PR100-2 Intrusion Detection

Cyber Defense Analyst

PR100-2 Intrusion Detection is part of the PR100 – Cyber Defense Analyst series.

PR100-2 Intrusion Detection evaluates an individual’s ability to monitor events that occurred on a computer network and to review and interpret captured traffic for signs of incidents that could be considered an imminent threat or violation of security policies, standard security practices, or acceptable use policies.

OS/Tools used: Security Onion / Wireshark, Snort.