Day 3 of my SOC journey β and things are getting real.
Today I focused on how communication actually happens inside networks:
TCP/IP basics
4-layer model
TCP vs UDP
TCP handshake
DHCP + DORA
π‘ Biggest insight:
Everything in SOC β alerts, logs, attacks β
depends on how data flows.
If you donβt understand this, youβre just guessing.
β‘ TCP = reliable
β‘ UDP = fast
Both matter.
Whatβs next?
MAC Address, ARP, ICMP, and Ping
Top comments (0)