# SANS SEC504 & Labs - [Book one](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-one.md) - [Live Examination](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-one/live-examination.md) - [Network Investigations](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-one/network-investigations.md) - [Memory Investigations](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-one/memory-investigations.md) - [Malware Investigations](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-one/malware-investigations.md) - [Accelerating IR with Generative AI](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-one/accelerating-ir-with-generative-ai.md) - [Bootcamp: Linux Olympics](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-one/bootcamp-linux-olympics.md) - [Bootcamp: Powershell Olympics](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-one/bootcamp-powershell-olympics.md) - [Book Two](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-two.md) - [Hacker Tools and Techniques Introduction](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-two/hacker-tools-and-techniques-introduction.md) - [Target Discovery and Enumeration](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-two/target-discovery-and-enumeration.md) - [Discovery and Scanning with Nmap](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-two/discovery-and-scanning-with-nmap.md) - [Cloud Spotlight: Cloud Scanning](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-two/cloud-spotlight-cloud-scanning.md) - [SMB Security](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-two/smb-security.md) - [Defense Spotlight: Hayabusa and Sigma Rules](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-two/defense-spotlight-hayabusa-and-sigma-rules.md): Please check out the SOC Hackthebox module for more examples: https://faresbltagy.gitbook.io/footprintinglabs/soc-hackthebox-notes-and-labs/yara-and-sigma-for-soc-analysts-module. - [Book Three](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three.md) - [Password Attacks](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three/password-attacks.md) - [Cloud Spotlight: Microsoft 365 Password Attacks](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three/cloud-spotlight-microsoft-365-password-attacks.md) - [Understanding Password Hashes](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three/understanding-password-hashes.md) - [CredSnare](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three/credsnare.md) - [ShadowCitadel](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three/shadowcitadel.md) - [Password Cracking](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three/password-cracking.md) - [Cloud Spotlight: Insecure Storage](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three/cloud-spotlight-insecure-storage.md) - [Multipurpose Netcat](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-three/multipurpose-netcat.md) - [Book Four](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-four.md) - [Metasploit Framework](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-four/metasploit-framework.md) - [Drive-By Attacks](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-four/drive-by-attacks.md) - [Command Injection](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-four/command-injection.md) - [Cross-Site Scripting](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-four/cross-site-scripting.md) - [SQL Injection](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-four/sql-injection.md) - [Cloud Spotlight: SSRF and IMDS](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-four/cloud-spotlight-ssrf-and-imds.md) - [Book Five](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-five.md) - [Endpoint Security Bypass](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-five/endpoint-security-bypass.md) - [Pivoting and Lateral Movement](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-five/pivoting-and-lateral-movement.md) - [Hijacking Attacks](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-five/hijacking-attacks.md) - [Establishing Persistence](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-five/establishing-persistence.md) - [Defense Spotlight: RITA](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-five/defense-spotlight-rita.md) - [Cloud Spotlight: Cloud Post-Exploitation](https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs/book-five/cloud-spotlight-cloud-post-exploitation.md) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://faresbltagy.gitbook.io/footprintinglabs/sans-sec504-and-labs.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.