30 Bird - Using a SIEM (CYSA)


For this exercise, you should have the entire virtual network operational; however, it can consume a considerable amount of host RAM. If your host cannot run all VMs simultaneously, attempt the exercise with Kali Linux turned off.

If you want to use the Open Threat Exchange feature, you must sign up for a free OTX account at https://otx.alienvault.com/. If you do, copy your API key for use in the exercise.