Level 1: Finding Attack Servers (35 pts)
Level 2: Identifying Threat Actors (50 pts)
Level 3: Sysmon and Splunk Stream (50 pts)
Level 4: Analyzing a Ransomware Attack (180 pts)
Network Security Monitoring Class
Incident Response Class