SOC-200: Foundational Security Operations and Defensive Analysis
The Security Operations and Defensive Analysis (SOC-200) course delves into the foundations of defending networks and systems against cyber threats. Learners gain practical experience within a hands-on, self-paced environment designed to teach the fundamental concepts of SOC operations.
Individuals completing the online training course and passing its rigorous exam, earn the OffSec Defense Analyst (OSDA) certification. This SOC Analyst certification demonstrates your ability to detect, analyze, and assess a potential security incident through live exercises. The OSDA stands out in the cybersecurity field, reflecting a commitment to hands-on defensive skills sought after by employers.
Starting at $1,749
Think like an attacker, act like a defender
Foundational Security Operations and Defensive Analysis Syllabus
-
Attack Methodology Introduction
Explore the fundamental mindsets, tactics, and phases of a cyberattack. Build a strong foundation for understanding attacker behavior and how to anticipate their moves during your penetration testing engagements.
-
Windows Endpoint Introduction
Gain a solid understanding of the concepts and security concerns surrounding Windows endpoints, including desktops, laptops, and other Windows-based user devices. Discover common vulnerabilities and the attack vectors adversaries use to target them.
-
Windows Server Side Attacks
Uncover the techniques attackers employ to compromise Windows servers – the backbone of many networks. Learn methods for exploiting critical services and vulnerabilities to gain elevated access.
-
Windows Client-Side Attacks
Investigate how attackers manipulate the user-facing side of Windows systems. Analyze browser-based attacks, vulnerabilities in software, and social engineering tactics designed to compromise endpoints.
-
Windows Privilege Escalation
Examine the art of elevating your privileges on Windows systems. Learn to exploit misconfigurations, software flaws, and zero-day vulnerabilities, increasing your level of network control.
-
Windows Persistence
Learn the techniques attackers use to stay hidden on compromised Windows systems. Explore file system persistence, registry modification, scheduled tasks, and other methods to maintain a foothold.
-
Linux Endpoint Introduction
Gain an understanding of the concepts surrounding Linux endpoints, their security mechanisms, and potential vulnerabilities. Become familiar with common attack vectors used to target them.
-
Linux Server Side Attacks
Examine how adversaries compromise Linux servers, utilizing privilege escalation methods, service exploits, and configuration weaknesses.
-
Network Detections
Develop a comprehensive understanding of network security incidents and detection techniques. Learn how firewalls, intrusion detection systems, and other tools identify malicious activity, allowing you to refine your evasion strategies.
-
Antivirus Alerts and Evasion
Explore advanced methods for evading antivirus solutions. Understand payload obfuscation, exploit customization, and techniques designed to minimize your digital footprint while maximizing success.
Start learning with OffSec
popular
Course + Cert
Exam Bundle
$1,749/once
The bundle includes 90 days of access to a single course, the associated labs and a single exam attempt.
value
access
Learn
Unlimited
$6,099/year*
Unlimited OffSec Learning Library access plus unlimited exam attempts for one year.
teams
Learn
Enterprise
Get a quote
Flexible terms and volume discounts available.
What our community is saying
Malek Ezzar
Cybersecurity Consultant
I gained expertise in using SIEM tools for monitoring and analyzing security events and have hands-on experience with network and system monitoring.
Yusuf Efil
SOC Analyst
The training endowed me with advanced skills to detect, analyze, and mitigate threats, [enhancing] our ability to protect and defend assets against cyber threats.
