Detection Engineering with Security Onion 2.4
A hands-on approach to identifying and addressing detection gaps — using real-world scenarios built around Security Onion 2.4. VERSION NOTE - MARCH 2026 Security Onion 3 is now available, featuring a refreshed web interface and some minor changes to the platform. If you're running the latest release, you may notice minor UI differences. Any significant changes from what's shown here will be called out throughout the course.
This course is geared for those wanting to understand how to build a Detection Playbook with Security Onion 2.4. Students will gain both a theoretical and practical understanding of building detections in Security Onion, reinforced with real-life examples from network and host datasources.
Prerequisites: Security Onion Essentials is the recommended prerequisite for Detection Engineering with Security Onion 2.4.
Upon completing the class, attendees will receive a Certificate of Completion.
Your Instructor
Bryant Treacle has over 23 years of cybersecurity and IT networking experience in the Department of Defense (DoD) and commercial industries. Over the years, Bryant has worked with many customers, providing architectural, design, and implementation recommendations to solve a multitude of cybersecurity and IT networking challenges using an integrated portfolio of products across the network, endpoint, and cloud. Bryant holds a master's degree in Cyber Security and several professional certifications. He is currently a Senior Engineer and Training Manager at Security Onion Solutions LLC.