Tag Archives: Spring 2026

AP Cybersecurity

APCK Cyber: AP Cybersecurity – Topic 3.5 Analyzing Network Logs

Objectives:

  • Students will be able to analyze different types of log files collected from different network devices to determine abnormal activity that could indicate a possible network attack.

Standards:

  • 3.5.A Describe the types of automated security tools used to detect cyber attacks.
  • 3.5.C Analyze log files for indicators of network attacks.

Guiding Question:

How can log files can help identify threat actors or malicious activity?

Resources:

  • Information Security Career Video: https://youtu.be/cVZktAEtWE4
  • 3.5 Analyzing Network Logs PPT.pptx available on Google Classroom
  • 3.5 Network Log #1, #2 and #3 available in class.

Assignment:

  1. Read through the 3.5 Analyzing Network Logs PPT.pptx presentation in today’s class.
  2. Divide into groups of 2. You will be provided with Network Log #1, #2 and #3. We will work with these log files in class today.
  3. Work as a team to answer the questions on the back of Network Log #2 and #3. We will work with Network Log #1 as a whole group, then your group will be given time to analyze and answer the questions on the back of Network Log #2, then we will move on to Network Log #3.
  4. Follow along with the in-class presentation and complete the analysis questions on Network Log #2 and Network Log #3 to complete the Lab. We will discuss your results in class.

Assigned: January 14th, 2026
Teacher Pacing Due Date: January 14th, 2026

AP Cybersecurity

CYBER.ORG: AP Cybersecurity – Lesson 4.8.1 – Incident Response

Objective:

  • Students will be able to investigate common incident response activities.

Standards:

CompTIA Security+ SYO-701 Objective:

4.8 – Explain appropriate incident response activities

  • Process
    • Preparation
    • Detection
    • Analysis
    • Containment
    • Eradication
    • Recovery
    • Lessons learned
  • Training
  • Testing
    • Tabletop exercise
    • Simulation
  • Root cause analysis
  • Threat hunting
  • Digital forensics
    • Legal hold
    • Chain of custody
  • Acquisition
  • Reporting
  • Preservation
  • E-discovery

Guiding Question:

What are some common incident response activities?

Resources:

  • Lesson 4.8.1 – Incident Response.pptx Presentation available on Google Classroom

Assignment:

  1. Read the Lesson 4.8.1 – Incident Response.pptx presentation in today’s class.
  2. Complete the Unit 3 – Incident Response Check for Understanding activity using the materials provided in Google Classroom.
  3. Complete the Lab – Cuckoo.pptx Activity in class using the materials provided in Google Classroom.
  4. To confirm completion the lab activity, upload a screenshot displaying the results of your Cuckoo analysis identifying the malware file to today’s Google Classroom post.

Assigned: January 12th, 2026
Teacher Pacing Due Date: January 13th, 2026

AP Cybersecurity

CYBER.ORG: AP Cybersecurity – Lesson 4.7.1 – Scripting and Automation

Objective:

  • Students will be able to explain the importance of automation and orchestration in secure operations.

Standards:

CompTIA Security+ SYO-701 Objective:

4.7 – Explain the importance of automation and orchestration related to secure operations.

  • Use cases of automation and scripting
    • User provisioning
    • Resource provisioning
    • Guard rails
    • Security groups
    • Ticket creation
    • Escalation
    • Enabling/disabling services and access
    • Continuous integration and testing
    • Integrations and Applications programming interfaces (APIs)
  • Benefits
    • Efficiency/time saving
    • Enforcing baselines
    • Standard infrastructure configurations
    • Scaling in a secure manner
    • Employee retention
    • Reaction time
    • Workforce multiplier
  • Other considerations
    • Complexity
    • Cost
    • Single point of failure
    • Technical debt
    • Ongoing supportability

Guiding Question:

What is the importance of automation and orchestration in secure operations?

Resources:

  • Lesson 4.7.1 – Scripting and Automation.pptx Presentation available on Google Classroom

Assignment:

  1. Read the 4.7.1 – Scripting and Automation.pptx presentation in today’s class.
  2. Complete the Unit 3 – Scripting and Automation Check for Understanding activity using the materials provided in Google Classroom.

Assigned: January 9th, 2026
Teacher Pacing Due Date: January 12th, 2026

AP Cybersecurity

CYBER.ORG: AP Cybersecurity – 3.1.1 – Architecture and Infrastructure Concepts & Case Study – Specialized Systems Vulnerabilities

Objective:

  • Students will be able to analyze common architecture and infrastructure concepts.

Standards:

CompTIA Security+ SYO-701 Objective:

3.1 – Compare and contrast security implications of different architecture models

  • Architecture and infrastructure concepts
    • Cloud
      • Responsibility matrix
      • Hybrid considerations
      • Third-party vendors
    • Infrastructure as code (IaC)
    • Serverless
    • Microservices
    • Network infrastructure
      • Physical isolation
        • Air-gapped
      • Logical segmentation
        • Software-defined networking (SDN)
    • On-premises
    • Centralized vs. decentralized
    • Containerization
    • Virtualization
    • IoT
    • Industrial control systems (ICS)/supervisory control and data acquisition (SCADA)
    • Real-time operating system (RTOS)
    • Embedded systems
    • High availability

Guiding Question:

What are common architecture and infrastructure concepts?

Resources:

  • 3.1.1 – Architecture and Infrastructure Concepts.pptx Presentation available on Google Classroom

Assignment:

  1. Read the 3.1.1 – Architecture and Infrastructure Concepts.pptx presentation in today’s class.
  2. Complete the Unit 3 – Architecture and Infrastructure Concepts Check for Understanding activity using the materials provided in Google Classroom.
  3. Next, complete the Case Study – Specialized Systems Vulnerabilities Activity using the document and Form posted in the Google Classroom.
  4. Please do your best to complete the Case Study by end of day on Wednesday, January 7th.

Assigned: January 6th, 2026
Teacher Pacing Due Date: January 7th, 2026