In this section, you will go through the experience of a SOC analyst. From here onwards, let's imagine that you do not have access to the endpoint, and that you need to investigate what happened.
Watch VMware RICK MCELROY discussing building threat hunting into your security operations - HERE.
1. Let the threat hunting games begin
A few things, you want to keep it handy for the next steps:
- Launch the Carbon Black Cloud Chrome Shortcut on Desktop
- Use the credentials from the ReadMe file located on Desktop
- Make a note of your logged in TestDrive Windows VDI hostname and IP as shown in the next steps.
