This post is also available in: English


Duration : 20 Hours

The Monitoring and Detection course is part of HackerU Advanced Cyber Warfare Course. Designed especially for MOD industries, the program is both broad and thorough, covering issues such as the construction of knowledge and the structure of a defensive cyber unit in a particularly threatened environment.

The Monitoring and Detection is a preliminary program for a later specialization in one of the following subjects: Defense Strategy, Attacking Techniques, Proactive Intelligence, Investigations, Malware Analysis, Reverse Engineering, Exploit Writing, SCADA Attack & Defense.

Target Audience

Information Security experts, looking for an in-depth glance into organizations threatened by Advanced Persistent Threats. Intelligence and security practitioners.


The program delves deep into various aspects of Cyber Warfare on the defensive side, enabling participants to expand their knowledge in both methodologies and required techniques.

Pre- requisites

Background in IT as well as software development or intelligence.

Course Outline

Module 1: Log Management and Information Sources 

  • Sources of Information
  • Quality of Information

Module 2: Attack Indicators 

Module 3: Automated Attack Detection Tools and Methods 

Module 4: SIEM’s 

  • Overview of the Functionality
  • Presentation Layer
  • Alarms and Thresholds
  • Priorities
  • Correlation

Module 5: Writing SIEM rules 

  • Best Practices
  • Avoiding False Positives and Noise
  • Case-studies

Module 6: Intrusion Attribution Framework 

  • Introduction and objectives of attribution
  • Trace-back techniques
  • Intrusion analysis
  • Counter attack