-
This advanced course is carried out directly by VMware.
Please Note:The acquisition of Broadcom has optimized the VMware course portfolio for the revised go-to-market strategy. In future, the focus will be on the VMware Cloud Foundation (VCF) portfolio. All courses that do not belong to this portfolio will be transferred to "End of Availability" (EOA) status on March 1, 2024. This means that this course will only be available until March.
-
This one-day course teaches you how to use the VMware Carbon Black® Cloud Audit and Remediation™ product to build queries for IT hygiene, incident response, and vulnerability assessment to support your organization’s security posture and policies. This course provides an in-depth, technical understanding of the product through comprehensive coursework and hands-on scenario-based labs.
-
Course Contents
-
- Course Introduction
- Data Flows and Communication
- Query Basics
- Recommended Queries
- SQL Basics
- Filtering Results
- Basic SQL Queries
- Advanced Search Capabilities
- Response Capabilities
You will receive the original course documentation from VMware as an e-book.
-
Target Group
-
System administrators and security operations personnel, including analysts and managers
-
Knowledge Prerequisites
-
This course requires completion of the following course:
• VMware Carbon Black Cloud Fundamentals
| 1 Course Introduction |
| • Introductions and course logistics |
| • Course objectives |
| 2 Data Flows and Communication |
| • Hardware and software requirements |
| • Architecture |
| • Data flows |
| 3 Query Basics |
| • osquery |
| • Available tables |
| • Query scope |
| • Running versus scheduling |
| 4 Recommended Queries |
| • Use cases |
| • Inspecting the SQL query |
| 5 SQL Basics |
| • Components |
| • Tables |
| • Select statements |
| • Where clause |
| • Creating basic queries |
| 6 Filtering Results |
| • Where clause |
| • Exporting and filtering |
| 7 Basic SQL Queries |
| • Query creation |
| • Running queries |
| • Viewing results |
| 8 Advanced Search Capabilities |
| • Advanced SQL options |
| • Threat hunting |
| 9 Response Capabilities |
| • Using live response |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
Request for customized courses
You can find the complete description of this course with dates and prices ready for download at as PDF.-
This advanced course is carried out directly by VMware.
Please Note:The acquisition of Broadcom has optimized the VMware course portfolio for the revised go-to-market strategy. In future, the focus will be on the VMware Cloud Foundation (VCF) portfolio. All courses that do not belong to this portfolio will be transferred to "End of Availability" (EOA) status on March 1, 2024. This means that this course will only be available until March.
-
This one-day course teaches you how to use the VMware Carbon Black® Cloud Audit and Remediation™ product to build queries for IT hygiene, incident response, and vulnerability assessment to support your organization’s security posture and policies. This course provides an in-depth, technical understanding of the product through comprehensive coursework and hands-on scenario-based labs.
-
Course Contents
-
- Course Introduction
- Data Flows and Communication
- Query Basics
- Recommended Queries
- SQL Basics
- Filtering Results
- Basic SQL Queries
- Advanced Search Capabilities
- Response Capabilities
You will receive the original course documentation from VMware as an e-book.
-
Target Group
-
System administrators and security operations personnel, including analysts and managers
-
Knowledge Prerequisites
-
This course requires completion of the following course:
• VMware Carbon Black Cloud Fundamentals
| 1 Course Introduction |
| • Introductions and course logistics |
| • Course objectives |
| 2 Data Flows and Communication |
| • Hardware and software requirements |
| • Architecture |
| • Data flows |
| 3 Query Basics |
| • osquery |
| • Available tables |
| • Query scope |
| • Running versus scheduling |
| 4 Recommended Queries |
| • Use cases |
| • Inspecting the SQL query |
| 5 SQL Basics |
| • Components |
| • Tables |
| • Select statements |
| • Where clause |
| • Creating basic queries |
| 6 Filtering Results |
| • Where clause |
| • Exporting and filtering |
| 7 Basic SQL Queries |
| • Query creation |
| • Running queries |
| • Viewing results |
| 8 Advanced Search Capabilities |
| • Advanced SQL options |
| • Threat hunting |
| 9 Response Capabilities |
| • Using live response |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
Request for customized courses
You can find the complete description of this course with dates and prices ready for download at as PDF.