This is undoubtedly the best teaching video on SOC/Cyber Security analyst. It was well detailed and so practical that beginners could understand the scope and the workings of a SOC analyst. Well done 👍.
FINALLY! Thanks man I had an idea of what a soc analyst did, but this completely clarifies it! I’ve been searching for a video like this for WEEKS! Almost as if the algorithm was hiding this from me.
After a year of traversing between instructors and courses, this is hands-down, the most streamlined, easy to understand instruction I've found. No distracting music, simple slides... Well done ~ thanks so much for giving back to the community in this way.
I hope you gain every single subscriber you deserve. I have been doing research on soc analyst position for 6 months, NOT 1 youtuber goes in depth on this like you just did! Wow!!
I am in the field for more than two years, randomly landed on your profile loved it!!!! So much good stuff still trying to figure out why this channel is so underrated. Hope you get more publicity in upcoming days!!! Keep up the good work! Looking forward to new learning video.
Totally underrated channel!! How do you not have 1M subscribers??? I hope you blow up this year! This channel is so on point. No fluff, no bs - just straight knowledge and industry relevant content.
Great job bro! The course was very detailed and beginner friendly. I am studying Cybersecurity and Information Assurance at WGU and your course content is pretty much the same as what we are being taught in college.
your all videos are very helpful , its have very informative things in it , as i am a Linux system admin and i also learn and study about cyber security from the different platform , the way you explain is very simple and good manner
Bro - This video was awesome/amazing. A+. Am going through some interviews now and this definitely helps. Looking forward to your labs, etc. will add myself to wait list!
I’m excited to watch this tomorrow. How do you manage two jobs at once? - edit - This was incredibly well done! You have a knack for teaching in a practical way.
Great question, not going to lie its not easy. Thankfully my 2nd job is not THAT bad so the workload is manageable but it sucks when I have an active incident on going.
This is pure gold!!!! I just passed my Cysa+ exam today and this walkthrough is much needed to gain some hands on experience. Question, Let's Defend or Cyber Defenders?
Thanks and congratulations!!! Regarding LetsDefend vs CyberDefenders, I personally like CyberDefenders more but it all boils down to what you can afford. (Assuming you are talking about the paid courses) - Both will offer you with a lot of hands on skills. Hope that helps!
Loved this video, cant wait for the new SOC course. when is it out please :)? oh, and fantastic channel. Its nice to see someone talk about SOC training, skills and the job from somebody who as actually done it
In your description, the last word in the 4th line should read "are". Great content, well made and informative. Thanks Also, some of your scenes are blank, so the examples aren't clear.
Appreciate it and thank you for watching! Thanks for catching that error in my description, I just fixed it. Could you also provide me with an example about the scenes being blank? I would like to fix that as well.
@@MyDFIR Thanks for posting. This is the exact content Ive been looking for. Im an embedded sys security researcher and know NOTHING about enterprise security. Your videos have been awesome.
Hi, thank you so much for this video. during the final installation of the security onion, I got this error " could not resolve host sigs.security.net" how do I go about trouble shooting that.
Hey, when I am going through the Security Onion Setup, it says: "This machine currently has 1 NIC, but needs 2 to meet minimum requirements. Select OK to exit setup and reconfigure the machine." But, when I was setting up the VM in virtualbox, I followed all the instructions exactly as you mentioned (except for RAM and storage). There wasn't any option in the virtualbox setup to select the number of NICs. IDK why I got this error. Confusing. This error showed up after the step @30:34. Please help
I am! You take the fundamentals and most important subjects and make them simple. You are clearly putting a lot of time, effort, and love into making MyDFIR a success. Keep up the great work, us newbies are lucky to have someone like you 🤟
Thank you for the video and all you are offering. I come from a Non-technical background and recently completed a SOC certification. I am preparing for my 1st SOC interview. Could you please advise on how to prepare regarding Real Time Scenario interview questions, since I have no hands on experience!! Thank you!!
Thank you for this! I'm having an issue installing the virtualbox on my laptop. It's telling me to install Microsoft visual c++ 2019 redistributable package, which i have but its still saying the same thing everytime i try to install the virtualbox
Once you go to the redistribution site,scroll and there's table,choose the right one for you,64 or 32 bits.then run and install it. Then try running virtual box.
