Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
614
Views
0
Helpful
1
Replies

ThreatGrid training

manvik
Level 3
Level 3

‎12-18-2024 10:34 PM

anyone know good online resource for Cisco Threat Grid (Secure Malware analytics) training for a novice to start.

Labels:
0 Helpful
1 Reply 1

wajidhassan
Level 4
Level 4

‎07-11-2025 08:58 AM

Cisco Threat Grid (now called Cisco Secure Malware Analytics) is a powerful platform for dynamic and static malware analysis, but it can be a bit overwhelming for beginners. Fortunately, there are some solid resources to get you started — both official and community-driven.

Best Beginner-Friendly Resources for Cisco Threat Grid
1. Cisco Secure Malware Analytics Overview & Documentation
Official Docs (good for hands-on learners):

Cisco Secure Malware Analytics (Threat Grid) Documentation

Covers how Threat Grid works, API guides, file submission methods, reports, integrations, etc.

Start with the “Deployment Guide” and “User Guide”

2. Cisco Secure Malware Analytics Learning Path (Cisco U)
Cisco U. Training Portal – Official learning platform from Cisco.

Cisco U (https://u.cisco.com/)

Search for: Secure Malware Analytics, Threat Grid, or Secure Endpoint

Many training paths combine Threat Grid + Secure Endpoint (AMP), which is a typical integration

Look for labs, sandbox demos, and use-case videos

3. Cisco Live On-Demand Sessions (Free)
Tons of sessions from Cisco Live events, often with demos and slides

Cisco Live On-Demand Library

Search: Threat Grid or Secure Malware Analytics

Example sessions:

“Deep Dive into Cisco Secure Malware Analytics”

“Automating Threat Analysis with Threat Grid API”

4. YouTube - Cisco Secure Official Channel
Free, short-form demos and overviews for beginners

Cisco Secure YouTube Channel

Look for playlists like:

Cisco Secure Malware Analytics

Threat Grid Integrations (e.g., with SecureX, Secure Endpoint, etc.)

Most videos are 5–15 min and very digestible

5. Cisco DevNet – Threat Grid API Tutorials
If you’re interested in automation or using the API:

Cisco DevNet Threat Grid API Guide

Includes hands-on examples:

File submissions via API

Automating sandbox workflows

Extracting analysis reports programmatically

6. Hands-On Practice: Cisco Threat Grid Sandbox (via SecureX or Partner)
Cisco doesn't offer a public sandbox for Threat Grid alone, but you can:

Get a demo account through a Cisco partner or your Cisco rep

Use Cisco SecureX (if you have access) – integrates Threat Grid natively and includes malware analysis features

Or sign up for a trial of Cisco Secure Endpoint, which includes Threat Grid analysis

Suggested Learning Order for a Beginner
Intro: Watch 1–2 videos from YouTube or Cisco Live to understand the “why” behind Threat Grid.

Hands-On: Walk through sample file submission and report interpretation (Cisco Docs).

API Basics: Use DevNet tutorials to try API calls in Postman.

Use Cases: Learn how Threat Grid integrates with Secure Endpoint, SecureX, and SIEMs.

Advanced: Dig into Indicators of Compromise, behavior graphs, and rule tuning.

0 Helpful
Customers Also Viewed These Support Documents