learning SIEM tool

azi90azi90 Member Posts: 59 ■■■□□□□□□□
Is there a good tutorial or a way to learn some of the popular SIEM tools? i know real world experience is much more valuable but to get the foot in the door any way i can atleast get the basics


  • E Double UE Double U Member Posts: 1,767 ■■■■■■■■■□
    Not aware of a good book/tutorial, but maybe you can try to play with some open-source SIEM tools like OSSEC, Splunk, or Elk. I would imagine they come with some good documentation. 

    Good luck!
    Alphabet soup: CISSP, CCSP, CISM, CISA, GDSA, GPEN, GCIA, GCIH, GCCC, CEH, Azure Fundamentals, Azure Security Engineer Associate, ITIL 4 Foundation, and more.

    2020 goals: AZ-900, AZ-500, GDSA, ITILv4

    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
  • bigdogzbigdogz Member Posts: 861 ■■■■■■■■□□
    Although most  SIEM products do the same thing each SIEM tool has a different GUI interface and learning curve. Try the free stuff and move from there.
Sign In or Register to comment.