If say anything is “possible” but is it likely? Prob not but if forensics is what you want to do, I would think about what kind of forensics you want to get into and learn as much as possible.
Thanks! I am assuming you are talking about setting up Security Onion and for that, you can set the network to NAT and it should grab the IP and gateway automatically.
Hey man really nice work and insight. I’m completely new to CS. Is there anything I can check out as a pre req to this video to have a better comprehension of this material. Thanks again
Thank you! Absolutely, there is a free course that ISC2 offers called Certified Cybersecurity. This is a great place to start. I’ve also created a video on where to start in Cybersecurity as well. www.isc2.org/certifications/cc Video: th-cam.com/video/CAsuJaNg1xE/w-d-xo.html Hope that helps!
Hey, thanks for the valuable content! Can we set up the SecurityOnion environment shown in the above video in virtual box on Macs with Apple silicon? Will it run without any issues (because it's not Intel based Mac)? Thanks in advance!
I don't believe you can spin this up using Apple silicon unfortunately. If you would like to gain some hands on experience, you can think about using the cloud as an alternative.
Not specifically this but I have a video on how I spin up a VM in the cloud. You can do something similar. @15:16 SOC Automation Project (Home Lab) | Part 2 th-cam.com/video/YxpUx0czgx4/w-d-xo.html
in the SO setup i get a message the says "the machine currently has 1 NIC but needs 2 to meet minimum requirements. and it tell me to exit setup to reconfigure the machine.
Hello, during the installation I kept getting the error "The IP being routed by Linux is not the IP address assigned to the management interface (enp0s3). This is not a supported configuration, please remediate and rerun. " I tried a lot of things but can't manage to solve this problem
I loved this video!! I did run into an issue with the Security Onion in the VM...when I run the VM, it tells me I need at least 99 GB of storage. That seems almost impossible. Is there something I am doing wrong since the 16 GB was not enough?
You may need to adjust the disk space to meet the requirement. I dont think you are doing anything wrong, just Security Onion does require more resources as it comes with a bunch of tools built in.
Great, Thank you! I've just graduated and I will start my first job as SOC Analyst L1 in couple days and I only know the basics of using Linux.... am I in trouble ?
It’s going to be rough but as long as you keep learning and ask questions, you should be OK. Up to you but I would dedicate some time after work for self studying and complete hands on labs to level up my skills. This should translate to your job making you a better analyst.
Try re-downloading it, due to Security Onion being a large file, it has a risk of corruption during downloads which can alter the hash. I've seen this happen a couple of times.
Hmmm It appears its all compiled under archive but if you don’t want to download GBs of pcaps, you can use any other pcap as the concept still applies. Let me know if you have any questions!
What mini computer do you recommend to get to run efficiently security onion? I gotk 16 base memory it can t run security onion. I am using : Beelink Mini PC AMD Ryzen 7 5800H,Mini Desktop Computers 32GB DDR4/500GB M.2
@@diegomed3364I thought you have 32 GB RAM or I am misinterpreting your comment. From their documentation "In a standalone deployment, the manager components and the sensor components all run on a single box, therefore, your hardware requirements will reflect that. You’ll need at minimum 16GB RAM, 4 CPU cores, and 200GB storage. At the bare minimum of 16GB RAM, you will need swap space to avoid issues. We recommend a minimum of 24GB of RAM if you plan on monitoring traffic. The more traffic you plan on monitoring this RAM requirement will also increase."
Hey, this time it says: “This machine currently has 14 GB memory, but needs 16 GB to meet minimum requirements. Select YES to continue anyway, or select NO to cancel.” I selected YES and then this showed up: “This install type will fail with less than 16 GB of memory. Exiting setup.” I assigned the maximum amount of memory I could (my laptop has only 16 GB of RAM). And I assigned 4 processor cores. How do I solve this? Please help.
What have you tried so far? Have you tried researching how to solve this? You might need to select a different security onion option if you do not meet the minimum requirements.
