Lead series4 notes1h 36m

Guided reading path

SIEM Universe

A foundational series designed to help analysts understand the core concepts of SIEM platforms, focusing on practical usage, log analysis, and real-world investigation workflows using tools like QRadar and Microsoft Sentinel.

This series provides a structured introduction to SIEM from an analyst’s perspective. It covers how modern SIEM platforms collect, normalize, and correlate logs, and how these capabilities are used in daily SOC operations.

Back to archiveStart with step 01

Series at a glance

Sequence size

4

notes in order

Reading time

1h 36m

estimated path length

Start here

SIEM 101 part 1

Step 01

Sequence

Read in order

Step-by-step path

01
SOCGeneralPrimary21 min

Step 01

SIEM 101 part 1

SIEM adalah singkatan dari Security Information and Event Management

Open note
02
SOCGeneral19 min

Step 02

SIEM 101 part 2

SIEM adalah singkatan dari Security Information and Event Management

Open note
03
SOCGeneral31 min

Step 03

Microsoft Sentinel 101

Microsoft Sentinel - AI Generated Content

Open note
04
SOCGeneral25 min

Step 04

Qradar 101

QRadar 101 - AI generated Content

Open note