Incident response tactics and procedures have evolved rapidly over the past several years. Your team can no longer afford to use antiquated incident response and threat hunting techniques that fail to properly identify compromised systems. The key is to constantly look for attacks that get past security systems, and to catch intrusions in progress, rather than after attackers have completed their objectives and done worse damage to the organization. For the incident responder, this process is known as "threat hunting".
FOR508 teaches advanced skills to hunt, identify, counter, and recover from a wide range of threats within enterprise networks, including APT nation-state adversaries, organized crime syndicates, and hactivists. Join us for interactive training during SANS Digital Forensics en Espaņol: June 2021 – Live Online (June 28-July 2, CDT), and learn new skills you can apply immediately.
"The Live Online platform works well and keeps class collaborative. I was a bit skeptical at first but having completed FOR508 this way, I'm a believer!" - Ken Hill, EY
"This is my first time taking an online virtual class. I felt no difference on my first day taking an online course versus being in the classroom. The instructor and TAs did an amazing job to keeping everything organized and structured." - Sayeed Gulmahamad, Lazard
"I found FOR508 to be one of the best courses I've attended. It's a good mix of theory and hands-on practice, and is strongly technical with relevant real-world scenarios. It was a good opportunity to practice my skills in a well-structured environment." - Daniel Earl, AusNet Services
Title | Certification | Instructor |
---|---|---|
FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics | GCFA |
Carlos Cajigas |