Cisco Tetration - Hands-On Lab
Table of Contents
Module00: Diagrams
Module01: Introduction
Module02: Collection Rules
Module03: Agent Installation
Module04: Agent Config
Module05: Annotations
Module06: External Orchestrators
Module07: Scopes
Module08: Ingest Appliance - AWS VPC Flow Logs and ASA NAT Stitching
Module09: Edge Appliance - ISE
Module10: ATT&CK! & Post Attack Forensic Analysis
Module11: Policy Creation - Inventory Filters
Module12: Policy Creation - Hierarchical Policy - Global Services
Module13: Policy Creation - ADM and Clusters - Common Policies
Module14: Policy Creation - ADM and Clusters - NopCommerce
Module15: Policy Creation - ADM and Clusters - OpenCart
Module16: Policy Creation - User-Based Policy
Module17: Policy Analysis - Global Services
Module18: Policy Analysis - Common Policies
Module19: Policy Analysis - NopCommerce
Module20: Policy Analysis - OpenCart
Module21: Policy Enforcement - Pre-Enforcement Checks
Module22: Policy Enforcement - Global Services and Common Policies
Module23: Policy Enforcement - nopCommerce
Module24: Policy Enforcement - OpenCart
Module25: Container Policies and Enforcement
Module26: Security Visibility & Monitoring
Appendix: Legacy Alternative Policy
This lab is provided using the GPL-3.0. You may fork this repo and use it mostly as you like, however you must retain the same GPL license, and you must give credit. This lab was created by Raheel Anwar, Muneeb Ali, Matt Mullen, and Mark Snow with OnStak.