Call : (+91) 968636 4243
Mail : info@EncartaLabs.com

Cyber Security - Essentials

( Duration: 5 Days )

In Cyber Security - Essentials training course, you will gain a global perspective of the challenges of designing a secure system, touching on all the cyber roles needed to provide a cohesive security solution. Through lecture, labs, and breakout discussion groups, you will learn about current threat trends across the Internet and their impact on organizational security. You will review standard cyber security terminology and compliance requirements, examine sample exploits, and gain hands-on experience mitigating controls.

In addition to technical Cyber Security components, you will learn and explore the non-technical aspects of Cyber Security necessary to mitigate risk and lessen exposure, including risk management, threat determination, disaster recovery, security policy management, and business continuity planning. This course provides an excellent foundation for those proceeding to CISSP, CEH, CISA, or CISM training.

By attending, Cyber Security - Essentials training, delegates will learn:

Current cyber threats and Cyber Security site references
Government-mandated directives and compliance requirements
Cyber roles required to successfully design secure systems
The attack cycle perpetrated by malicious hackers
Enterprise policy requirements
Best strategies for securing the enterprise with layered defenses
How security zones and detailed logging augment information assurance
Forensic challenges and incident response planning
Risk management process
Goals achievable with auditing, scanning, and testing systems
Industry recommendations for maintaining secure access control
Standards-based cryptographic solutions for securing communications

Attend a training on TCP/IP Networking or equivalent knowledge

This Cyber Security - Essentials class is intended for Cyber Security professionals, including security analysts, intelligence analysts, policy analysts, security operations personnel, network administrators, system integrators and security consultants.

COURSE AGENDA

The Cyber Battlefield

Critical Business Security
Worldwide Internet Growth
Security Fundamentals
Security Goals
Terminology Threats and Exposures
Exploits and Exposures
Hackers and Crackers
Attack Methods
Social Engineering
Common Attack Vectors
Traffic Analysis
- Responding to Threats and Attacks
Documents and Procedures to Manage Risk
Vulnerability Scanners
Penetration Testing
The OSSTMM
NIST
Risks of Penetration Testing

The Structure of the Internet and TCP/IP

CNCI
- Initiatives
Legal Compliance Standards
- Acts
- Federal Agency Compliance
- Commercial Regulatory Compliance
Internet Leadership IANA
- Regional Internet Registry
- Protocols and RFCs
TCP/IP Model
- Network Access Layer
- Internet Layer
- Host-to-Host Layer
- Process Layer
Domain Name Service

Vulnerability Assessment and Tools

Vulnerabilities and Exploits
Vulnerability Assessment Tools
- Application-Level Scanners
- System-Level Scanners
- System-Level Testing Tools
- Open Source System-Level Scanner Tools
- Commercial System-Level Scanner Tools
Advanced Attack Techniques and Tools
Commercial Exploit Tools
- Free Exploit Tool: Metasploit
- Free Exploit Tool: BeEF
Fuzz Testing
Preventing Exploits and Attacks
Patch Management
Common Vulnerabilities and Exposures
Alerts and Software
Tools
Vulnerability Research
Common Security Sites
Patch Management
- Tools

Cyber Awareness

Social Engineering
- Social Engineering Goals
- What Makes Social Engineering Possible
- Targets
- Attacks
- Phishing
- Phishing via Email
- Online Attacks
- Statistical Data
- Sources of Security Breaches
- Preventing Social Engineering
Cyber Awareness: Policies and Procedures
- Security Policy Topics
- Social Media
- Social Networking Sites

Cyber Attacks: Footprinting and Scanning

Footprinting
- Gathering Information
- Unearthing Initial Information
- Internet Archive
- People Search
- Locations and Mapping
- Job Boards
- Financial Information
- Google and Search Operators
Identifying the Target Network and Its Range
- WHOIS Utility
- DNS Online Search Tools
- Trace route
- Footprinting Countermeasures
Detecting Live Systems
- Bypassing Authentication
- War Dialing
- Wardriving
- ICMP: Ping
- Port Scanning
- Performing TCP and UDP Scans
- Port Numbers
TCP Flags
- TCP ThreeWay Handshake
Port Scanning Techniques
- TCP Full Connect Port Scan
- TCP HalfOpen (SYN) Scanning
- Nmap HalfOpen Scan
- UDP Port Scan
- Nmap Scan Types and Switches
- Port Scanning Tools
- OS Fingerprinting
- Active Stack Fingerprinting
- Passive Fingerprinting
Proxies and Anonymizers
Scanning Countermeasures