I googled it but couldn't find anything useful. By "different security onion option" do you mean a different version of security onion? An older version? @@MyDFIR
@@MyDFIR I googled it but couldn't find anything useful. By "different security onion option" do you mean a different version of security onion? An older version? (Actually, I replied to your comment 3 days ago, soon after your reply but IDK why it isn't visible now. Hence, replying again.)
@@pankajg9348 Take a look at the documentation: docs.securityonion.net/en/2.4/hardware.html#cpu-architecture - I mean different as in try using Eval rather than standalone. If that fails, you can always try spinning this up in the cloud using free credits!
Hey @MyDFIR, Does SOC Analyst should know the MITRE ATT&CK Framework or what because I talked many SOC analysts and they are not aware about it and whether it is for them or not? So can you make a video on it so as SOC analysts what all things they needs to know from MITRE ATT&CK Framework?
YES. They should know the MITRE ATT&CK. This is what I am talking about, many analysts unfortunately are not aware of many things thus providing clients with 0 value in their escalations and it is NOT their fault. You don’t know what you don’t know. I am trying to shift this and train new or existing soc analysts to get to that next level. Don’t become those analysts who just copy and paste and hope for the best. I’ve created a video on MITRE here: th-cam.com/video/b37r3d_LnvM/w-d-xo.htmlfeature=shared
I downloaded the latest SecurityOnion 2.4.30-20231219. I use Oracle VirtualBox for installation and I choose Standalone version, almost all minimum requirements are met (16GB Ram, 4 Cores, 200GB HDD and only one NIC, unfortunately it wont let me continue because I have only one NIC. Any solutions?
Awesome work! For once a detail video implementing the work flow of a SOC analyst.
Thank you very much!
Damn!! This is a min of $2500 Soc course and 4 days in less than 1h video ❤❤
Haha thanks for watching! Hopefully you've learned something new 😀
This is undoubtedly the best teaching video on SOC/Cyber Security analyst. It was well detailed and so practical that beginners could understand the scope and the workings of a SOC analyst. Well done 👍.
Thank you!! I appreciate that ❤️
FINALLY!
Thanks man I had an idea of what a soc analyst did, but this completely clarifies it!
I’ve been searching for a video like this for WEEKS! Almost as if the algorithm was hiding this from me.
Glad you liked it!
After a year of traversing between instructors and courses, this is hands-down, the most streamlined, easy to understand instruction I've found.
No distracting music, simple slides...
Well done ~ thanks so much for giving back to the community in this way.
Thank you! That means a lot ❤️
I hope you gain every single subscriber you deserve. I have been doing research on soc analyst position for 6 months, NOT 1 youtuber goes in depth on this like you just did! Wow!!
That makes me super happy to hear, thank you ❤️
I am in the field for more than two years, randomly landed on your profile loved it!!!! So much good stuff still trying to figure out why this channel is so underrated. Hope you get more publicity in upcoming days!!! Keep up the good work! Looking forward to new learning video.
Awesome! Thank you!! ❤️
Totally underrated channel!! How do you not have 1M subscribers??? I hope you blow up this year! This channel is so on point. No fluff, no bs - just straight knowledge and industry relevant content.
Thank you! ❤️ 1M would be crazy haha
Best video on cyber security I’ve seen so far, thank you!!
Wow, thank you!
Great job bro! The course was very detailed and beginner friendly. I am studying Cybersecurity and Information Assurance at WGU and your course content is pretty much the same as what we are being taught in college.
Oh wow, I am happy to hear that 😁 thank you for watching! I am here if you ever have any questions.
Thanks!@@MyDFIR
You are great sir , super motive for every cyber enthusiastic love you
Thank you!
I am to cybersecurity and I am seeking a job as a SOC analyst, this video is a big help! Thanks
Glad it was helpful!
@@MyDFIR any tips on how to land my 1st job
This is by far the best channel that I have come across. Thank you Sir, what an amazing channel. You are destined for greatness.
Wow, thank you!
The content here is top notch, grateful for this knowledge transfer. The course can't come soon enough-I'm eager to get started!
Great to hear! Thanks for watching ❤️
Great video with remarkable explanations.
