Cybersecurity Home Lab (Python, Pandas, PowerShell) - THE SOC SCHOOL

THE SOC SCHOOL

Cybersecurity Home Lab (Python, Pandas, PowerShell)

Academy Award–winning director James Cameron teaches you the tricks of the trade and shares his approach to epic moviemaking on any budget.

Science & Technology

Current Status

Price

Free

Get Started

Log In to Enroll

About this Course

This hands-on course teaches students how to build and operate a personal cybersecurity lab from scratch using Python, Pandas, and PowerShell. Learners will simulate real-world threat scenarios, collect and analyze security telemetry, and automate detection workflows. Through guided exercises, you’ll learn to parse Sysmon logs, query APIs like Wazuh, and transform raw data into actionable insights using data science techniques. By the end, you’ll be able to build and script your own detection pipelines, perform incident simulations safely, and analyze threats with Python-based automation.

Course Content

Lesson Content

0% Complete 0/5 Steps

Course introduction

Modern Cybersecurity

Affordable PCs for Home Lab

What Cybersecurity Tools are Used in this Course

Lesson Content

0% Complete 0/16 Steps

Install Virtual Box and Ubuntu OS

(PDF Guide): Install Virtual Box and Ubuntu OS

Install Windows 11 (Victim System)

(PDF Guide): Install Windows 11 (Victim System)

Modifying Windows 11 System (Copy and Paste)

(PDF Guide): Modifying Windows 11 System (Copy and Paste)

Wazuh(SIEM) Installation

(PDF Guide): Wazuh Installation Steps

How to change Wazuh Password

(PDF Guide): Reset Wazuh Password

Installing the Wazuh Agent, Sysmon (Sysmonitor)

(PDF Guide): Wazuh Agent, Sysmon Install

Modify Wazuh Agent Configuration File

(PDF Guide): Modify Wazuh Agent Config File

Running commands on Windows 11 System to Trigger Alerts in Wazuh

(PDF Guide): Running commands on Windows 11 System to Trigger Alerts in Wazuh

Lesson Content

0% Complete 0/16 Steps

Installing Anaconda Python and VS Code

(PDF Guide): Installing Anaconda Python and VS Code

Using the Wazuh API

(PDF Guide): Using the Wazuh API

Viewing Wazuh Alerts in VS Code

(PDF Guide): Viewing Wazuh Alerts in VS Code

Modifying script with ChatGPT

(PDF Guide): Modifying script with ChatGPT

Pandas Introduction

(PDF Guide): Pandas Introduction

Integrating Pandas into Python Script

(PDF Guide): Integrating Pandas into Python Script

Filter on Rule Level

(PDF Guide): Filter on Rule Level

Filter on strings

(PDF Guide): Filter on Strings

Lesson Content

0% Complete 0/14 Steps

Introduction to DLLs

(PDF Guide): Introduction to DLLs

(PDF Guide): Introduction to DLLs (2)

Finding DLLs in file explorer

(PDF Guide): Finding DLLs in file explorer

Introduction to Run_DLL_32

Malicious DLLs Context

(PDF Guide) Malicious DLL Context

Creating Sysmon rule in Wazuh

(PDF Guide): Creating Sysmon rule in Wazuh

Trigger RUN_DLL_32 activity

(PDF Guide): Trigger RUN_DLL_32 activity

Analyzing rundll32 and filter

(PDF Guide): Analyzing rundll32 and filter

Lesson Content

0% Complete 0/9 Steps

Windows registry Crash Course create reg key

(PDF Guide): Windows registry Crash Course create reg key

Create reg with powershell

Registry modification Procedure Examples

(PDF Guide): Registry modification Procedure Examples

Reverting the changes made in registry

(PDF Guide): reverting the changes made in registry

Analyze registry activities

(PDF Guide): Analyze registry activities

Lesson Content

0% Complete 0/14 Steps

Intro to PowerShell

(PDF Guide): Intro to PowerShell

(PDF Guide): NetTCP

PowerShell Get Cmdlet

(PDF Guide): PowerShell Get Cmdlet

PowerShell Get File hash

(PDF Guide): PowerShell Get File hash

Powershell Data Collection

(PDF Guide): Powershell Data Collection

PowerShell Script Download a file

(PDF Guide): PowerShell Script Download a file

Powershell Encoded Script

(PDF Guide): Powershell Encoded Script

Lesson Content

0% Complete 0/3 Steps

Encoded Scripts Malicious Intent

Filter encoded scripts for malicious intent

(PDF Guide): Encoded Commands Malicious Intent + Filter encoded commands for malicious intent