In hands-on lab exercises, students will explore and singel i sandsli the Cortex XDR management platform and install Cortex XDR agent as well as relevant components; create security policies and profiles to protect endpoints against multi-stage, fileless attacks built using malware and exploits; respond to attacks using response actions; understand behavioural threat singel i sandsli, log stitching, agent-provided enhanced gulen single jenter data, and causality analysis; investigate and triage attacks using the incident management page of Cortex XDR and analyze alerts using the Causality and Timeline analysis views; use API to insert alerts; create BIOC rules, and search a lead in raw data sets in Cortex Data Lake using Cortex XDR Query Builder.
If singel i sandsli like to start studying right away, we can share the videos of a previous course and lab access immediately once your booking is confirmed.
Lab access for 3 months You will have access to your own dedicated lab which you can use not only during the class but for a full three months without any time or usage limit.
Your virtual lab consists of a dedicated Windows and a Linux Client as well as access to a shared Cortex XDR instance for practical exercises as described in the lab guide.
Prerequisites Participants must be familiar with enterprise security concepts.