ANT1001

Sandbox&Honeypot

Duration of training: 3 days

start date: Monday, October 6, 2025

sign up for a course

description
course

The material of this course will allow listeners to study the technologies and mechanisms of operation of Sandboxes and Honeypots. The material of the course covers not only theoretical but also methodological aspects of Sandboxes and Honeypots usage: their integration into the overall architecture and processes of corporate cyber security.

course audience

Engineers ensuring cyber security of corporate infrastructure; Engineers designing corporate cyber security infrastructure; Engineers handling cyber security incidents; Analysts working with Threat Intelligence data.

prerequisites

Knowledge of TCP/IP networking at the ANT-N101 course level, knowledge of traffic filtering and network infrastructure security at the ANT0011 and ANT0012 courses level, as well as knowledge of handling cyber security incidents at the ANT0401 course level.

how it works
education

online course

The online course involves group classes with an instructor via video conferencing, in addition, homework and an exam.

for corporate clients

training for corporate clients includes online and self-study courses, as well as additional services required by corporate clients: organizing training plans for client departments, assessing the effectiveness of training, etc.

teacher
course

program
course

• Threat model of corporate infrastructure.
• Designing the mechanisms of cyber security within the frame of overall corporate cyber security architecture.
• 0-day and targeted attacks (ATP).
• Monitoring and responding to cyber security events and incidents.
• Automated analysis of malware.
• Principles of operation and classification of Sandboxes.
• Designing Sandbox as part of corporate security architecture.
• Deploying Sandbox as part of corporate cyber security.
• Analysis and usage of information obtained by Sandbox.
• Operational parameters, metrics and maintenance of Sandboxes.
• Purpose of Honeypots.
• Principles of operation and classification of Honeypots.
• Designing Honeypot as part of corporate security architecture.
• Deploying Honeypot as part of corporate cyber security.
• Analysis and usage of information obtained by Honeypot.
• Operational parameters, metrics and maintenance of Honeypots.
• Responding to cyber security incidents with Sandbox and Honeypot data.
• Modernizing threat model and risk calculations based on new events and incidents.
• Diamond model and TTP [Tactics, Technics, Procedures] information.
• Data generation and exchange of Threat Intelligence.

Сourse purchase
options

individual

Cost — $930.00

Group online classes

Unlimited access to all the materials

Live webinars with teachers

Homework

Exam with certificate

Course dates:

pay for the course

corporate

Cost от $930.00

To obtain information about the final cost and clarify the date of the course, please fill out the form.

SUBMIT YOUR APPLICATION

* By clicking “send”, you agree to the Terms of Service And Privacy Policy