TN-905: Cyber Threat Intelligence Analysis

Course Overview:

TechNow has worked worldwide enterprise infrastructures for over 30 years and has developed demos and labs to exemplify the techniques required to demonstrate technologies that effectively support CTI. This course integrates well with our courses TN-575: Open Source Network Security Monitoring and TN-865: Wireshark Network Traffic and Security Analysis .

TechNow develops Cyber Ranges and makes them available for conferences in support of annual meetings for Cyber Threat Response Teams. Developing scenarios and reacting to them appropriately is a big part of the value in understanding the contexts required to comprehend valuable CTI. As with many advanced TechNow security courses, there is a large hands-on ratio. This course helps Cyber Protection Teams (CPT), Defensive Cyber Operations (DCO), and Mission Defense Teams (MDT) to collect, analyze and apply targeted cyber intelligence to defensive operations in order to proactively act on and tune response to attacks by cyber adversaries. CPT, DCO, and MDT can take preemptive action by utilizing CTI, understanding CTI tools, techniques and procedures (TTPs) needed to generate and consume timely and relevant intelligence to improve resilience and prevention.

This course focuses on the collection, classification, and exploitation of knowledge about adversaries and their TTPs. . MDT puts us close the mission and helps define the internal context to be analyzed against the CTI. TechNow pushes the student to truly understand how to think about and use CTI to make a difference.

Attendees to TN-905: Cyber Threat Intelligence Analysis will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Course Duration: 5 days

Course Objectives:

Learn to comprehend and develop complex scenarios
Identify and create intelligence requirements through practices such as threat modeling
Utilize threat modeling to drive intelligence handling and practices
Breakdown tactical, operational, and strategic-level threat intelligence
Generate threat intelligence to detect, respond to, and defeat focused and targeted threats
How to collect adversary information creating better value CTI
How to filter and qualify external sources, mitigating low integrity intelligence
Create Indicators of Compromise (IOCs) in formats such as YARA, OpenIOC, and STIX
Move security maturity past IOCs into understanding and countering the behavioral tradecraft of threats
Breaking down threats mapped against their tradecraft to tweak IOCs
Establish structured analytical techniques to be successful in any security role
Learn and apply structured principles in support of CTI and how to communicate that to any security role.

Course Prerequisites:

Security+, or equivalent experience

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-765: Automating Administration with Windows Powershell

Course Overview:

This course provides students with the fundamental knowledge and skills to use PowerShell for administering and automating administration of Windows servers. This course provides students the skills to identify and build the command they require to perform a specific task. In addition, students learn how to build scripts to accomplish advanced tasks such as automating repetitive tasks and generating reports. This course provides prerequisite skills supporting a broad range of Microsoft products, including Windows Server, Windows Client, Microsoft Azure, and Microsoft 365. In keeping with that goal, this course will not focus on any one of those products, although Windows Server, which is the common platform for all of those products, will serve as the example for the techniques this course teaches.

Attendees to TN-765: Automating Administration with Windows Powershell will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Course Duration: 5 days

Course Objectives:

Describe the functionality of Windows PowerShell and use it to run and find basic commands
Identify and run cmdlets for server administration
Work with Windows PowerShell pipeline
Describe the techniques Windows PowerShell pipeline uses
Use PSProviders and PSDrives to work with other forms of storage
Query system information by using WMI and CIM
Work with variables, arrays, and hash tables
Write basic scripts in Windows PowerShell
Write advanced scripts in Windows PowerShell
Administer remote computers
Use background jobs and scheduled jobs
Use advanced Windows PowerShell techniques

Course Prerequisites:

Experience with Windows networking technologies and implementation.
Experience with Windows Server administration, maintenance, and troubleshooting.

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-345: Python for Penetration Testers

Course Overview:

This Python for Penetration Testing course is designed to give you the skills you need for maintaining or developing Python Penetration Testing tools oriented towards offensive operations. We have a suite of courses and certifications that help understand a problem, this course prepares the student to rapidly develop prototype code to attack or defend against it.

The course concludes with a Capture the Flag event that will test both your ability to apply your new tools and coding skills in a Python Penetration Testing challenge.

