#INTEL: Threat intelligence and cyber investigations

This course provides an essential introduction to threat intelligence, helping participants understand the evolving cyber threat landscape. You’ll explore the types of threat actors and the tactics, techniques, and procedures (TTPs) they employ in their cyber campaigns. 

The workshop will also feature practical modules on using open-source tools commonly utilized by cyber researchers in investigations.

Why you should attend

In a world of rapidly changing cyber threats, being able to identify and understand the actors behind complex campaigns is invaluable. Whether you’re working in a blue team (defensive) or red team (offensive) environment, having solid threat intelligence skills will greatly enhance your ability to defend or attack more strategically. 

This course will arm you with the knowledge and practical tools needed to improve your investigations and security posture.

What you will learn

The course will be structured in three parts:

1. Theoretical concepts 

  • Understand the fundamentals of threat intelligence, including the various types of cyber threats and the profiles of different threat actors.
  • Learn how threat actors operate and how threat intelligence can be applied effectively.
  • Discover how Open-Source Intelligence (OSINT) can be integrated into cyber investigations and where to find valuable information for your research.

2. Practical module with open source tools:

  • Explore a range of open-source tools used in threat intelligence to gather and analyze critical data.
  • Hands-on training with tools designed for OSINT, giving you a chance to practice collecting and interpreting information relevant to real-world investigations.
  • Get step-by-step guidance on how to use these tools efficiently and ethically in various investigative scenarios.

3. Case studies

  • Examine real-world case studies to see how threat intelligence has been used successfully to identify and counteract cyber threats.
  • Discuss and analyze these cases, drawing insights into the methodologies used and lessons learned.

Who is it for

This course is ideal for individuals with beginner to intermediate knowledge in cybersecurity who are eager to expand their skills in threat intelligence and cyber investigations. 

Whether you’re a security analyst, a member of a security operations center (SOC), or someone interested in enhancing your understanding of threat intelligence, this workshop provides valuable insights and hands-on experience.

Other information & prerequisites

Participants should have their own laptops, with Kali Linux and internet connection. 

  • Language: ROMANIAN or ENGLISH
  • Duration: 8 hours
  • Minimum students: 8
  • Date: November 25th
  • Venue: To be announced
  • Price:
    • Before October 28th: 210 EURO + vat
    • After October 28th: 250 EURO + vat

About the trainer

DANIEL LEU

Cyber Threat Intelligence | OSINT | APTs Specialist

Daniel is an expert in Cyber Threat Intelligence, focusing on OSINT, APTs (Advanced Persistent Threats), and cybercriminal toolsets. His deep knowledge of tracking and scoping cybercriminal activities enables him to provide actionable intelligence to organizations, helping them defend against sophisticated cyber threats.