1.1. Welcome and introduction
1.2. Install Belkasoft X
1.3. Download the course data
1.4. Create a new case
1.5. Add a data source
1.6. Learn to use mini-timeline, global, and local filters
2.1. Importance of system file analysis (video)
2.2. BelkaQUIZ (1)
2.3. Forensic artifacts in Windows system files
2.4. Forensic analysis of LNK files
2.5. LNK file analysis in Belkasoft X
2.6. BelkaQUIZ (2)
3.1. Introduction. What are YARA rules?
3.2. Introduction to YARA rules (video)
3.3. Anatomy of a YARA rule (by Thomas Roccia)
3.4. How to create a YARA rule: identifiers, strings, conditions
3.5. BelkaQUIZ (3)
3.6. How to use regular expressions. Working with hexadecimal strings
3.7. BelkaQUIZ (2)
3.8. How to import and use a YARA rule in Belkasoft X (video)
3.9. How to import and use a YARA rule in Belkasoft X (tutorial)
3.10. BelkaQUIZ (5)
3.11. YARA rule examples
3.12. YARA performance guide
3.13. BelkaQUIZ (2)
4.1. Introduction. What are Sigma rules?
4.2. How to create a Sigma rule. Rule structure and required fields
4.3. BelkaQUIZ (2)
4.4. How to create a Sigma rule. Detection
4.5. Optional fields. General recommendations and common pitfalls
4.6. BelkaQUIZ (1)
4.7. Sigma rule usage examples
4.8. How to import and apply a Sigma rule in Belkasoft X (video)
4.9. How to import and apply a Sigma rule in Belkasoft X (tutorial)
4.10. BelkaQUIZ (4)
4.11. Restrictions of Sigma usage in Belkasoft X
5.1. Cyber Kill Chain
5.2. Cyber Kill Chain in Belkasoft Incident Investigation Model
5.3. BelkaQUIZ (2)
5.4. Incident response artifacts in Belkasoft X
5.5. Incident investigation practical case (video)
5.6. Practical case
5.7. BelkaQUIZ (6)
5.8. Learn more
Final test. For the champions only!
Let's wrap-up!
An absolute gem for anyone involved in digital forensics and incident response (DFIR). The course covered a wide range of topics, including YARA rule creation, efficient log analysis with Sigma, and effective Incident Investigation with Belkasoft ...
Read MoreAn absolute gem for anyone involved in digital forensics and incident response (DFIR). The course covered a wide range of topics, including YARA rule creation, efficient log analysis with Sigma, and effective Incident Investigation with Belkasoft X. The course materials were well-structured, and the explanations were clear and concise, making it easy to follow along. Overall, I highly recommend this course to any DFIR professional looking to maximize their results and stay ahead in the ever-evolving field of digital forensics and incident response.
Read LessOne of the best course for those who have not knowledge in DF, Malware and basic fundamentals of DF. They are doing great for the Forensic Communtiy.
One of the best course for those who have not knowledge in DF, Malware and basic fundamentals of DF. They are doing great for the Forensic Communtiy.
Read LessI had no knowledge of YARA and Sigma rules before the course. Belkasoft comes through again with a trial license for their exceptional software and the course itself was a great refresher on regular expressions and how Yara and Sigma rules can fi...
Read MoreI had no knowledge of YARA and Sigma rules before the course. Belkasoft comes through again with a trial license for their exceptional software and the course itself was a great refresher on regular expressions and how Yara and Sigma rules can filter massive amounts of evidence to get to the proverbial needle in a haystack. I will be spending the next week reviewing the course material and working with Belkasoft. Thanks so much for all that you do for the community.
Read LessDear Sir or Madam. The course was very informative for me as an introduction to the analysis YARA and Sigma. Also the many (further) suggestions to further deal with this matter did not come too short. In my opinion, Belkasoft X has solved the ex...
Read MoreDear Sir or Madam. The course was very informative for me as an introduction to the analysis YARA and Sigma. Also the many (further) suggestions to further deal with this matter did not come too short. In my opinion, Belkasoft X has solved the extensions to this very useful and also very easy to use. Personally, I liked the examples of application and implementation with the data provided for download (images, yara, sigma...) very well and I have also longer dealt with it and experimented. The videos are also very clearly arranged and contain a lot of information. I would like to thank you very much for providing the course, especially since it was also free. Best regards.
Read LessThis course gives a good introduction to Yara and Sigma rules as well as the forensic tool Belkasoft X. I liked the combination of theory and practice, and to be able to try Belkasoft X with test files and a forensic image file.
This course gives a good introduction to Yara and Sigma rules as well as the forensic tool Belkasoft X. I liked the combination of theory and practice, and to be able to try Belkasoft X with test files and a forensic image file.
Read LessA must-have combination for organizations prioritizing cybersecurity and effective incident response.
A must-have combination for organizations prioritizing cybersecurity and effective incident response.
Read LessIf you haven't implemented YARA and Sigma into your investigations you are missing out! It shortens the investigations significantly and broadens your search results to ensure that you don't miss anything. Great course!
If you haven't implemented YARA and Sigma into your investigations you are missing out! It shortens the investigations significantly and broadens your search results to ensure that you don't miss anything. Great course!
Read LessThis an excellent course I must say. After finishing the course, if you still cannot write Yara or Sigma rules, you now at least know how to import Sigma or Yara rules written by community security professionals with your tool.
This an excellent course I must say. After finishing the course, if you still cannot write Yara or Sigma rules, you now at least know how to import Sigma or Yara rules written by community security professionals with your tool.
Read LessTraining materials and course are great.
Training materials and course are great.
Read LessJust like the SQLite course, this was very informative. I enjoyed applying the knowledge to Belkasoft X, but also because it is not focused on a specific app, but teaches the principles. When practicing forensics, one does not have much time f...
Read MoreJust like the SQLite course, this was very informative. I enjoyed applying the knowledge to Belkasoft X, but also because it is not focused on a specific app, but teaches the principles. When practicing forensics, one does not have much time for reading and studying, so having a course in this format makes it easy to expand one's knowledge. Great work!
Read LessCongratulations to the team at Belkasoft for again compiling an excellent course. Applying the YARA, Sigma and Regular Expressions knowledge gained to all DFIR and threat-hunting disciplines combined with the power of Belkasoft X will elevate you...
Read MoreCongratulations to the team at Belkasoft for again compiling an excellent course. Applying the YARA, Sigma and Regular Expressions knowledge gained to all DFIR and threat-hunting disciplines combined with the power of Belkasoft X will elevate you to the next level.
Read Less
The course is designed for those who need to acquire evidence remotely and would like to learn more about all the needed steps, such as configuring a server, deploying an agent, and various ways to acquire data.
$999
The course is designed for those who already have experience in DFIR and would like to level up their knowledge and gain hands-on experience in using Belkasoft products for solving an incident investigation case in the Windows environment.
$999
Grow with Belkasoft