Many thanks! This was my first time doing something like this so I am happy it all worked out haha
This guy is GOATED 💯
Haha thanks ❤️
your all videos are very helpful , its have very informative things in it , as i am a Linux system admin and i also learn and study about cyber security from the different platform , the way you explain is very simple and good manner
You are most welcome! Thanks for watching ❤️
Bro - This video was awesome/amazing. A+. Am going through some interviews now and this definitely helps. Looking forward to your labs, etc. will add myself to wait list!
Glad it was helpful! The full course will be 10x better than this 😃
@@MyDFIR can't wait. Do you have a timeline on when it will be released?
@@hobgoblin4614 My goal is before May. I really want this to be something special
This is awesome bro! the best i've seen so far and it will help us "aspiring to work in cybersecurity"❤
Happy to hear that!
Course sounds like it'll be great. Can't wait!
Very good presentation and love from India ❤
Thank you ❤️
I’m excited to watch this tomorrow. How do you manage two jobs at once?
- edit - This was incredibly well done! You have a knack for teaching in a practical way.
Great question, not going to lie its not easy. Thankfully my 2nd job is not THAT bad so the workload is manageable but it sucks when I have an active incident on going.
This is pure gold!!!! I just passed my Cysa+ exam today and this walkthrough is much needed to gain some hands on experience. Question, Let's Defend or Cyber Defenders?
Thanks and congratulations!!! Regarding LetsDefend vs CyberDefenders, I personally like CyberDefenders more but it all boils down to what you can afford. (Assuming you are talking about the paid courses) - Both will offer you with a lot of hands on skills.
Hope that helps!
@@MyDFIR Thanks Steven! Your content is amazing. Keep blessing us with your knowledge! 🫡
Awesome video!! Thanks for the lab 👏🏻👏🏻👏🏻🔥🔥
Any time! Hopefully you learned something new!
Dude. You are awesome. I hope you win it all in life.
Thank you ❤️
I like to see more videos. Very clear demonstration thank u
Thank you!
Thanks for this amazing course.
You're very welcome! Hope you learned a lot ❤️
Loved this video, cant wait for the new SOC course. when is it out please :)? oh, and fantastic channel.
Its nice to see someone talk about SOC training, skills and the job from somebody who as actually done it
Working hard on it, expect to release it by May at the latest. Could be earlier!
Wow! Thanks for the quality content. You are straight up legit!
Thank you! Much appreciated
This is absolutely fantastic. Thank you
You're very welcome!
i am learning a lot from you
keep up the good work
Glad to hear that! Thank you ❤️
Thank you ,very usefull chanel you operate on this platform. Best of luck, you will grow big soon here😀
Thanks a lot 😊
thank you for being so apt with your videos. you've got one sub😁
Trying to make a jump right now from MSP to Network Technician to SOC. Hopefully your courses can help.
I hope so too! Let me know if you have questions 👍
@@MyDFIR No questions. Appreciate you reaching out. I am on the waitlist fyi.
Amazing Work!!!!! Keep the good work
Thank you! ❤️
thank you so much we really appreciate big ❤
It's my pleasure
Very Informative 👌 moreover Paloalto does not offer WAF Services
Just found you!! This is phenomenal content. Refreshing. Need to collaborate with Dr. Gerry Auger. Cheers 🍻
Awesome! Thank you! Gerry is awesome, I’ve recommended folks over to his channel for GRC advice since that is not really my specialty 😅
Thats what doctor ordered, thx a lot
Haha thanks for watching!
Great video. Thank you 🙏
Glad it was helpful!
Fantastic work and a Big than you.
Thank you! Cheers!
In your description, the last word in the 4th line should read "are".
Great content, well made and informative. Thanks
Also, some of your scenes are blank, so the examples aren't clear.
Appreciate it and thank you for watching!
Thanks for catching that error in my description, I just fixed it. Could you also provide me with an example about the scenes being blank? I would like to fix that as well.
Great video! Eagerly waiting for full course 👍
Thanks! ❤️
This is just great. thanks Steven
Thanks for watching ❤️
Fella your are doing the Lord's work.
