Overview
-
Prepare to take and pass the CompTIA Cybersecurity Analyst (CySA+) exam. This course can prepare you for the Threat and Vulnerability Management domain of exam CS0-002.
Syllabus
-
Introduction
- How to manage security threats
- What you need to know
- The goals of information security
- Role of the cybersecurity analyst
- Threat actors
- Zero-days and the APT
- Threat classification
- Threat intelligence
- Intelligence cycle
- Managing threat indicators
- Intelligence sharing
- Threat research
- Identifying threats
- Understanding attacks
- Threat modeling
- Threat hunting
- MITRE ATT&CK
- Diamond Model of Intrusion Analysis
- Cyber kill chain analysis
- Comparing viruses, worms, and Trojans
- Comparing adware, spyware, and ransomware
- Understanding backdoors and logic bombs
- Looking at advanced malware
- Understanding botnets
- Social engineering
- DNS harvesting
- Network mapping
- Enumeration tools
- Protocol analyzers
- Wireless reconnaissance
- The importance of perspective
- What is the cloud?
- Cloud activities and the cloud reference architecture
- Cloud deployment models
- Public cloud tiers
- DevOps
- Cloud security risks
- What's next
