learning SIEM tool

azi90azi90 Member Posts: 58 ■■■□□□□□□□
Is there a good tutorial or a way to learn some of the popular SIEM tools? i know real world experience is much more valuable but to get the foot in the door any way i can atleast get the basics

Comments

  • E Double UE Double U Member Posts: 1,635 ■■■■■■■■□□
    Not aware of a good book/tutorial, but maybe you can try to play with some open-source SIEM tools like OSSEC, Splunk, or Elk. I would imagine they come with some good documentation. 

    Good luck!
    Alphabet soup: CISSP, CCSP, CISM, CISA, GDSA, GPEN, GCIA, GCIH, GCCC, CEH, Azure Fundamentals, etc

    2020 goals: AZ-900, AZ-500, GDSA

    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
  • bigdogzbigdogz Member Posts: 847 ■■■■■■■□□□
    Although most  SIEM products do the same thing each SIEM tool has a different GUI interface and learning curve. Try the free stuff and move from there.
Sign In or Register to comment.