Thanks for watching!
everyday fire you are on fire very great video
Thanks 🔥
This is GREAT!
Thanks for watching! ❤️
@@MyDFIR Thanks for posting. This is the exact content Ive been looking for. Im an embedded sys security researcher and know NOTHING about enterprise security. Your videos have been awesome.
Hi, thank you so much for this video.
during the final installation of the security onion, I got this error " could not resolve host sigs.security.net" how do I go about trouble shooting that.
Great video
Thanks!
This is awesome work...
Thanks a lot 😊
Hey, when I am going through the Security Onion Setup, it says:
"This machine currently has 1 NIC, but needs 2 to meet minimum requirements. Select OK to exit setup and reconfigure the machine."
But, when I was setting up the VM in virtualbox, I followed all the instructions exactly as you mentioned (except for RAM and storage). There wasn't any option in the virtualbox setup to select the number of NICs. IDK why I got this error. Confusing. This error showed up after the step @30:34.
Please help
You will be required to add an additional NIC - wiki.dave.eu/index.php/VirtualBox_Network_Configuration
@@MyDFIR Got it. Thanks!
Thank you this is very informative.
You are very welcome. Thanks for watching ❤️
Looking forward to digging into this. Keep up the great work man!
Hope you enjoy it!
I am! You take the fundamentals and most important subjects and make them simple. You are clearly putting a lot of time, effort, and love into making MyDFIR a success. Keep up the great work, us newbies are lucky to have someone like you 🤟
Really great work.
Thanks a lot!
Tomorrow is my first day as soc analyst intern
Awesome! Have fun and learn lots
Hey.how was it? Congratulations ❤
This is awesome. 🎉🎉
Thanks! Hopefully you learned something new ❤️
@MyDFIR sure. I learnt a lot. I graduated this year with a degree in cybersecurity, and the information you shared helped a lot.
Keep up the good work!
Thanks, will do!
Thank you for the video and all you are offering. I come from a Non-technical background and recently completed a SOC certification. I am preparing for my 1st SOC interview. Could you please advise on how to prepare regarding Real Time Scenario interview questions, since I have no hands on experience!! Thank you!!
Congratulations on getting that interview! take a look at this video to help you prepare.
th-cam.com/video/E3Un5a-BPbc/w-d-xo.html
@@MyDFIR Thank you :)
🔥🔥🔥
thanks a lot ! nice contents.
Glad you like them!
Thank you for this! I'm having an issue installing the virtualbox on my laptop. It's telling me to install Microsoft visual c++ 2019 redistributable package, which i have but its still saying the same thing everytime i try to install the virtualbox
Once you go to the redistribution site,scroll and there's table,choose the right one for you,64 or 32 bits.then run and install it. Then try running virtual box.
Great content
Thanks for watching ❤️
Hi Steven, can someone who is trying to get into the filed focus on forensic as their first job?
If say anything is “possible” but is it likely? Prob not but if forensics is what you want to do, I would think about what kind of forensics you want to get into and learn as much as possible.
@@MyDFIR for now, i want to get good @ window forensic before focusing on linux .
Thank you so much, it helps alot.
Glad to hear that! Thank you ❤️
Great course! I ran into trouble with the ip address and gateway, do I use my own?
Thanks! I am assuming you are talking about setting up Security Onion and for that, you can set the network to NAT and it should grab the IP and gateway automatically.
@@MyDFIR I used hyper V and set it to external but it didn't grab it, I'll try it again later. Thank you!
MyDFIR, please can you make a detailed video with demo on True positive, false positive in EDR? Thanks
Great suggestion! I’ll add it to the list.
Bravo ❤
Thanks for watching ❤️
I am new to cybersecurity and am unsure where to start. I would greatly appreciate any advice you can offer.
Take a look at some of my newer videos as this will provide you with some guidance on where to start
Hey man really nice work and insight. I’m completely new to CS. Is there anything I can check out as a pre req to this video to have a better comprehension of this material. Thanks again
Thank you! Absolutely, there is a free course that ISC2 offers called Certified Cybersecurity. This is a great place to start. I’ve also created a video on where to start in Cybersecurity as well.
www.isc2.org/certifications/cc
Video: th-cam.com/video/CAsuJaNg1xE/w-d-xo.html
Hope that helps!
