Training

Training for real security operations

Courses built to help analysts and teams develop operational fundamentals they can apply immediately.

Foundations of Security Operations

On-demand · Live · 16 hours · Antisyphon Training

On-demand · Live

Take yourself from the ground floor of "What is a SOC" to "How to detect and investigate a multi-stage attack." Build a fully functioning SOC of your own, learn SIEM and ticketing fundamentals, and write custom detections.

View Course

SOC Detection Engineering Crash Course

Workshop · Antisyphon Training

Workshop

Build a live detection engineering lab from scratch, ingest real logs, and research adversary techniques mapped to MITRE ATT&CK. Validate rules by executing live attacks using Atomic Red Team.

View Workshop

Private team workshops

Custom session · private delivery

On request

Operator-led workshops built around your team's environment. Cover detection engineering, SOC operations, analyst habits, or investigation fundamentals — scoped to what your team actually needs.

Request a workshop

Training philosophy

• Teach the operational fundamentals analysts need first, then show how those fundamentals hold up under real pressure.
• Use plain language, concrete examples, and practical context instead of jargon, hype, or checklist-driven busywork.
• Help students leave with better judgment, clearer workflows, and tools they can use in real environments.

About the instructor →