Course Summary

The GIAC Experienced Incident Handler Certification (GX-IH) further demonstrates a candidate’s superior incident response skills. Mastery of hands-on attacker techniques combined with incident response tools and practices validate that certification holders have the skills and knowledge to take teams to the next level. Incident Handling and Computer Crime Investigation
Computer and Network Hacker Exploits

Command-Line Security and Analysis
The candidate will review a history of commands and determine the purpose of an attacker’s work, use netcat, and analyze Windows Alternate Data Streams for hidden data
In-Depth Attack Analysis
The candidate will perform a multi-part attack or task, centering on both Windows and Linux/Unix-based skills.
Incident Investigation
The candidate will investigate a Linux system, examine a compromised Windows machine, and search through logs or performing live analysis on a computer to identify the scope or nature of an incident.
Infrastructure Analysis
The candidate will perform cloud scanning, vulnerability assessment, and collect information using the DNS protocol
Password Attacks and Analysis
The candidate will perform a password guessing attack and perform analysis on a password attack based on log files or system tools.
Pivoting
The candidate will pivot through a middle point to a target.
Protocol Security and Attacks
The candidate will review vulnerabilities with an expert perspective, including the ability to verify and prioritize vulnerabilities and identify false positives, and perform tasks to identify vulnerabilities and security improvements in services like SMB, FTP/SFTP, SCP.
Reconnaissance
The candidate will run a scan against a local host or network for open ports.
Website Security
The candidate will perform web application and injection attacks against a website

The following are courses or equivalent experiences that are prerequisites for GX-IH: GIAC Certified Incident Handler Certification (GCIH) Exam code SEC504

proctored exam Open book, open notes Time limit 4 hour 25 CyberLive - hands-on, real-world practical testing. CyberLive testing creates a lab environment where cyber practitioners prove their knowledge, understanding, and skill using: Actual programs Actual code Virtual machines

Following your booking, a confirmation message will be sent to all participants, ensuring you're well-informed of your successful enrollment. Calendar placeholders will also be dispatched to assist you in scheduling your commitments around the course. Rest assured, all course materials and access to necessary labs or platforms will be provided no later than one week before the course begins, allowing you ample time to prepare and engage fully with the learning experience ahead.

Our comprehensive training package includes all the necessary materials and resources to facilitate a full learning experience. Enrollees will be provided with detailed course content, encompassing a wide array of topics to ensure a thorough understanding of the subject matter. Additionally, participants will receive a certificate of completion to recognize their dedication and hard work. It's important to note that while the course fee covers all training materials and experiences, the examination fee for certification is not included but can be purchased separately.

Questions About This Course?