Cloud & Linux

STORE / COURSES / CLOUD & LINUX INCIDENT RESPONSE
2 DAYS LIVE BOOTCAMP

Cloud & Linux Incident Response

2-day hands-on bootcamp is designed to help security professionals understand and perform Incident Response on Linux systems and AWS cloud environments.

Syllabus

Section • 2 lessons

Day 1 : 28:03:2026 IST Live
Day 2 : 29:03:2026 IST Live

Authors

Archan Choudhury

Archan Choudhury

Archan Choudhury is the CEO of BlackPerl. He is a security professional and educator with a career spanning over 15 years in technical security and leadership roles for global enterprise companies.

Service Operation Portfolio: Leading multi-stakeholder projects to deploy cybersecurity solutions for global clients, coordinating between different teams and ensuring high-quality delivery. Providing services for Managed Detection and Response, Security Engineering, Cloud Security, Offensive and Defensive Security, AI Safe LLM Security, OT Security, and more. Spearheading partnerships with global organizations like TerraEagle to enhance cybersecurity education worldwide.

Cyber Education: Leading a cybersecurity firm that provides advanced, affordable, and hands-on cybersecurity training to professionals and students globally. Planning and organizing industry-level cybersecurity events featuring CTF competitions, product launches, and strategic collaborations.

Managing and executing strategic partnerships with TerraEagle and other global firms to embed cybersecurity programs in universities across the U.S. and India. Collaborating with institutions like the University at Buffalo and colleges in Tamil Nadu and Pune to strengthen cybersecurity education.

Developing cutting-edge courses in areas like Cloud Security, Microsoft Sentinel, Threat Detection, Sigma rules, and Incident Response. Instructing courses aimed at equipping professionals with advanced security skills, including AI Security, OT Security, and more.

Providing expertise in SIEM tools such as Elastic SIEM, Splunk, and Microsoft Sentinel for advanced threat detection and incident response at education level. Mentoring cybersecurity professionals and students, empowering over 16,000 individuals globally with real-world cybersecurity skills.

Actively contributing to the advancement of the cybersecurity industry through knowledge sharing and advocacy.

2 DAYS LIVE BOOTCAMP

About This Course

Bootcamp
2 Days LIVE Bootcamp on Cloud & Linux Incident Response
Instructor
Archan Choudhury
Date & Time
28th March & 29th March
12:00 PM - 4:00 PM (IST)

Course Overview

This intensive 2-day hands-on bootcamp is designed to help security professionals understand and perform Incident Response on Linux systems and AWS cloud environments.
Participants will learn how to detect anomalies, investigate Linux logs, perform live incident response, collect forensic evidence, analyze Linux memory, and automate response workflows in AWS.
The session also includes real-world investigation techniques, automation strategies, threat hunting methods, and a final CTF challenge to test the knowledge gained during the bootcamp.

Topics

Understanding Linux for Detection Response.
Get deep anomaly combination for Linux usecases with: Identify EXECVE, Syscall anomaly, privilege escalation with SUID Abuse, SSH key persistent.
Get deep understanding of reading and analyzing Linux auth, audit, syslog.
Doing Live Incident Response with Linux. Setting up EDR, Live Analysis with scripts.
Doing Incident Response in AWS. Understood AWS CLI for doing Incident Response.
Automate IR workflow with GuardDuty, AWS Lambda, AWS Event Bridge and Slack.
Doing Threat Hunt on AWS with Jupyter.
Remote Evidence collection from Linux Endpoint. Automation of Evidence Collection.
Gather Linux Memory.
Analyze Linux Memory for comprise assessment.
Interview tips for Linux/IR based scenarios.
Final CTF.

Ideal For

SOC Analysts
DFIR Analysts
Cloud Security Engineers
Threat Hunters
Security Researchers
Cyber Security Students
Professionals preparing for Linux Incident Response or Cloud Security roles

What You Will Get

Linux IR cheatsheet
Dataset for your practice
Automation scripts
AWS scripts
Interview tips library
Lifetime Recording for 2 days of Recording
Course completion Certificate upon completing the CTF
CPE hours

Assessment & Certification

Participants will complete a Final CTF (Capture The Flag) based on real-world Linux and Cloud Incident Response scenarios.
Upon successfully completing the challenge, participants will receive a Bootcamp Completion Certificate and CPE hours.

Frequently Asked Questions

Yes, this workshop is designed to help beginners understand the fundamentals of Linux Incident Response while also providing practical insights useful for intermediate security professionals.
Basic familiarity with Linux commands and cloud concepts will be helpful, but the instructor will cover the necessary concepts during the session.
Yes, the bootcamp includes practical demonstrations, scripts, datasets, and a final CTF challenge to help participants apply what they learn.
Yes, participants will receive lifetime access to the recording of both workshop days.
Yes, participants who complete the Final CTF will receive a Course Completion Certificate along with CPE hours.
Yes, the session includes interview tips and scenarios focused on Linux Incident Response roles.
Scroll to Top