SOC & SIEM Trainings
Master open-source security tools on our expert-led courses, and learn from product developers. A Security Operations Center is vital for safeguarding your organization. We've developed comprehensive training programs to help your team fully harness open-source SOC with AI capabilities.
Available Courses
Comprehensive training programs designed to build practical security skills
Wazuh Basics
Master Wazuh fundamentals including architecture (Manager, Agent, Indexer, Dashboard), security modules configuration, and custom rule development. Learn to optimize for efficient processing and reduced alert fatigue.
You'll Learn
- Log Data Analysis from endpoints, firewalls, apps
- File Integrity Monitoring (FIM) configuration
- Vulnerability Detection & CVE scanning
- Security Configuration Assessment (SCA)
You'll Understand
- Basic Rule Engine logic & alert interpretation
- Custom Rule & Decoder Development
- How alerts are generated
- Tailoring Wazuh to your environment
Group discounts available
MCP-Powered SOC Operations
Talk to your security stack with AI! Deploy Model Context Protocol (MCP) servers to query Wazuh, create TheHive cases, and run Cortex analyzers using natural language. No APIs, no scripts—just ask Claude.
Module 1: Foundation
- MCP Architecture
- Wazuh Overview
Module 2: Wazuh MCP
- Install & Configure
- Claude Desktop Setup
- Natural Language Queries
Module 3: TheHive & Cortex MCP
- Install & Configure
- Automated Analyzers
- End-to-End Workflow
Build Your Open Source SOC with Wazuh & MCP
Build and manage a complete Security Operations Center using Wazuh as your core platform. Integrate with MISP for threat intelligence, Cortex for automated analysis, and The Hive for incident response.
7 Modules Covered
Group discounts available