Skip to main content

ESIR104 - Incident Response Step 3 - Containment


CyberWarrior

About This Course

In this course, students will be able to learn about: the containment foundation, data analysis, activity chronology, containment terms, documentation, test preparation and backup copies. Upon completion of the course, the student will be able to understand the importance of data backups and containment assets, will be able to review the alternatives to stop and contain an incident, and will be able to understand the different sources and ways of obtaining evidence.

Requirements

  • Have an OpenVPN connection.
  • Have SSH connection.
  • Have ProxyCP connection.
  • Access to the Ubuntu server machine (CLI).
  • Have a connection to a local browser.
Enroll