Official Training Partner

Home Courses TH-200: Foundational Threat Hunting

TH-200: Foundational Threat Hunting

Learn threat hunting basic concepts and skills, including using common tools like CrowdStrike Falcon and Splunk to detect network and endpoint Indicators of Compromise (IoCs) and respond to threats
Earn the OffSec Threat Hunter (OSTH) certification upon passing the exam

4.5

Successfully delivered 49 sessions for over 91 professionals

Certification & Provider Information

Certification

OSTH

Certification Body

Offensive Security

Course Provided By

OffSec

TH-200: Foundational Threat Hunting equips learners with the essential skills and mindset to operate on the defensive side of cybersecurity. In today’s threat landscape, defenders must go beyond reactive security measures. Threat hunting is a proactive practice where security professionals seek out and identify threats before they can cause harm.

This course introduces the core concepts, tools, and methodologies used by enterprise defenders to detect, track, and respond to adversaries within networks and endpoints.

Learners will develop key capabilities, including:

Understanding the threat actor landscape, with a focus on ransomware and Advanced Persistent Threats (APTs)
Utilizing both network and endpoint Indicators of Compromise (IoCs) for proactive threat detection
Highlighting the role of Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS), like Suricata, in monitoring for suspicious activities
Explorations of various ransomware groups, including LockBit, CLOP, and BlackCat/ALPHV, with examples of how they exploit specific vulnerabilities
Recognizing custom threat hunting, focusing on behavioral analysis and data correlation to detect advanced threats, using tools like CrowdStrike Falcon

TH-200 is organized into 7 modules with associated hands-on lab experiences and assessment questions. After completion of the content modules and labs, learners can work on a comprehensive Challenge Lab, which brings all of the skills they have learned in the course together and prepares them for the OSTH exam.

TH-200 is for anyone looking to build a strong foundation in threat hunting, including SOC analysts, IT security specialists, and those aiming to transition into specialized cybersecurity roles. While there are no course prerequisites, it is encouraged that learners have some experience in cybersecurity, a solid foundation in TCP/IP networking, and a familiarity with Linux and Windows operating systems.

Understand foundational concepts and practices of threat hunting

Analyze the threat actor landscape to identify potential risks

Learn to hunt for threats using network data and traffic analysis

Conduct endpoint-based threat hunting to detect malicious activity

Explore advanced hunting techniques without relying on indicators of compromise (IoCs)

Gain hands-on experience with CrowdStrike Falcon and Splunk tools

Create structured threat hunting strategies for enterprise environments

TH-200 is ideal for:

Individuals looking to build a strong foundation in threat hunting
Those aiming to transition into specialized security roles
SOC Analysts
IT Security Specialists

While there are no formal prerequisites, it’s strongly encouraged that you have:

A solid foundation in TCP/IP networking
Familiarity with Linux and Windows operating systems
Basic understanding of cybersecurity concepts

Up to 40 (ISC)² CPE credits.

Course Information

Course Code: OSTH
Duration: Self Paced
Level: Foundation
Language: English
Delivery Mode: E-Learning Self-Paced

Need Help Choosing?

Talk to our course advisor for personalized guidance

Felice.deangelis@proficegroup.it

Course Curriculum

Threat Hunting Concepts and Practices

Learn about the different stages and types of threat hunts that enterprises use through an overview of basic objectives, concepts, and practices

Threat Actor Landscape Overview

Get an overview of various threat actors, with a focus on ransomware groups and Advanced Persistent Threats (APTs), and review in-depth discussions of several well-known actors

Communication and Reporting for Threat Hunters

Discover how threat hunters use the Traffic Light Protocol to receive and use threat intelligence to create reports

Hunting with Network Data

Use Network Indicators of Compromise (IoCs) with IDS/IPS tools like Suricata to monitor for suspicious activity, identify network compromises, and build practical threat-detection skills

Hunting on Endpoints

Hunt for threats with Endpoint IoCs and use intelligence- and hypothesis-based approaches to make your hunts more effective

Threat Hunting with IoCs

Hunt for threats without relying on known IoCs and focus on behavioral analysis and data correlation to detect advanced threats with tools like CrowdStrike Falcon

