IntermediateNetwork Security12h of content · 2 guided labsAudio:ES750 XP

Network Security Intermediate

Advanced network analysis: encrypted traffic inspection, threat hunting, and custom IDS rule engineering with Suricata and Zeek.

200+ students·4.9/5 rating·High completion rate

14-day money-back guarantee · No subscription · Lifetime access

Preview the student experience

No login · Free interactive demo

Try demo →
HTKWhat's included
  • Access to all course videos and materials
  • Unlimited guided lab access with auto-validated flags
  • HTK Certificate upon completion
  • Lifetime course access with future updates
  • Flexible, self-paced learning schedule
  • 30-day satisfaction guarantee
159

One-time payment, no subscription

Join Waitlist →

2

⬡ 2 guided lab

Isolated VM environment

12h

Of content

Videos + practice + exams

4

Modules

Progressive difficulty

2–4h

Per lab session

Unlimited restarts

Lab tools you will use

WiresharkNetworkNmapScannerSuricataIDS/IPSZeekNetworktcpdumpCaptureSnortIDS/IPSOpenVASScannerMetasploitExploitationWiresharkNetworkNmapScannerSuricataIDS/IPSZeekNetworktcpdumpCaptureSnortIDS/IPSOpenVASScannerMetasploitExploitation
Burp SuiteProxyNessusScannerSecurity OnionMonitoringWazuhSIEMntopngMonitoringNetworkMinerForensicsOSSECHIDSArgusFlow analysisBurp SuiteProxyNessusScannerSecurity OnionMonitoringWazuhSIEMntopngMonitoringNetworkMinerForensicsOSSECHIDSArgusFlow analysis

Before you start — quick answers

Course Syllabus

4 course syllabus · 12h of content

What you will learn

  • Inspect encrypted traffic with JA3/JA3S fingerprinting and TLS metadata analysis
  • Detect DNS tunneling, covert channels, and lateral movement (SMB, RDP, WMI)
  • Engineer advanced Suricata rules (flowbits, thresholds, lua) and tune detection performance
  • Write custom Zeek scripts and analyzers, and extract files from network captures
  • Deliver a comprehensive incident report with kill-chain mapping and detection-engineering recommendations

Hands-on Lab

Analyze complex network incidents involving encrypted C2 channels, DNS tunneling, and lateral movement. Write advanced Suricata rules, perform Zeek scripting, and produce comprehensive incident reports with attack timelines.

2⬡ 2 guided lab
2–4hSession window
UnlimitedRestarts
AutoFlag validation
Experience a lab preview →

Requirements

  • ·Modern web browser
  • ·Stable internet connection
  • ·No local installation required
  • ·Basic technical English recommended

Frequently Asked Questions

Complete answers about this course, labs, certificates, and refunds

Start from the beginning?

Network Security Beginner

Not ready for intermediate yet? Network Security Beginner covers the foundational skills and guided labs you need before tackling the advanced material.

10h of content1 guided lab119
View Beginner Course →
Ready to level up?

Build real Network Security skills

Get hands-on with real Network Security scenarios, professional-grade tools, and validated flag objectives. No prior experience needed.

From159or 199 € for the complete path
One-time payment, no recurring chargesLifetime access, course updates included14-day money-back guarantee