Network Security
Network Security
Duration : 5 days (40 hours)
- Session -1: INTRODUCTION
- Introduction and Case Studies
- Understanding the language of internet
- TCP/IP knowledge for security professional
- Post -Lunch Session:
- Chef Workstation- Looking at Security and Configs
- Mapping Application Services to the AppDynamics Model
- Instrumentation the App
- Use AppDynamics for the First Time with Application
- Session -2: NETWORK MAPPING
- Protocol Analysis – Wireshark
- Portscan Fundamentals
- “Nmap”ing the Network
- Enumerating Network Services
- Security Controls – Discovery and Evasion Techniques
- Interpreting False Positive
- Session -3: TYPES AND SOURCE OF NETWORKS
- Denial of Services
- Smurf Attacks
- Packet Replay
- Fragmentation attack
- Unauthorized Access
- Remote Code Execution
- Attacks on Protocols
- MITM Attacks
- Internal v/s External Threats
- Session 4: IDENTIFYING INSECURITIES IN NETWORK
- Vulnerability Discovery
- Automated Scanners - Nessus
- Common Security Issues
- FTP Servers
- SNMP Issues
- SMTP Servers
- VPN Security
- Web Servers (IIS, Apache)
- Exploiting the Enterprise
- Metasploit Framework
- Session 5: WIRELESS SECURITY
- Insecurities in Wireless
- WiFi Security Myths – Hidden SSID, MAC filtering
- Concept on EvilTwin
- Security Issues in WEP
- Understanding issues with RC4 Algorithm Implementation
- WPA/WPA2 Security
- Problems WPS
- Session 6 : NETWORK SECURITY AUDITING
- Security in design
- Architecture Review
- Concept of DMZ and VLAN
- Device Auditing
- Configuration Review
- Firewall Auditing
- Rule Based Auditing
- Network Security Audit in ISMS Point of View
- Threat Detective & Preventive Controls
- Intrusion Analysis
- Log Management
- Administrative Control
- Session 7: Tools
- Nmap
- Wireshark
- Hping3
- Nessus
- Nipper
- IKEscan and IKEprobe
- PSK-Crack
- Athena Firewall Browser