Defensive Beginner Free

Beginner SOC Analyst

A practical defensive path that starts with log search, packet capture interpretation, and safe incident response habits.

New analysts learning triage, packet review, and SIEM search fundamentals.

0 of 4 complete

Step 1

Run your first focused SIEM query

Understand how scoped searches support fast triage.

Open command

Step 2

Use a predefined Splunk-style result without querying a real system.

Open lab

Step 3

Learn how capture limits and interfaces shape investigation output.

Open command

Step 4

Practice reading fake packet summaries safely.

Open lab