Cyber Attacks: Breaking and Entering

Password Attacks
Privilege Escalation
Maintaining Access
Windows Authentication
- SysKey Encryption
- LAN Manager Password Encryption
- Windows LAN Manager and NTLM Hashes
- Linux Password Encryption
- SAM Database Insecurities
Password Extraction Cracking
- Password Cracking Techniques
- Password Cracking Tools
- LCP
- John the Ripper
- Cain and Abel
Password Cracking Countermeasures
Covering Tracks
- Principle of Exchange
Clearing the Logs
Hiding Tools, Files, and Programs
- NTFS Alternate Data Streaming
Information Hiding: Methods
- Steganography
- Steganography Detection
- Rootkits
Countermeasures: Rootkits

Cyber Attacks: Backdoors and Trojans

Malware
Trojans
- Trojan Infection Mechanisms
- Well-Known Trojans
- Distribution Methods Wrappers
- Trojan Autostart Methods
Covert Communications
- Stealth Technique: Avoiding Detection
Backdoor Countermeasures
Malware Countermeasure
Anti-Spyware Software
Malware Countermeasure Practices

Cyber Assessment and Risk Management

Risk Management Steps
- Determining ALE
- CRAMM Process
- Risk Management Lifecycle
Protected Assets
- CIA Triad
Quantitative Risk Assessment
Threat Determination Process
Risk Assessment
- Lifecycle
- Steps
Vulnerability Categories
Business Assets vs. Risk
Benefits of Risk Management
Policy
Assessment

Security Policy Management

Security Policy
- Use
- Importance
- Legal Issues
- Example
Policy References
- Policies, Guides, Standards, Procedures, and Controls
- Security Policy Coverage Matrix
- Example: Internet Security Coverage Matrix
- Granular View of a Security Matrix
- Basic Policies

Securing Hosts and Servers

Types of Hosts
General Configuration Guidelines
- Clean Systems
- Unnecessary Services
- Warning Banners
- Limiting Access
- Configuring and Logging
Security Patches
Security Baselines
Traffic Filtering Monitoring
DoS Vulnerabilities
Server Hardening
Web Server Hardening
Mail Server Hardening
FTP Server Hardening
DNS Server Hardening
- Other Servers
Workstation Considerations
Network Appliances
Wireless Access Hardening
VLAN Security
Software Attacks

Securing Communications

Applying Cryptography to OSI Model
Tunnels
Securing Services
- Email
- FTP and Telnet
- SSL and TLS
- Gateway-to-Gateway VPN
- Host-to-Gateway VPN
- IP Security
- Wireless Access Communication
- Wireless Security

Authentication and Cryptographic Solutions

Authentication
Authentication Issues
Cryptosystems Password Authentication
Hash Functions
Kerberos Cryptographic Benefits
Symmetric Key Encryption Asymmetric Encryption Digital Signatures PKI Components
Models
Policies
Lifecycle
Distribution

Firewalls and Edge Devices

General Security Integration
Services
Needs for Services
- Security Zones
- Filtering
- Screened Subnets
- Trusted Zones
- Devices
- Routers
- Firewalls
- DMZ Hosts
- Other Security Considerations
Business-to-Business Communications
Exceptions to Policy
- Special Services and Protocols
Configuration Management
Software Development Security
Certification and Accreditation
Common Criteria
Intrusion Detection and Prevention
Defense in Depth
Network Device Logging
- Host Monitoring and Logging
- Events Correlation
- Placement of IDS Monitors and Sensors
- Monitoring
- Host-Based and Network-Based Differences
- Policy Management
- Behavioral Signatures
- IDS and IPS Weaknesses
- Encryption
- Incorrect Configuration

Forensic Analysis

Incident Handling
Security Incident Response
- Time and Reaction Sensitivity
- Incident Handling Issues and Considerations
- Response Procedures
- Evidence
- Logging
- Log Analysis Tools
- Active Ports
- Dependency Walker
- Log Maintenance

Disaster Recovery and Business Continuity

Disaster Types
Disaster Recovery Plan (DRP)
DRP Goals
Creating a DRP
DRP Contents
DRP Design Requirements
DRP Priorities
Recovery Strategies
High Availability
Data Collection Documentation
DRP Testing
Business Continuity Planning
BCP Steps

Cyber Evolution

Cyber Forces
Cyber Terrorism
Cyber Security: Crime, War, or Fear Mongering?
Cyber Future 7 Compliance Initiatives
Cyber Defense in Depth

Encarta Labs Advantage

One Stop Corporate Training Solution Providers for over 6,000 various courses on a variety of subjects
All courses are delivered by Industry Veterans
Get jumpstarted from newbie to production ready in a matter of few days

Trained more than 50,000 Corporate executives across the Globe
All our trainings are conducted in workshop mode with more focus on hands-on sessions

View our other course offerings by visiting https://www.encartalabs.com/course-catalogue-all.php

Contact us for delivering this course as a public/open-house workshop/online training for a group of 10+ candidates.

Top

Notice