A student needs to meet the following prequisites in order to fully benefit from the course:

  • A minimum of 12 months experience in networking technology
  • Sound knowledge of TCP/IP
  • Knowledge of Microsoft packages
  • Basic Knowledge of Linux is essential

Course outcome

Graduates of the mile2 Certified Incident Handling Engineer training obtain real world security knowledge that enables them  to:

  • recognize vulnerabilities
  • exploit system weaknesses
  • help safeguard against threats

This course covers the same objectives as the SANS® Security 504 training and prepares students for the GCIH® and CIHE certifications.

Who should attend

This course was designed for the benefit of the following organization roles:

  • Penetration Testers
  • Microsoft Administrators
  • Security Administrators
  • Active Directory Administrators
  • Anyone looking to learn more about security


  1. C)IHE Online Video
  2. C)IHE Electronic Book (Workbook/Lab guide)
  3. C)IHE Exam Prep Questions
  4. C)IHE Exam
  5. 2 weeks Cyber Range access  (request login from Mile2 when it suits you)

Course outline

  • Module 0:  Course Introduction
  • Module 1:  Incident Handling uitgelegd
  • Module 2: Threats, Vulnerabilities en Exploits
  • Module 3: Preparation
  • Module 4: First Response
  • Module 5: Containment
  • Module 6: Eradication
  • Module 7: Recovery
  • Module 8: Follow-Up
  • Module 9: Computer Security Incident Response Team
  • Module 10: Log File Analysis
  • Module 11: Malware, Rootkits, Botnets
  • Module 12: Artifact Analysis

Lab Outline

  • Lab 1: Tools Introduction
  • Lab 2: Cyber Attacks – Networking
  • Lab 3: Cyber Attacks – Web Application
  • Lab 4: Cyber Attacks – Viruses
  • Lab 5: Ticketing System
  • Lab 6: SysInternals Suite
  • Lab 7: Creating and Managing a CSIRT Action Plan
  • Lab 8: Log Analysis
  • Lab 9: Exploits and DoS
  • Lab 10: Stuxnet Trojan: Memory Analysis using Volatility
  • Lab 11: Find the Hack(s)

Short description

This course teaches techniques and best practices for preventing, handling and responding to attacks.

Expanded description

The Certified Incident Handling Engineer, C)IHE, is a vendor-neutral certification. The course is designed to help Incident Handlers, System Administrators, and any General Security Engineers understand how to plan, create and utilize their systems in order to prevent, detect and respond to attacks. In this in-depth training, students will learn step-by-step approaches used by hackers globally, the latest attack vectors and how to safeguard against them, Incident Handling procedures (including developing the process from start to finish and establishing your Incident Handling team), strategies for each type of attack, recovering from attacks and much more. Furthermore, students will enjoy numerous hands-on laboratory exercises that focus on topics, such as reconnaissance, vulnerability assessments using Nessus, network sniffing, web application manipulation, malware and using Netcat plus several additional scenarios for both Windows and Linux systems.

 875,00 (excl. BTW)
Offerte aanvragen