101 Labs - CompTIA CySA+ - Paperback

by Paul W. Browning (Author)

101 Labs - Book Series

Experts agree that we retain only 10% of what we read but 90% of what we do. Perhaps this explains why the global pass rate for most IT exams is a ghastly 40%. This is where the 101 Labs book series can help. We are revolutionizing how IT people train for their exams and the real world with our Learn - By - Doing teaching method.

101 Labs' mission is to turn you into an IT expert by doing instead of reading. Using free software and free trials, our experts take you by the hand and walk you through every aspect of the protocols and technologies you will encounter in your IT career. We share our configuration tips and tricks with you, as well as how to avoid the common mistakes many novice engineers make, which can quickly become career-ending.

101 Labs - CompTIA CySA+

The CompTIA Cybersecurity Analyst (CySA+) engineers are trained to apply behavioral analytics to networks and devices to prevent, detect, and combat cybersecurity threats through continuous security monitoring. This course prepares you for the new CySA+ (CS0-003) exam.

The CySA+ engineers can apply advanced methods to networks to improve the overall state of security by identifying and combating malware and advanced persistent threats (APTs), resulting in enhanced threat visibility across a broad attack surface.

Passing the CySA+ exam will validate an IT professional's ability to proactively defend and continuously improve the security of an organization. The CySA+ credential verifies that the successful candidate has the knowledge and skills required to:

• Leverage intelligence and threat detection techniques
• Analyze and interpret data
• Identify and address vulnerabilities
• Suggest preventative measures
• Effectively respond to and recover from incidents

CompTIA CySA+ meets the ISO 17024 standard and is approved by the U.S. Department of Defense to fulfill Directive 8570.01-M requirements. It is compliant with government regulations under the Federal Information Security Management Act (FISMA). Over 2.3 million CompTIA ISO/ANSI-accredited exams have been delivered since January 1, 2011.
This lab guide covers all the latest topics, including security attacks, threat types, and protocols.

Using free tools and software, you will:

• Perform vulnerability research
• Install and configure Splunk
• Learn exploit verification
• Check subdomain enumeration
• Analyze image files using Autopsy
• View API calls by API Monitor
• Detect malware persistence using RegRipper
• Learn basic usage of ProcMon
• Analyze registry changes using RegShot
• Correct file formats using the hex editor
• Analyze Image Files with Belkasoft Evidence Center X
• Deploy an agent on localhost
• and much more

Follow along with our instructor as he guides you through all the important commands, tools, and utilities you need to know. We share our years of industry experience with you so you really feel prepared not only for the exams but the real world of system security administration.

Please use the free resources at www.101labs.net/resources, which will help you with the labs.

About the Authors

Paul Browning left behind a career in law enforcement in 2000 and started an IT consulting and training company. He's written over 15 best-selling IT books and through his books, classroom courses, and websites he's trained tens of thousands of people from all walks of life.

Ahmed Jalil is a seasoned cybersecurity professional with several years of hands-on experience across various domains, such as forensics,