@@MyDFIR thank you 🙏 🙏
Hey, thanks for the valuable content!
Can we set up the SecurityOnion environment shown in the above video in virtual box on Macs with Apple silicon?
Will it run without any issues (because it's not Intel based Mac)?
Thanks in advance!
I don't believe you can spin this up using Apple silicon unfortunately. If you would like to gain some hands on experience, you can think about using the cloud as an alternative.
@@MyDFIR Thanks for the quick response! Do you have any tutorial on how to use the cloud for this purpose?
Not specifically this but I have a video on how I spin up a VM in the cloud. You can do something similar.
@15:16
SOC Automation Project (Home Lab) | Part 2
th-cam.com/video/YxpUx0czgx4/w-d-xo.html
Got it. Thanks!@@MyDFIR
❤❤❤❤❤❤
in the SO setup i get a message the says "the machine currently has 1 NIC but needs 2 to meet minimum requirements. and it tell me to exit setup to reconfigure the machine.
On your VM try adding another NIC to it and restart the setup
@@MyDFIR ok that worked then i got an error message saying currently the this machinee had 10. GB memenry but needs 16 to meet requirements
@MyDFIR i dont have the option to put more memory it limits me to 10. Is this from the host? cuz this has 16. im confused as to what is happening
Hello, during the installation I kept getting the error "The IP being routed by Linux is not the IP address assigned to the management interface (enp0s3).
This is not a supported configuration, please remediate and rerun. " I tried a lot of things but can't manage to solve this problem
Please take a look here: github.com/Security-Onion-Solutions/securityonion/discussions/2441
I loved this video!! I did run into an issue with the Security Onion in the VM...when I run the VM, it tells me I need at least 99 GB of storage. That seems almost impossible. Is there something I am doing wrong since the 16 GB was not enough?
You may need to adjust the disk space to meet the requirement. I dont think you are doing anything wrong, just Security Onion does require more resources as it comes with a bunch of tools built in.
Great, Thank you!
I've just graduated and I will start my first job as SOC Analyst L1 in couple days and I only know the basics of using Linux.... am I in trouble ?
It’s going to be rough but as long as you keep learning and ask questions, you should be OK. Up to you but I would dedicate some time after work for self studying and complete hands on labs to level up my skills. This should translate to your job making you a better analyst.
Go straight to security + or network?
Depending on your networking skills, if its lacking id go for network first.
bro THANK YOU!
No problem!!
Hey my verification brought up different SHA256, it seems it was tampered with. What should I do?
Try re-downloading it, due to Security Onion being a large file, it has a risk of corruption during downloads which can alter the hash. I've seen this happen a couple of times.
how sad, the sample pcap is not available anymore...
Hmmm It appears its all compiled under archive but if you don’t want to download GBs of pcaps, you can use any other pcap as the concept still applies. Let me know if you have any questions!
Legend!
Thanks 🤗
Great video. I would just add SOC analysts should learn how to use modern EDRs.
Absolutely! 💯
Wow! This is an in-depth video. I’ve got a lot to learn. Thank you for this Sir 🫡
Glad you enjoyed it!
What mini computer do you recommend to get to run efficiently security onion? I gotk 16 base memory it can t run security onion. I am using : Beelink Mini PC AMD Ryzen 7 5800H,Mini Desktop Computers 32GB DDR4/500GB M.2
Odd, that should be enough to run Security Onion for a lab - Is it giving you errors? If so, what is it saying?
@@MyDFIR it said no enough memory. You need 16GB of memory.
@@diegomed3364I thought you have 32 GB RAM or I am misinterpreting your comment. From their documentation "In a standalone deployment, the manager components and the sensor components all run on a single box, therefore, your hardware requirements will reflect that. You’ll need at minimum 16GB RAM, 4 CPU cores, and 200GB storage. At the bare minimum of 16GB RAM, you will need swap space to avoid issues. We recommend a minimum of 24GB of RAM if you plan on monitoring traffic. The more traffic you plan on monitoring this RAM requirement will also increase."
