Log File Analysis with Python
Manual log analysis can become a time consuming task. This course will teach you how to automate log file analysis with Python.
What you'll learn
Manual log analysis can become a laborious task and is also prone to errors. In this course, Log file analysis with Python, you’ll learn how to automate the analysis of log files using Python. First, you’ll explore how to parse log files. Next, you’ll discover log data analysis. Finally, you’ll learn how to integrate with other solutions to submit enriched data. When you’re finished with this course, you’ll have the skills and knowledge of Log file analysis needed to automate log analysis.
Table of contents
- Introduction 4m
- Opportunities and Pitfalls of Analysing Logs with Python 2m
- Setting up Your Development Environment 3m
- Reading Log File in Python 7m
- Parsing Log Data 7m
- Leveraging Regular Expressions to Extract Individual Fields 4m
- Demo: Parse SMB Log Data with Regular Expressions 8m
- Working with Windows Log Files 3m
- Demo: Detecting Malicious Activity based on Windows Event Logs 10m
- Summary 1m
- Introduction 1m
- Enriching Logs with GeoIP Data 7m
- C2 Beacon Detection 4m
- Demo: Detect Beaconing Based on Log Correlation 6m
- Understanding Frequency Analysis 3m
- Demo: Performing Frequency and Similarity Analysis on DNS Traffic 10m
- Working with Timestamps 3m
- Demo: Plotting Log Data Based on Timeline Analysis 10m
- Summary 1m
About the author
Cristian took part in auditing and implementation of infosec capabilities to uplift security posture. He managed codification efforts to extract indicators of compromise and created rules in the scope of defending against new emerging threats. He has also developed tools and scripts to overcome security gaps within the corporate network. Cristian has mentored L1 and L2 analysts to increase triage efficiency and combat new threats. He has experience in the field of Application Security and has pr... more