Aegis finds the sign!
Adaptive Experiential Skill Acquisition for SOC Analysts
I would highly recommend the AEGIS Certification, because it prepares analysts for the biggest trouble of SOC. Working miracles in a limited time under a great pressure. Cyber Struggle seems to be committed for delivering a good user experience yet effective flow. The content was great, the labs was fun and the exam was challenging. If you are willing to take the certificate, you really need to be dedicated on it, focused, highly motivated and also ready to sacrifice from your comfort and sleep time.
AEGIS Program – a dynamic online program specially crafted for SOC Analysts. This immersive platform places you within a realistic corporate network environment, tackling SOC-related tasks that reflect real-world challenges. Utilizing the Scrum framework, AEGIS encourages candidates to hone time management, prioritization, and decision-making skills. But that’s not all – random incidents within the program test your readiness and resilience, simulating the time pressures and stressors inherent in real-world cybersecurity scenarios.
AEGIS is a 25 days real-life simulation like working in a corporate as a SOC Analysts.
Enroll now or Take the test to check that you meet the pre-requisites
AEGIS Certification Coverage
It is possible to break down the AEGIS Certification process into three parts. The first part is security monitoring, threat detection, and incident handling activities going on 7/24. IBM Qradar, ELK, or Splunk are the SIEMs of the CSOC network. It is not like the ordinary capture of the flags or exercises, but it is an almost entire CSOC simulation in a lab. It is possible to properly experiment with most of the MITRE ATT&CK vectors and TTPs in this CSOC lab such as obfuscated commands, pivoting techniques, PowerShell payloads, and many more scenarios that were all very close to what you would see in the real world.
The second part is studying attack vectors by conducting them in the offensive labs. There are Linux and Windows machines, which together compose an Active Directory environment. Where you can practice AD-specific attack techniques and many more. AEGIS also provides you with test machines where you can observe your own activity from the logs while performing the attacks. You can use these to test and optimize your SIEM rules.
The third part is the improvement of soft skills. Basically, during the certification process, you have a student portal. And this portal is like a project management system of a corporation. Throughout the whole training, a storyline is followed in order to gamify your training process. In this storyline, you are recruited as a security analyst for a corporation with high-security demands. You have weekly tasks, backlogs, daily standups, weekly retrospectives, weekly sprints, and so on. There are also security incidents that you may encounter at any time. You are asked to detect, analyze, and report them in a timely manner. Unless they are not false positives of course.
we appreciate technology, but we believe in people – we appreciate technology, but we believe in people – we appreciate technology, but we believe in people – we appreciate technology, but we believe in people –we appreciate technology, but we believe in people – we appreciate technology, but we believe in people – we appreciate technology, but we believe in people – we appreciate technology, but we believe in people –
Sample day of an AEGIS
A day of the AEGIS participant is similar to the one of a hard-working analyst in a heavily targeted cybersecurity operation center.
The participant starts the day with DRot (Daily Routine) by evaluating the previous day and planning the new one. Yesterday’s challenges, problems, tasks, feelings, solutions, decisions he or she made, and everything are included in this evaluation and planning activity.
The task management system examines the backlog of assigned tasks… Necessary prioritization should be made. The participant begins to work on the tasks. Since every task has a due date, prioritization, planning, and decision-making dynamics are crucial.
While the participant is dealing with routine tasks, as in real life, the participant will also be responsible for (e.g.) hunting unknown threats, analyzing malware, optimizing SIEM rules and writing new correlations, evaluating false-positives, and reviewing the IoCs.
In addition, sudden and random incidents can occur: AEGIS’s own command control engine can simulate real-life threats and perform both internal and external attacks including APT scenarios. When these attacks occur, the participant stops all daily routines and focuses on root cause analysis, impact analysis, and incident management.
Those tasks, incidents, and periodic activity transitions, combined with improving technical knowledge, give participants real skills in high adaptivity, decision-making under intense pressure, planning, and time management and greatly improves their resilience.
- Write basic scripts to aid in the SOC process
- Identify and eliminate false positives
- Identify common post-exploitation techniques and lateral movements
- Making correlations and writing rules based on MITRE vectors
- Make correlation between offensive techniques and investigations/detections
- Perform root cause, malware, network traffic, memory analysis
- Getting decent know-how about MITRE framework
- Show better performance under pressure
- Doing better prioritization, time management and decision making
Absolutely! If you have an EDU email, you can claim your 20% discount.
So much! During the program and during the exam. Assume reporting as your product, again, just like real life. You will write reports, briefs, and notes for almost everything.
Yes! It is totally online. You will use our S46 Simulation environment where you will manage your tasks, labs, incidents, vigilance practices, threat hunting reports and so on.
No, AEGIS our very first program that you can attend without prior course or certification
Basic scripting, knowledge about fundamental networking and common services, SIEM, Qradar or any other solution knowledge would be big plus. Additionally, basic linux and windows operating system is required. We strongly recommend you to take “Am I Ready for Aegis” test to check your status.
No! There is no instructor. Instead, some mentors and our AI-backed profiling engine are checking your submissions and giving feedback with comments on your submissions if necessary.
No! Basically, we believe in simulation, not industrial revolution-minded training. You will use S46 software, where you manage all the processes. S46 also has a task management system. Just like real life, and as if you are working in a company, you will get tasks. You are free to use any resource to finish the tasks on time. Like real life!
You will have 25 days in total consisting of 5 sprints. Every sprint has 5 days. The labs are open for 24/7 during the program. So, you are free to make your time management, task prioritization, decision making, and so on, just like real life.
After 25 days of the program, you will have 2 days of examination.
Absolutely not! The program is intensive. However, it is designed in a way that anyone who puts effort, suffers, and puts discipline in place can succeed with reasonable pain. Yes, pain! we believe in its teaching capability 🙂
So, make your own prioritization, decision-making, and time management, put enough discipline, accept the pain and that’s it!
One exam attempt. However, you can purchase additional exam attempts.