@@MyDFIR it worked!!! I just had to update my and change RAM to 64
standalone installation in onionsecurity requires 16gb memory but i have only 8, stuck here help me out
You can use the other options (import/eval) or spin it up in the cloud
Where can we master and practice soc skills? Like hack the box which will be good?
You can create labs in the cloud if you don't have devices and by using other different tools
This right here! But any simulated training is good - I personally use cyberdefenders & blue team level one.
@@MyDFIR thank you
Hey, this time it says:
“This machine currently has 14 GB memory, but needs 16 GB to meet minimum requirements.
Select YES to continue anyway, or select NO to cancel.”
I selected YES and then this showed up:
“This install type will fail with less than 16 GB of memory.
Exiting setup.”
I assigned the maximum amount of memory I could (my laptop has only 16 GB of RAM). And I assigned 4 processor cores.
How do I solve this? Please help.
What have you tried so far? Have you tried researching how to solve this? You might need to select a different security onion option if you do not meet the minimum requirements.
I googled it but couldn't find anything useful. By "different security onion option" do you mean a different version of security onion? An older version? @@MyDFIR
@@MyDFIR I googled it but couldn't find anything useful. By "different security onion option" do you mean a different version of security onion? An older version? (Actually, I replied to your comment 3 days ago, soon after your reply but IDK why it isn't visible now. Hence, replying again.)
@@pankajg9348 Take a look at the documentation: docs.securityonion.net/en/2.4/hardware.html#cpu-architecture - I mean different as in try using Eval rather than standalone. If that fails, you can always try spinning this up in the cloud using free credits!
Oh! Got it. Thanks!@@MyDFIR
Thanks so much for this, but i'm getting an error loading my VM. Can you help? it keeps saying aborted.
Strange, have you moved the VM by any chance? If anything, try a clean install.
Hey @MyDFIR,
Does SOC Analyst should know the MITRE ATT&CK Framework or what because I talked many SOC analysts and they are not aware about it and whether it is for them or not?
So can you make a video on it so as SOC analysts what all things they needs to know from MITRE ATT&CK Framework?
YES. They should know the MITRE ATT&CK. This is what I am talking about, many analysts unfortunately are not aware of many things thus providing clients with 0 value in their escalations and it is NOT their fault. You don’t know what you don’t know.
I am trying to shift this and train new or existing soc analysts to get to that next level. Don’t become those analysts who just copy and paste and hope for the best.
I’ve created a video on MITRE here: th-cam.com/video/b37r3d_LnvM/w-d-xo.htmlfeature=shared
@@MyDFIR Thanks for reply here. Appreciate that
how can i get this presentation
Unfortunately I don’t have this up for download
I downloaded the latest SecurityOnion 2.4.30-20231219. I use Oracle VirtualBox for installation and I choose Standalone version, almost all minimum requirements are met (16GB Ram, 4 Cores, 200GB HDD and only one NIC, unfortunately it wont let me continue because I have only one NIC. Any solutions?
you can simply add a logical NIC card and that should satisfy the requirement
@@MyDFIR I got it sorted but installation didn't work.
damn its pretty good content !
Thank you ❤️
@@MyDFIR you’re welcome bro 🙂
Hi Sir, how can I sign up for your free Mentorship Program 🙏🏽🙏🏽
You can sign up via my site however there is a backlog currently
Do you offer trainings
Coming soon! But for now you can check out my products that I’ve created and the free videos on my channel ❤️
Is it too late to get into cybersec at age 30?
Not at all, you can definitely get in 🙌 Do expect to take 1.5-2 years though depending on your experience. (More towards the 2 year mark)
Doesnt allow me use 8GB for Memory
Interesting, what does the error say?
I dont know if soc analyst will suit me
It definitely is not for everyone and can be pretty stressful.
How can i contact you?
Via DM on socials or email if you sign up on my site.
Do you have a paid Version on Udemy ?
Great question - I do not, is there anything specific you might be looking for?
You used to be a bucket?
??? Now that you mention bucket, kinda feel like some KFC bucket... 🤤