Black Friday Sale Happening Now! Learn More

Workshop: Telemetry to Tactics: A Hands-On Detection Engineering Workshop with Hal Denton

Course Authored by .

Workshop: Telemetry to Tactics: A Hands-On Detection Engineering Workshop with Hal Denton

This hands-on workshop guides participants through the detection engineering lifecycle using real Windows telemetry, live attacks, and Elastic Cloud.

Course Length: 4 Hours

Includes a Certificate of Completion



Inquire Now

Next scheduled date: Content is loading, please wait.

Description

This hands-on workshop guides participants through the detection engineering lifecycle using real Windows telemetry, live attacks, and Elastic Cloud. You’ll configure Sysmon, simulate attacks using tools like Metasploit, and write custom detections based on real data. Whether you’re a SOC analyst or security engineer, this lab-focused session will help you move from raw telemetry to actionable detections

  • Student Requirements
    • Internet Access
    • Ability to create a free Elastic Cloud trial account (email is required).
    • Basic comfort with navigating Windows and Linux systems
  • VM/Lab/Student information
    • A system with a browser and solid internet connection
    • The ability to register via MetaCTF. Attendees will have access to the course VM and Labs via the MetaCTF platform for the duration of the workshop.

Syllabus

  • Lab setup

  • Detection Engineering Lifecycle

  • Alert Disposition

  • Installing and configuring Sysmon

  • Attack Simulations using tools like Metasploit

  • Writing custom detections in Elastic

  • Detection Verification using Echo<Threat

FAQ

This workshop is ideal for:

SOC Analysts
Detection Engineers
Threat Hunters
Incident Responders

Prerequisites:

Basic familiarity with Windows and cybersecurity concepts is helpful, but not required.

Audience Skill Level (beginner, intermediate, advanced)

Beginner/Intermediate

About the Instructor

Pixel splash background
Bio

Hal Denton is a Security Analyst specializing in detection engineering, DFIR, threat hunting and CTI. With experience covering several facets of IT and InfoSec for over 20 years, Hal is committed in making the Blue Team struggles more bearable and provide a gateway for the future generation of InfoSec professionals. Hal has a BS in Computer Forensics and Digital Investigations.

Related products

Shopping Cart

No products in the cart.