In this lab, I’m stepping into the role of a Threat Intelligence analyst inside a SOC.

In this lab, we investigate a network compromise flagged by an Intrusion

We’re investigating a murder where the victim’s Android phone was recovered.

Investigate an insider threat by analyzing GitHub repos for exposed credentials

After an after-hours EDR alert flagged suspicious activity on a Windows workstation

During a regular IT security check at GlobalTech Industries

Our security monitoring flagged a spike in suspicious name resolution traffic on the network.

A suspicious file was identified on a company web server, raising alarms within the intranet