Perched offers commercial support, education, custom development, and enterprise deployment of the RockNSM and CAPES platforms

Our Services

Education

We provide a variety of education services designed to get your team up and running quickly, so they can start catching bad guys.

Development

We like to think that ROCK and CAPES are pretty great out of the box, but we are here to help tailor it to your needs.

Consulting

Developing a successful Intelligence driven Security program is no small feat. Leverage our team's experience to develop a program that meets your needs.

Support

Deploying sensors at scale doesn't always go as planned. We're here to help when you need us.

Our Partners

Our Newest Partner

We look forward to starting the process of making ROCK a certified Red Hat ready solution.



Our First Partner

We are grateful that Elastic has agreed to partner with us during the founding days of our startup. Elastic is a core element of many large-scale NSM ecosystems and a leader in data search and analytics platform technologies.

Education Tracks

Foundations

This is the jumping off point for all other tracks and is the basis for all other specialized education.

Analyst

If you love collecting data and using it to tell a story, this is probably the track for you.


Operator

Operators love catching bad guys and are experts at figuring out where they are hiding in the data.

Engineer

Engineers are the wrench turners that deploy security sensors and keep them running in the heat of the battle.

Click on the course titles below to learn more about each course
Intelligence in a Cyber World

As intelligence professionals transition from domain to domain, the topics, terminology, and entities change; but the core analytical thought processes that make an analyst an indispensable member of a kinetic warfare team are just as relevant and necessary in Cyber as in any other domain.


Duration: 1 Day

Syllabus

  • Introduction to Cyber Intelligence - Yes, You Are Relevant
  • Building an Intelligence Program
  • Communicating
  • Lexicon
  • Strategic/Operational/Tactical Intelligence

Prerequisites

There are no prerequisites for this course.

Intelligence Pipelines, Modeling, and Application

While a great deal of intelligence work is subjective in nature, our ability as professionals to represent subjective analysis in an objective way is crucial to providing relevant, repeatable, and controlled information to decision makers.


Duration: 4 Hours

Syllabus

  • The Intelligence Pipeline (w/ lab)
  • Threat Modeling (w/ lab)
  • Applying Threat Modeling (w/ lab)
  • Working with Hunt, Incident Responders, and Security Monitoring Professionals

Prerequisites

Intelligence in a Cyber World (or an understanding of how Intelligence is used in Cyber).

Intelligence Tool Sets

A great analyst makes the tool, not the other way around; but it's important to remember that of all the great things that human beings can do, scaling isn't one of them. Let's take a look at the tools we can use as professionals to automate, enrich, and integrate our capabilities with other Cyber teams.


Duration: 4 Hours

Syllabus

  • Threat Intelligence Platforms (w/ lab)
  • Node Link Analysis (w/ lab)
  • Indicator Enrichment (w/ lab)
  • Leveraging CAPES For Enrichment (w/ lab)

Prerequisites

Intelligence in a Cyber World and Intelligence Pipelines, Modeling, and Application (or an understanding of how Intelligence is used in Cyber).

Follow-On Courses

CAPES For Operators

Intelligence Research & Analysis

When it comes to tracking an adversary campaign, there is a lot of information that can be gathered from public sources about the enemy, their tools, and their resources. This course will familiarize analysts with how to use these public sources to enrich the data being provided by their operators.


Duration: 1 Day

Syllabus

  • Incident Response Process - Overview
  • Passive vs. Interactive Open Source Analysis
  • When To Analyze
  • Public Information Sources (w/ lab)
  • Exploit Databases (w/ lab)

Prerequisites

Intelligence in a Cyber World, Intelligence Pipelines, Modeling, and Application, and Intelligence Tools (or an understanding of how Intelligence is used in Cyber).

Follow-On Courses

CAPES For Operators

Kibana for Analysts

This course builds on the Kibana education from the Foundations track and teaches analysts how to use Kibana to support them in their analysis.


Duration: 2 Days

Syllabus

  • Why Visualize Data?
  • Setting Up Kibana (w/ lab)
  • Kibana Orientation (w/ lab)
  • Basic Search Parameters (w/ lab)
  • Advanced Search Parameters (w/ lab)
  • Basic Visualizations (w/ lab)
  • Advanced Visualizations (w/ lab)
  • Filters vs. Visualizations (w/ lab)
  • Building Dashboards (w/ lab)
  • Using Kibana To Hunt
  • Using Elastic's X-Pack Graph for Analysis (w/ lab)
  • Using Elastic's X-Pack Machine Learning for Analysis (w/ lab)

Prerequisites

There are no prerequisites for this course.

Follow-On Courses

Kibana For Operators

Contact Us

Contact us and we'll get back to you as soon as we can.
inquiries@perched.io