Sign In

Focused Skills. One Thing, Learned Properly.

Some skills don't need 15 modules. Ridgeline Skills are focused training on a single tool or technique — practitioner-written, same depth standard as full courses, included with every subscription.

One tool to production proficiency · Hands-on with worked examples · Included with Premium & Specialist

Production proficiency

Every skill teaches one capability to the depth where you can use it at work tomorrow. Not an introduction. Not an overview.

Worked examples throughout

Every section is built around a complete worked example you execute in your own lab. The tool output is real. The analysis is real.

Guided lab capstone

Each skill ends with a guided lab that walks you through the complete workflow end-to-end against a realistic scenario.

Available Skills

DFIR & Investigation

Skill
KAPE and EZ Tools Mastery
KAPE · MFTECmd · PECmd · AmcacheParser · RECmd · Timeline Explorer
DFIR Tools
  • 6 sections + guided endpoint triage lab
  • Premium Subscription
Start Skill → Explore Skill →
Skill
Velociraptor for Endpoint Investigation
Velociraptor · VQL · Notebooks · Artifact Exchange
DFIR Tools
  • 9 sections + guided investigation lab
  • Premium Subscription
Start Skill → Explore Skill →
Skill
Malware Triage
PEStudio · strings · VirusTotal · ANY.RUN · YARA · STIX
DFIR Tools
  • 5 sections + guided triage lab
  • Premium Subscription
Start Skill → Explore Skill →
Skill
YARA Rule Writing for DFIR
YARA · THOR Lite · Velociraptor · yarGen · PE headers
DFIR Tools
  • 6 sections + guided malware hunting lab
  • Premium Subscription
Start Skill → Explore Skill →
Skill
Wireshark for Security Analysts
Wireshark · tshark · tcpdump · BPF · Display Filters
Network Analysis
  • 5 sections + guided PCAP lab
  • Premium Subscription
Start Skill →Explore Skill →

Detection & Hunting

Skill
Sigma Rules for Detection Engineers
Sigma · sigma-cli · KQL · SPL · Elastic · ATT&CK
Detection Engineering
  • 6 sections + guided detection lab
  • Premium Subscription
Start Skill → Explore Skill →
Skill
Sysmon Configuration and Tuning
Sysmon · XML Config · SwiftOnSecurity · GPO · Intune
Detection Engineering
  • 6 sections + guided deployment lab
  • Premium Subscription
Start Skill →Explore Skill →
Skill
Log Analysis with Regex
grep · sed · awk · PowerShell · regex101
Log Analysis
  • 5 sections + guided parsing lab
  • Premium Subscription
Start Skill →Explore Skill →

Security Engineering

Skill
Conditional Access Design
Entra ID · Conditional Access · Named Locations · Device Compliance
Identity Security
  • 6 sections + guided design lab
  • Premium Subscription
Start Skill →Explore Skill →
Skill
Email Authentication Masterclass
SPF · DKIM · DMARC · DNS · M365 · Google Workspace
Email Security
  • 5 sections + guided audit lab
  • Premium Subscription
Start Skill → Explore Skill →
Skill
PowerShell for Security Operations
PowerShell · WinRM · Get-WinEvent · Microsoft Graph
Security Operations
  • 7 sections + guided investigation lab
  • Premium Subscription
Start Skill → Explore Skill →
Skill
Git for Security Teams
Git · GitHub · VS Code · CI/CD · Sigma
Security Operations
  • 5 sections + guided repo lab
  • Premium Subscription
Start Skill →Explore Skill →

Skills are included with every subscription.

Premium and Specialist subscribers get full access to every Ridgeline Skill, every course, and every future update.

See Pricing Browse Courses