Overview
Analyst Goal: LogRhythm SIEM Familiarization
Description: The LogRhythm SIEM tool is large and complex. It takes some familiarization to become acquainted with the system. The purpose of the first lab is to gain a basic understanding of what the Web Console is, what is in it, and what it is used for. Reviewing the LogRhythm Analyst Fundamentals book, chapters 2 through 4 will greatly increase your chances of success with this and subsequent labs.
Task: Explore the Web Console, log data, alarms, searches, reports, and create cases.