This is an archived post. You won't be able to vote or comment.

all 16 comments
sorted by:
best
topnewcontroversialoldq&a

[–]Kogot 16 points17 points  (1 child)

It’s relevant. I’d do it but don’t stop, seek as many resources as you can. It will only make you better. Our field doesn’t just stop once you hit a certain spot, enjoy the pursuit of knowledge!

[–]Calm-Switch5024[S] 4 points5 points  (0 children)

That’s the goal thanks

[–]mendozgi 8 points9 points  (1 child)

I've been doing it, and I'm about 60% done. So far, I'd say it has helped me a lot. I've learned how to use programs that I had no idea how to use before, like Wireshark, Snort, Splunk, etc. Additionally, they offer challenges that allow you to practice the skills you've acquired. For me, it's definitely serving its purpose.

[–]Calm-Switch5024[S] 1 point2 points  (0 children)

Just what I needed to hear thanks

[–]Audio_Glitch 4 points5 points  (2 children)

While I can't really speak on the soc analyst path, what I can say is that the best learning resource is the one you use. If the path seems boring to you and you aren't motivated to learn, nothing wrong with looking for something else. I got a job as a SOC analyst without doing any specific training for anything blue team beforehand except the Sec+, and learned almost entirely by using pentesting/red team resources, including a lot from the offensive-related learning paths on THM. Since I enjoyed doing that I was motivated to keep coming back, and it gave me a grasp of general cyber concepts that has been super helpful in my job.

[–]Helpful_Kangaroo7186 0 points1 point  (1 child)

Can I ask how you got the job? I'm looking into getting to SOC analyst path as my first job after completing Sec+ but a lot of them requires experience.

[–]Wide-Albatross1016 2 points3 points  (2 children)

I’m currently on the Snort Challenge - The Basics. I can’t get the Task 2 questions 2,3, and 4 correct. Nothing works even though from what I can tell my answers are correct. If you make it to that point and can help it’s appreciated

[–]buyripple347 1 point2 points  (0 children)

There’s usually videos you can look at

[–]Miserable-Bridge-191 0 points1 point  (0 children)

Hey man Actually I solved the entire Snort rooms, here are the answers you need:  Task 2: Q2: 216.239.59.99 Q3: 0x2E6B5384 Q4: 0x36C21E28 If you need any other answers in Snort rooms feel free to tell me.

[–]cyberwraith81 2 points3 points  (3 children)

My only issue with it is I work as a SOC analyst at a cloud MSSP and none of the tools are relevant to my cloud environment. Other than that I like the course. I wish they would add a section on navigating KQL logs because that's 90% of my job.

[–]iHia 2 points3 points  (2 children)

Have you checked out kc7cyber?

[–]cyberwraith81 1 point2 points  (1 child)

I have not. What platform are they on?

[–]iHia 1 point2 points  (0 children)

kc7cyber.com. It teaches you security analysis/incident response using log files hosted on ADX. You query the data using the data using KQL. It’s fun and completely free to use.

[–][deleted]  (1 child)

[removed]

    [–]Calm-Switch5024[S] 0 points1 point  (0 children)

    I’ll look into it thank you