| Home || About Crestech || Registration || Free Training || Course Catalog || Testing Center || Site Search |

Security +

Hours: 80

COURSE DESCRIPTION

Network Security

  • This is an excellent companion class to the GL550, Host Security. Protocols used in Linux, UNIX, and Windows 2000 are examined. Discussion includes TCP/IP suite component protocols and Ethernet operation. Students capture, analyze, and generate IP traffic; exploit protocol weaknesses and examine defensive solutions; install, configure, and test a powerful NIDS solution; and finally create a Linux based router / firewall solution, including advanced functionality such as NAT, policy routing, and traffic shaping.
    • Host Security
  • This highly technical course focuses on host security. Students begin by learning the scanning methods used by attackers to locate and identify machines. Next, the weaknesses of various operating systems are explored and exploited. Via lab exercises, students actually practice breaking into Windows, Novell, Unix, and Linux and then learn the proper method of securing each one. Special attention is given to web based exploits with analysis of common IIS security holes. Finally, DoS (Denial of Service) and Distributed DoS attacks are discussed.

PRE-REQUISITES

Since the tools used in class are compiled and run on a Linux system, Linux or UNIX system experience is helpful, but not necessary. A solid background in networking concepts will greatly aid in comprehension.

COURSE OUTLINE

Session 1

  • Section A: Basic Access Introduction Logon/Logoff Authentication Proofs Access Control
  • Section B: Authentication Methods Kerberos Kerberos Process CHAP CHAP Process CHAP Platforms Certificates Certificate Uses Certificate Issues
  • Section C: Implementation Modes Username/Password Tokens Multi-Factor Mutual Biometrics IT Security Tools
  • Section D: Denial of Service DOS/DDOS Software Defenses
  • Section E: Identity Theft Back Door Back Door Defense Spoofing Spoofing Attacks Spoofing Defense
  • Section F: Identity Attacks Man In the Middle Indicators Replay Replay Defense TCP/IP Hijacking
  • Section G: Common Attacks Password Guessing Password Defense Software Exploitation Exploitation Defense Lockcrack
Session 2
  • Section A: Malicious Code Viruses Trojan Horses Logic Bomb Worms
  • Section B: Remote Access Security Wireless Communication Wireless Issues Wireless Defense VPN Communication VPN Issues VPN Defense
  • Section C: Remote Services Radius TACACS PPTP L2TP SSH IPSec
  • Section D: Email Security S/MIME S/MIME Issues PGP PGP Issues Vulnerabilities Defenses
  • Section E: Secure Web Traffic SSL/TLS SSL Process SSL Issues SSL Defenses
  • Section F: Web Client Vulnerabilities JavaScript ActiveX Cookies Applet Defense Web Page Settings ActiveX Controls Cookie File
  • Section G: Web Server Vulnerabilities Buffer Overflows CGI Web App Properties HTTP/S Unsecured Certificate
  • Section H: Authentication Services LDAP LDAP Defenses X.500 Replication Issues
Session 3
  • Section A: Communication Security S/FTP Packet Sniffing FTP Security Instant Messaging IM Defenses Wireless Security WEP Wireless Site Survey
  • Section B: Infrastructure Design Firewalls Routers Switches Wireless Modems RAS VPN Mobile Device
  • Section C: Media Security Coax UTP/STP Fiber Tape/CDR Hard Drives Diskettes Flashcard/Smartcard
  • Section D: Security Topologies DMZ Intranet/Extranet VLAN NAT Tunneling
  • Section E: Intrusion Detection Overview IDS Network Based Host Based Honeypots Incident Response Network Monitor
  • Section F: IDS Monitoring Services Users Management Firewall Log
  • Section G: Security Baselines Documentation Network Hardening Updates Configuration Application Hardening Email Servers NNTP Servers Data Repositories
Session 4
  • Section A: Security Checklist Basic Security Midlevel Security Advanced Security
  • Section B: Cryptography Concept Algorithm Symmetric/Asymmetric Using Encryption Using Keys
  • Section C: Key Management Overview Revocation/Suspension Recovery/Renewal Destruction Key Usage PKI Trust Models Standards and Protocols
  • Section D: Operational Security Access Control Social Engineering Environment Disaster Recovery Recovery Plan Business Continuity
  • Section E: Policies and Procedures Security Policy Employee Diligence Access/Passwords Mgmt Disposal/Termination Incident Response Policy
  • Section F: Security Management Documentation Education Privilege Management Risk Management Forensic
 Benefits
  • Manage and tune corporate Internet and Intranet infrastructure. Manage machines running Internet services down to the operating system level.
  • Define, develop and manage corporate security policies; audit security mechanisms such as firewall systems and attack recognition products and technologies; manage the deployment of security solutions.
  • Develop client side and server side Internet applications.
  • Develop and implement solutions for integrating the back-end database systems with Internet applications for real-time access to customer and corporate information.
  • Develop transaction-based systems including commerce, inventory and workflow-related systems.
  • Manage and tune hardware, connectivity, network protocols, routing and switching.
  • Design Internet site structure and user interface.
  • Preparation for I-Net + Certification Exam.

Click Here to find out more on Financial Services

Click Here to Register for this Course

Scheduling  Course Catalog  Course Matrix  Course Calendar
© 2003 All Rights Reserved Crestech.org
webmaster@crestech.org