Regex

• What is Regex?
• Why use Regex in Cybersecurity?
• Regex syntax and patterns
• Regex tools and libraries

• Log analysis overview
• Regex for log analysis
• Extracting data from logs using Regex
• Filtering logs using Regex
• Applying Regex to log analysis tools (e.g. ELK stack)

• Network traffic inspection overview
• Packet capture and analysis
• Protocol analysis with Regex
• Filtering network traffic with Regex
• Applying Regex to network traffic inspection tools (e.g. Wireshark)

• Web application security overview
• Common web application vulnerabilities
• Detecting and preventing SQL injection attacks with Regex
• Detecting and preventing Cross-Site Scripting (XSS) attacks with Regex
• Detecting and preventing other web application attacks with Regex

• Backreferences and lookaheads
• Quantifiers and alternation
• Regular expressions in scripting languages (e.g. Python)
• Debugging and testing Regex patterns
• Using Regex for threat hunting

Participants should have a basic understanding of networking and cybersecurity concepts. Familiarity with common cyber threats and vulnerabilities is recommended. Participants should also have experience with the command-line interface and basic scripting skills. Familiarity with a scripting language such as Python is helpful but not required.