Skip to content
logo
Blue team
SIEM TryHackMe rooms
  • Red team
  • Green team
  • Purple team
  • Indigo team
  • Contact
Initializing search
      • Blue team @SOC
        • Network traffic analysis (NTA)
        • Digital forensics and incident response (DFIR)
        • Endpoint detection and response (EDR)
        • Security information and event management (SIEM)
          • SIEM and threat intelligence/hunting notes
          • An investigation with Splunk + CKC
          • TryHackMe rooms
            • SIEM TryHackMe rooms
              • How?
            • VPN logs
            • ItsyBitsy
            • Investigating with Splunk
            • Benign
            • CaddyWiper and APT37
            • Zerologon
          • Puzzles @Cyberdefenders
          • Boss of the SOC v2
          • Big-Picture view of current real-world attacks
          • Security Detectors for Wazuh (Mock Mode) @GitHub
      • Blue team for dev
      • Blue team @Home
      • Bulletproofing servers
      • Honeytech for humans
      • Stormforge
      • Current affairs
    • How?

    SIEM TryHackMe rooms¶

    Beginner-friendly virtual labs where you learn SIEM tools through hands-on investigations, featuring rooms like ‘Splunk Basics’ and ‘SOC Level 1’ that simulate real security operations centre workflows.

    How?¶

    • VPN logs

    • ItsyBitsy

    • Investigating with Splunk

    • Benign

    • CaddyWiper and APT37

    • Zerologon

    2025-09-24 12:13
    © Copyright 2025, TyMyrddin.
    Created using Sphinx 7.2.6. and Sphinx-Immaterial

    Made with love in the Unseen University, 2025, with a forest garden fostered by /ut7