Short Course

AI-driven Threat Hunting

Name: AI-driven Threat Hunting
Brand: CodeRed
Rating: 5.0 (1 reviews)

Reinvent your threat hunting capabilities with AI

5.0

from 1+ reviews

5 hr 13 m of video content

Advanced

Validation of Completion Included

Buy this course now

$149.99

Overview What You Will Learn Curriculum Instructor

Course Overview

In today’s security operations environments, massive volumes of logs and telemetry make manual threat detection ineffective. This course focuses on applying modern machine Learning and language models to improve detection engineering and threat hunting. By combining data science techniques with real-world security use cases, learners gain practical skills to identify advanced threats, reduce false positives, and build scalable detection pipelines.

This course begins with data collection and initial log analysis, covering common log sources, formats, and hands-on data handling. It then moves into baseline and anomaly detection, followed by unsupervised clustering to extract patterns and create Sigma rules. You will explore autoencoders for detecting beaconing and command and control activity, and apply threat embeddings using transformer models like MiniLM for contextual log analysis. The course also introduces weak supervision with Snorkel for scalable labeling and classification, followed by LLM-assisted detection engineering with built-in guardrails. Finally, it covers governance, drift tracking, and operational metrics to ensure long-term reliability of deployed detection systems.

By the end of this course, you will design, build, and govern intelligent detection pipelines using machine learning and LLM techniques for modern threat detection and response operations.

What You Will Learn

Collect and analyze logs from Zeek and Windows Event Logs using Elastic and Splunk dashboards.
Apply statistical and machine learning techniques (z-scores, Isolation Forest, One-Class SVM) to detect anomalies in large datasets.
Use clustering methods (DBSCAN, HDBSCAN) to uncover rare events and convert them into practical Sigma detection rules.
Implement autoencoders, Fourier analysis, and sequence modeling to identify beaconing and command-and-control activity.
Leverage threat embeddings to cluster anomalies, group phishing incidents, and reduce false positives.
Build classifiers with weak supervision techniques using Snorkel and labeling functions without manual data annotation.
Enhance detection engineering with LLM-assisted Sigma rule generation and validation, ensuring safe and accurate rules.
Monitor drift, SOC KPIs, and retraining pipelines to sustain effective detection in evolving environments.

Program Curriculum

Lab Setup
Log Sources
Log Formats
Data Collection & Initial Analysis – Hands-on Exercise
Chapter 1 Quiz

Concepts
Baseline & Anomaly Detection – Hands-on Exercise
Chapter 2 Quiz

Applying Clustering
From Cluster Patterns to Sigma Rules
Unsupervised Clustering – Hands-on Exercise
Chapter 3 Quiz

Techniques
Autoencoders for Beaconing & C2 Detection – Hands-on Exercise
Chapter 4 Quiz

From Transformers to MiniLM for Log Analysis
Threat Embeddings for Contextual Linking – Hands-on Exercise
Chapter 5 Quiz

Concepts: Threat Hunting Integration
Build LFs, Label, Classify, & Check
Weak Supervision with Snorkel – Hands-on Exercise
Chapter 6 Quiz

Generate and Validate Queries/Rules with LLMs
Guardrails: Avoiding Drift & Unsafe Rules
LLM-assisted Detection Engineering – Hands-on Exercise
Chapter 7 Quiz

Drift Tracking and Retraining Pipelines
Chapter 8 Quiz

Load more modules

Instructor

Emre Çağlar HOŞGÖR

Emre Caglar has experience in cybersecurity for more than 10 years. Throughout his career, he worked in critical and large networks where encryption is an essential part of the security of networks. He learned cryptography and cryptanalysis by doing and excelled in his knowledge by getting a formal education from the Middle East Technical University. He is a security researcher and experienced security analyst. The author has a master’s degree in CS and is pursuing a Ph.D. in cybersecurity.

Buy this course now

$149.99

Get Immediate access for one year today!

Upgrade to Pro Plans and Get Full Access Today!

Get this course, along with 900+ courses and 70+ learning paths and more in one subscription. Learn more

Unlock All Access

Plans start from $33/mo. Cancel anytime.

Join over 1 Million professionals from the most renowned Companies in the world!

Fastest Way to Level Up Your Cybersecurity Skills

Invest in your future with flexible subscription plans that give you access to the world’s largest online cybersecurity course library. Whether you're exploring cybersecurity courses for beginners or advancing your expertise,
access in-demand courses, practical labs, and CTF challenges designed to support continuous learning.

Monthly Plans

Annual Plans

Save 20% with our annual plans!

Pro

Build your cybersecurity skills with 900+ bite-sized courses and curated learning paths designed for continuous learning.

^$ 69.00

Billed monthly or $599.00 billed annually

Get Started Now

Start your 7-day trial for $1

What is included

880+ Premium Short Courses
70+ Structured Learning Paths
Validation of Completion with all courses and learning paths
New Courses added every month

Early Access Offer

Pro +

Develop real-world cybersecurity skills through hands-on labs and CTF challenges designed for practical learning.

^$ 79.00

Billed monthly or $699.00 billed annually

Get Started Now

Start your 7-day trial for $1

Everything in Pro, Plus:

1600+ Hands-on lab exercises with guided instructions
150+ CTF Challenges with detailed walkthroughs
New Hands-on Labs and Challenges added every month

Related Courses

Short Course

Bootstrap 4 Quick Website Bootstrap Components Course

Software Development

Explore the basics of Bootstrap and learn to create a website in 4 easy steps

Explore the basics of Bootstrap and learn to create a website...

$49.99

Beginner

1 hr 30 m

Hello
Short Course

CCNA - Understanding Routers and Switches

Security Architecture and Operations

A comprehensive guide to understanding the in-depth functioning of routers and switches for the preparation of CCNA Exam.

A comprehensive guide to understanding the in-depth functioni...

$49.99

Intermediate

2 hr 0 m

Hello
Short Course

The Complete Full-Stack JavaScript Course

Software Development

Learn full-stack web development using JavaScript (ReactJS, NodeJS, LoopbackJS, Redux and Material-UI)!

Learn full-stack web development using JavaScript (ReactJS, N...

$79.99

Beginner

24 hr 17 m

Hello
Short Course

React.JS for Ecommerce: Building a Store with React.JS

DevSecOps

From React.js Fundamentals to Crafting an Online Storefront

From React.js Fundamentals to Crafting an Online Storefront

$49.99

Advanced

3 hr 30 m

Hello
Short Course

CISSP Certification Domains 5, 6, 7, and 8 Video Training

Cybersecurity

This course is ideal for individuals who desire to pass the Information Systems Security Professional CISSP Certification Exam and want to gain more insight and knowledge around IT, Information, and Cyber Security from a management/senior leader perspective.

This course is ideal for individuals who desire to pass the I...

$69.99

Intermediate

6 hr 30 m

Hello
Short Course

Helm 3 - Package Manager for Kubernetes

Software Development

A must tool for every DevOps engineer

A must tool for every DevOps engineer

$49.99

Intermediate

1 hr 27 m

Hello
Short Course

Learn Ethical Hacking by Hacking Real Websites Legally

Vulnerability Assessment and Pentesting

Fun way to learn ethical hacking by playing online hacking games - hacking real websites legally

Fun way to learn ethical hacking by playing online hacking ga...

$69.99

Beginner

4 hr 18 m

Hello
Short Course

Mastering Ansible Playbooks: Debugging and Security

Software Development

Securing and Automating Linux and Windows Systems with Advanced Ansible Playbooks

Securing and Automating Linux and Windows Systems with Advanc...

$99.99

Advanced

5 hr 34 m

Hello