Security Operations Centre · Australia

SOC Analyst
Exam Prep

Master every topic a SOC analyst needs — from SIEM and log analysis to MITRE ATT&CK and cloud security. Exam-style questions with detailed explanations.

13 Topics

65 Questions

Instant Explanations

Progress Saved

60s Timer

🎯

13

Topic Areas

❓

65

Questions

⏱

60s

Per Question

💾

Auto

Progress Saved

🔖

Yes

Bookmarks

📚 Choose a Topic to Study

Each topic has 5 exam-style questions with detailed explanations. Your progress is saved automatically.

Core concepts every SOC analyst must know — SOC roles, CIA Triad, basic networking, Windows and Linux OS basics.

SOC RolesCIA TriadTCP/IPWindowsLinux

Networking & Protocols

TCP vs UDP, common ports, DNS/DHCP/ARP, HTTP request/response, and packet analysis with Wireshark.

TCP/UDPPortsDNSHTTPWireshark

Security Fundamentals

Types of attacks (phishing, malware, DDoS, brute force), MFA, OAuth, firewalls, VPNs, and Zero Trust.

PhishingRansomwareMFAZero TrustDDoS

Security Information & Event Management — log collection, analysis, writing queries and alerts, Splunk, QRadar, Sentinel.

SplunkQRadarSentinelLog CorrelationAlerts

Practical Skill

Windows Security/System/Application logs, Linux /var/log, web server logs, and firewall log interpretation.

Windows LogsLinux LogsEvent IDsWeb LogsFirewall

Incident Detection & Response

What is an incident, the IR lifecycle (detection through recovery), alert triage, true/false positives.

IR LifecycleTriageContainmentEradicationRecovery

Threat Intelligence

IOCs, OSINT tools, threat feeds, VirusTotal, AbuseIPDB — how to research and contextualise threats.

IOCOSINTVirusTotalThreat FeedsAbuseIPDB

Endpoint Security (EDR/XDR)

What is EDR/XDR, monitoring endpoints, detecting suspicious processes, CrowdStrike and Microsoft Defender.

EDRXDRCrowdStrikeDefenderProcess Analysis

Security Tools You Must Know

Nmap, Burp Suite, Metasploit, and Nessus — what they do, when to use them, and why analysts need to know them.

NmapBurp SuiteMetasploitNessusScanning

MITRE ATT&CK Framework

Attack techniques & tactics, TTP mapping, the ATT&CK Navigator, and real-world attack scenario analysis.

TacticsTechniquesTTPNavigatorThreat Mapping

High Demand in AU

AWS basics, IAM, CloudTrail, GuardDuty, and the shared responsibility model — critical for Australian SOC roles.

AWSIAMCloudTrailGuardDutyShared Responsibility

Practical Skill

Scripting Basics

Python for SOC automation, Bash for Linux log analysis, and PowerShell for Windows investigations.

PythonBashPowerShellAutomationLog Parsing

Industry Standards

Compliance & Standards

ISO 27001, NIST CSF, GDPR basics, ACSC Essential Eight — how compliance relates to security operations.

ISO 27001NISTGDPRACSC E8Auditing

⏱

60-Second Timer

Each question has a 60-second countdown. Adds exam pressure and helps track your speed.

Active

💾

Progress Saved

Your answers are saved in the browser. Close and resume anytime — no login needed.

Active

🔖

Bookmark Questions

Flag tricky questions for later review. Bookmarks persist across sessions.

Active

📊

Topic Score Tracking

See correct/wrong counts per topic on the topic page. Identify where to focus.

Active

💡

Full Explanations

Every question includes a detailed explanation covering the 'why' behind the correct answer.

Active

🎓

Junior Difficulty

All questions are calibrated for Junior SOC analyst level — ideal for career starters.

Active