# Threat Hunting # Some Tasks - Traffic analysis of logs - Threat intel and news - Reporting - Remediation - Configuration and it infrastructure fortification # SOC Tools - SIEMs - EDR - Firewall - DNS Filtering - Alerting Platforms - Threat Intel platofrns - Vuln mgmt - DFIR # Common skills - Data analysis and pivoting with data - Pivoting on tool results or on SIEM results