CREST Registered Intrusion Analyst

3 Day Course
Hands On
Official Curriculum
Code QACRIA

This course is been superseded by CREST Practitioner Intrusion Analyst

Modules

Collapse all

Day 1 (10 topics)

  • CRIA - Course Introduction and review of main syllabus areas from CPIA
  • A4-Record Keeping-Interim Reporting and Final Results
  • D5-Beaconing
  • Exercises for B3-Common Classes of Tools
  • Exercise for B9-File System Permissions
  • Exercise for D1-Network Traffic Capture
  • Exercises for D2-Data Sources and Network Log Sources
  • Exercises for D2 - stretch
  • Exercise for D4-Unusual Protocol Behaviour
  • Exercise for D11-Internal spread and privilege escalation

Day 2 (9 topics)

  • Review of day 1
  • Exercises for E4-Windows File Structures
  • Exercises for E6-Windows Registry Essentials
  • Exercises for E6 - stretch
  • Exercise for E9-Memory Analysis
  • Exercises for E10-Infection vectors
  • Exercises for E10 - stretch
  • Lab 1 scenario
  • Lab 1 scenario - stretch

Day 3 (7 topics)

  • Review of day 2
  • Lab 2 scenario
  • Lab 2 scenario - stretch
  • Lab 3 scenario
  • Lab 3 scenario - stretch
  • Knowledge Check
  • Exam preparation

Prerequisites

A pass at CPIA level is a pre-requisite for the Registered Intrusion Analyst examination.

Additional Learning

The courses below may help you meet the knowledge level required to take this course.

Course PDF

Print

Sections