Threat Hunting with Google

Instructor-led training course


At a glance

The Threat Hunting with Google workshop covers the fundamentals of each of the MITRE top ten techniques and top five sub-techniques identified by Mandiant in the annual M-Trends report. The workshop is focused on hands-on exploration of artifact examples and methods for detection, reinforcing learner's practical application of the most used techniques by attackers across MITRE tactics.

Learners are invited into the ThreatSpace range for the practical application of finding artifacts associated with the techniques to uncover threat actor activity. Throughout the course, learners will gain hands-on experience hunting for threat actor activity and will be able to apply these skills in their daily operations. ThreatSpace is an engaging state-of-the-art cyber range using Google Cloud Security tools and a virtualized enterprise within Google Cloud for detecting and responding to threat actor activities. In this delivery, security professionals access a virtual environment that emulates real-world IT infrastructure, including network segments, workstations, servers, and applications. This environment enables the practice of responding to cyber threats in a controlled environment without incurring actual consequences.

Course goals

The workshop has the following objectives:

  • Define the top MITRE ATT&CK Techniques
  • Determine the appropriate artifacts to threat hunt for each technique
  • Perform threat hunting across the top techniques in each tactic
  • Detect attacker tactics, techniques, and procedures (TTPs) within Google Security Operations
  • Define potential false positives associated with techniques


Who this course helps

The workshop is intended for any information security professional responsible for security operations, incident response, or threat hunting within their organization. The workshop is designed for an audience at the beginner to intermediate level in their professional growth.

How it works

Delivery methods

In-classroom or virtual instructor-led training

Duration

16 hours

What to bring

A laptop with the latest Chrome browser.


Students will receive electronic versions of all relevant course materials.

Request your copy of the M-Trends 2025 report here.


Take the next step

Contact Mandiant Academy to learn more and schedule your course today.

Google Cloud
send_spark
    DocsSupport
    Console
    Sign in
    • Accelerate your digital transformation
    • Whether your business is early in its journey or well on its way to digital transformation, Google Cloud can help solve your toughest challenges.
    • Google Cloud products
    • Browse over 100 products. New customers get $300 in free credits to run, test, and deploy workloads. All customers can use 25+ products for free, up to monthly usage limits.
    • Save money with our transparent approach to pricing
    • Google Cloud's pay-as-you-go pricing offers automatic savings based on monthly usage and discounted rates for prepaid resources. Contact us today to get a quote.
    Google Cloud