This course is not intended to be an Advanced Python course, but to exemplify penetration techniques utilizing Python. The course covers Threading, Sockets, OOP, and third party modules that facilitate the offensive operator’s objective.

This course utilizes the “Violent Python” text book.

Attendees to TN-345: Python for Penetration Testers Class will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 3 Days

Course Objectives:

Python Lanuage Refress
Network Sockets
Exception Handling
Hashes and Cracking Passwords
Threading
- Concepts and Python Implementation
- Queues and Synchronization
- urlparse and httplib to probe URLs
- Crack a password protected zip file
Port Scanner
- Threading a Port Scanner
nmap integration
Deploying shellcode
Mechanize, BeautifulSoup
- HTTP Form Password Guessing
- HTTP Proxies (Burp Suite)
- HTTP Cookies Session Hijacking
  - CookieMonster
Images and Metadata
Justniffer
SQL Injection
- sqlmap
- SQLBrute
Antivirus and IDS evasion
- PyInstaller
- Metasploit
Scapy
- Deploy shellcode
- DNS Cache Poisoning
- Packety Violence

Prerequisites:

Python Programming Skills or P-325: Python Programming

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-5305: Supporting and Troubleshooting Windows 11

Course Overview:

This five-day instructor-led course provides IT professionals with the knowledge and skills required to Support and Troubleshoot Windows 11 PCs and devices in an on-premises Windows Server Active Directory domain environment.

Attendees to TN-5320: Supporting and Troubleshooting Windows 11 will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

Describe the processes involved in planning and using a troubleshooting methodology for Windows 11
Troubleshoot startup issues and operating system services on a Windows 11 PC
Perform system recovery
Resolve issues related to hardware devices and device drivers
Administer Windows 11 devices
Troubleshoot issues related to network connectivity
Configure Windows 11 devices by using Group Policy
Configure and troubleshoot user settings
Configure and troubleshoot resource access
Implement remote connectivity
Deploy and troubleshoot applications
Maintain Windows 11 devices

Prerequisites:

Networking fundamentals, including Transmission Control Protocol /Internet Protocol (TCP/IP), User Datagram Protocol (UDP), and Domain Name System (DNS).
Microsoft Active Directory Domain Services (AD DS) principles.
Understanding of the Public Key Infrastructure (PKI) components.
Windows Server fundamentals.

Comments

Latest comments from students

Liked the class? Then let everyone know!

CT-395: CySA+ Cybersecurity Analyst

Course Overview:

CT-395: CompTIA CySA+ Cybersecurity Analyst is for IT professionals looking to gain IT security analyst skills, and for those following the recommended skills pathway to achieve cybersecurity mastery. It provides a bridge between CompTIA Security+ (CT-325) and CompTIA Advanced Security Practitioner (CASP,CT-425), thus completing a certification path within the CompTIA family of certifications. As attackers have learned to evade traditional signature-based solutions, an analytics-based approach has become extremely important. CySA+ applies behavioral analytics to the IT security market to improve the overall state of security. The CompTIA Cybersecurity Analyst (CySA+) certification verifies that successful candidates have the knowledge and skills required to configure and use threat detection tools, perform data analysis and interpret the results to identify vulnerabilities, threats and risks to an organization, with the end goal of securing and protecting applications and systems within an organization. Let us help you bridge this gap, and leave you prepared for the certification exam (CS0-002).

TechNow is a CompTIA partner uses official CompTIA CySA+ curriculum.

Dates/Locations:

Date/Time	Event
09/08/2025 - 09/12/2025 08:00 -16:00	CT-395: CySA+ Cybersecurity Analyst TechNow, Inc, San Antonio TX
12/01/2025 - 12/05/2025 08:00 -16:00	CT-395: CySA+ Cybersecurity Analyst TechNow, Inc, San Antonio TX

Duration: 5 Days

Course Objectives:

Threat Management
Vulnerability Management
Cyber Incident Response
Security Architecture and Tool Sets

Prerequisites:

While there is no required prerequisite, the CompTIA CySA+ certification is intended to follow CT-325: Security+ or equivalent experience. It is recommended for CompTIA CySA+ candidates to have the following:

3-4 years of hands-on information security or related experience
Network+, Security+, or equivalent knowledge.

Comments

Latest comments from students