Build Practical Threat Hunting and Detection Engineering Skills

Learn through realistic attack simulations, enterprise telemetry, and hands-on labs designed to help defenders investigate faster, detect adversary behavior earlier, and build more resilient detection capability.

Join 6000+ Learners

Practical Skills for Real Defenders

Learn through realistic attack scenarios

Work with realistic endpoint, identity, and cloud telemetry generated from practical attack simulations.

Build resilient detection capability

Learn to hunt and detect adversary behavior, reason through telemetry gaps, and build detections that remain useful under evasion conditions.

Start with KQL. Go beyond KQL.

Build the analysis foundation with KQL, then apply it to incident response, threat hunting, and advanced detection engineering.

Learners

Organizations

Courses

Our Courses

Trusted by Defenders, Hunters, and Security Teams

I enjoyed the course content and appreciated the detailed explanations of KQL concepts provided. Mehmet is an exceptional instructor with a deep understanding of the subject. He effectively communicates the KQL details and the underlying mechanics, enhancing the learning experience via realistic lab environment. My favourite part was "Using KQL for Triage and Investigations" which I highly recommend.

Furkan Caliskan, Meta

Very Good Material! I found it very informative with examples on how to complete each task. I like that it gives multiple ways to complete some queries as well.

Matt Larkin, Microsoft

I am thoroughly impressed with the 'Advanced Hands-On KQL for Threat Hunting and Detection Engineering' course. It provides an in-depth exploration of anomaly detection and time series analysis, offering practical insights using real-world data. This course has significantly enhanced my KQL skills, and I highly recommend it to anyone looking to improve in this area. Can't wait to explore the upcoming modules!

Adi Dibra, Booz Allen Hamilton

The "Hands-On KQL for Security Analysts" course is truly outstanding!


If you're looking to embark on your KQL learning journey, this is the perfect opportunity to take the first step towards becoming an expert. The flexibility to learn at your own pace, anytime, anywhere, makes it convenient. 

Leonardo Armesto, Accenture

Awesome product. I have taken a number of tutorials on KQL, followed the savants and experts, read countless articles and books on the subject. I can assure you... This training blows all of that out of the water for biggest bang for the buck. You will walk out of this course confident and knowledgeable, doing KA-RAZY things like Time-series analysis and time traveling, making sets like a boss, and writing well-formed, efficient queries. The examples are reflective of real-world problems to be solved, and clearly has been through technical editing. 


I normally don't like to come out of pocket for training, but this one was well worth it to go after. 

K.C. Yerrid, loanDepot

I had the pleasure of going through the 'Advanced Hands-on KQL for Threat Hunting and Detection Engineering' course. The course dives deep into using KQL for anomaly detection using time-series analysis, using process mining to detect attack flows, and examining process trees using graph semantics - packaged with an ADX lab environment containing realistic data for you to query to your heart's content. My head is swimming with new ideas for detecting bad guys.


If you hunt with KQL in your day-to-day, I can't stress enough how valuable (and affordable) this course is!

Michael Czelen, Canadian Tire

As a SOC team leader, I found the 'Advanced Hands-On KQL for Threat Hunting and Detection Engineering' course extremely helpful. It explained complex topics in a way that was easy to understand. The aggregation, anomaly detection and time series analysis parts were especially invaluable. Looking forward to the new modules!

Yusuf Buker, SOC Team Lead

I want to commend the exceptional KQL training you conducted; it was clear, engaging, and one of the best I've taken. The content was well-presented with practical exercises that enhanced my understanding and skills in KQL. 


Thanks to your training, I am now confident in using KQL for complex analysis in my work. 

Mazlum Baydar, ADEO Cyber Security

Have done about 30% of course at the moment and its pure iron, 100% recommendation if you do any analyst duties with KQL.

Mika Aromaa

The "Hands-On KQL for Security Analysts" course allows you to access the important information you need for every investigation on a silver platter, without wasting time reading numerous documents or learning functions that are not necessary use most of the time.

Ayham Assaf, Wizard Cyber

Since commencing the Hands-On KQL for Security Analysts course, resolution times for the bulk of email and identity alerts has dropped to seconds.

Sean Roberts

Ready to get started?

Join 6000+ Learners

Meet Your Instructor

Mehmet Ergene

Mehmet brings over 15 years of experience in cybersecurity, with a unique blend of expertise in KQL, threat hunting, detection engineering, and data science to his courses to help others advance their skills. Recognized four times as a Microsoft Security MVP, he is renowned for adapting the RITA beacon analyzer to KQL and for his insightful presentations at key conferences like the SANS DFIR Summit.