Course Pricing Options

Choose the package that best fits your learning needs

Slef Paced Learning - 90 Days Access

Access for 90 Days to full on-demand e-learning, labs + exam voucher

Regular Price

€ 1,950.00

Self Paced Learning - 365 Days Access

Access for 365 Days to full ondemand e-learning,labs + exam voucher

Regular Price

€ 3,000.00

Early Bird Discount

Book 30 days in advance for 5% OFF

Group Discounts

10% OFF for >3 participants

Send Course Enquiry

Fill out the form and we will get back to you within 24 hours

Full Name *

Email Address *

Phone Number *

Training Mode *

Company Name (Optional)

Your Message *

Email: felice.deangelis@proficegroup.it

Whatsapp: +39 393 390 9401

Why Choose Profice?

India's Leading Training Partner with Proven Track Record

Official Partner

Authorized Training Partner delivering official curriculum

Expert Instructors

Learn from certified professionals with 10+ years experience

Hands-on Labs

Real-world projects and 24/7 lab environment access

95% Pass Rate

Industry-leading certification exam success rate

Job Assistance

Dedicated placement support with 500+ hiring partners

Lifetime Support

Ongoing mentorship and community access after course

Ready to Transform Your Career?

Join thousands of professionals who have achieved their certification goals with us

Enroll Now

2,500+ Alumni

4.8/5 Rating

NIS2 COMPLIANCE AND NIST2 CYBERSECURITY SPECIALIST

CCSP-Certified Cloud Security Professional

CISSP - Certified Information System Security Professional

ITIL® 4 FOUNDATION

ITIL® 4 LEADER: DIGITAL AND IT STRATEGY - DITS

ITIL® 4 SPECIALIST: ACQUIRING & MANAG. CLOUD SERVICES - AMCS

ITIL® 4 Specialist: Create, Deliver & Support Certification Course and Exam - CDS

ITIL® 4 Specialist: Drive Stakeholder Value - DSV

ITIL® 4 Specialist Certification Course with Exam: High Velocity IT- HVIT

ITIL® 4 SPECIALIST: IT ASSET MANAGEMENT - IT AM

ITIL® 4 STRATEGIST: DIRECT, PLAN AND IMPROVE - DPI

PRINCE2 FOUNDATION

PRINCE2 PRACTITIONER

AI ESSENTIALS

AI+ Everyone™

AI+ Executive™

AI+ Foundation™

AI+ Prompt Engineer Level 1™

AI BUSINESS

AI+ Chief AI Officer™

AI+ Finance™

AI+ Legal™

AI+ Marketing™

AI+ Product Manager™

AI+ Project Management Practitioner™

AI+ Project Manager™

AI+ Sales™

AI SECURITY

AI+ Ethical Hacker™

AI+ Security Compliance™

AI+ Security Level 1™

AI+ Security Level 2™

AI+ Security Level 3™

AI CLOUD

AI+ Architect™

AI+ Cloud™

AI DEVELOPMENT

AI+ Developer™

AI+ Engineer™

AI+ Prompt Engineer Level 2™

AI SPECIALIZATION

AI+ Agent™

AI+ UX Designer™

AI DATA & ROBOTICS

AI+ Data Agent™

AI+ Data™

AI+ Robotics™

BLOCKCHAIN & BITCOIN

Bitcoin+ Developer™

Bitcoin+ Everyone™

Bitcoin+ Executive™

Bitcoin+ Security™

Blockchain+ Developer™

Blockchain+ Executive™

ETHICAL HACKING

CEH v13

NETWORK SECURITY

CND v3

CCT

ICS/SCADA

COMPUTER FORENSICS

CHFI

Dark Web Forensic Workshop

EC-FDDW

INCIDENT HANDLING

CTIA v2

ECIH v3

CSA v2

TIE

PEN TESTING

CPENT v2

WAHS

APPLICATION SECURITY

CASE JAVA

CASE .NET

ECDE

DSE

ENCRYPTION

ECES

EXECUTIVE MANAGEMENT

ESCM Expert Scrum Master Certified