GCFA
GCFA Study Plan 🗒
This is my GCFA study plan. I hope it will help me in organizing and prioritising the topics to learn and also in estimating the time I need to get ready.
Advanced Incident Response & Threat Hunting
Legend Below is the skeleton from SAN508 course description. I am using it to make up my study plan.
Intrusion analysis 🛠️
Legend Below is the skeleton from SAN508 course description. I am using it to make up my study plan.
Memory Forensics in Incident Response and Thread Hunting 🗓
Legend Below is the skeleton from SAN508 course description. I am using it to make up my study plan.
Timeline Analysis ⏱
Legend Below is the skeleton from SAN508 course description. I am using it to make up my study plan.
Incident Response & Hunting Across the Enterprise | Advanced Adversary & Anti-Forensics Detection
Legend Below is the skeleton from SAN508 course description. I am using it to make up my study plan.
The APT Threat Group Incident Response Challenge 👯♀️
Legend Below is the skeleton from SAN508 course description. I am using it to make up my study plan.
Sample Questions
List of tools List of reg entries List of known malware and ioc Terminology List of artefacts (Win and Lin) List of attacks List of scans and their footprint (try map against different OS and log the results) Re-read those diaries, might be of help Configure laboratory (Wins I have + WinXP + Linux Hacking + Linux Kali) Install WinServer VM with AD and learn the basics (Udemy course may be + Hahacking + questions) ❓ Which of the following encryption methods use the RC4 technology?