Detection Engineering 101¶
Lab guides for Detection Engineering 101
Getting Started¶
- LAB 0.1: CloudLabs Setup
- LAB 0.2: Elastic Setup (Required)
Module 1: Elastic Fundamentals¶
- LAB 1.1: Fleet and Elastic Agent enrollment (~15 min, Required)
- LAB 1.2: Baby's First Query (~15 min, Required)
- LAB 1.3: Baby's First Detection (KQL) (~30 min, Required)
Module 2: Detection Engineering¶
- LAB 2.1: Testing Detections with Atomic Red Team (~15 min, Required)
- LAB 2.2: Tuning Detections in Elastic (~15 min, Optional)
Copyright Noct Information Security, LLC. All Rights Reserved.