GDAT

Wow two blog posts in one month, that’s a first from me :) In May of this year I was fortunate enough to partake in my second SANS training course with some friends from work. We travelled to San Diego, California and I took the Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses course. This course involved quite a few labs that consisted of Windows Active Directory. There was not a lot of Linux or macOS material. However, the kill chain defenses and methods for detecting and preventing threats within your environment were instrumental to any company that utilizes a SOC. It was interesting to learn about how red and blue teams should work together (purple team) within an organization to ensure that detections and defenses are constantly improved. A lot of technical information in this course, but I definitely recommend it to anyone who wants to enhance their detection methods in a Windows Active Directory environment and learn about kill chain defenses that include the Mitre Att&ck framework. I was able to pass the certification for this course which was the GIAC Defending Advanced Threats (GDAT) cert with a higher score than my first GIAC cert test. Woop woop! Feel free to message me with any questions about this certification or course… or really anything :)

On a less technical side, the breweries and downtown life in San Diego was amazing. That was the first time I had ever been brewery hopping in San Diego and we found some excellent ones like Modern Times! It was also my first time getting from place to place on those electric scooters. That was really fun, but I don’t think the drivers liked us hahah.

I’m going to keep trying to blog more and create more content for y’all. Currently working on getting the AWS Security Specialty certification, so stay tuned. Remember to follow me on Twitter or other social media platforms to get updates on new blog posts.

Don’t get stung,

-Security Sting