Prerequisites: strong system administration experience and some familiarity with security
If you share resources across your network or the cloud, you need a firm grasp of all of the security implications. In this course, you'll get hands-on experience securing your infrastructure while learning about risk assessment and management, sensitive data, computer forensics, penetration testing, and much more. By the end of this course, you'll know how to …
Prerequisites: strong system administration experience and some familiarity with security
If you share resources across your network or the cloud, you need a firm grasp of all of the security implications. In this course, you'll get hands-on experience securing your infrastructure while learning about risk assessment and management, sensitive data, computer forensics, penetration testing, and much more. By the end of this course, you'll know how to secure your data and keep it that way.
Introduction
Introduction
What Will Be Covered
What Is Linux
Distributions
Scratch Versus Binary
Ubuntu Package Management
RedHat Package Management
Booting
The Boot Process
Physical Protections
The Boot Manager - GRUB
Protecting The Boot Manager
xinetd
Runlevels
Setting Default Runlevels
GRUB2
LILO
Services
Service Management
Service Management With RHEL7
TCP Wrappers
Listening Ports
Standard Postfix Configuration
Apache Configuration
Hardening Apache
Virtual Hosts In Apache
DNSSec
MySQL
PostgreSQL
Tomcat
JBoss
mod_security
SSL-TLS And Apache
SPF And Greylisting In Postfix
Logging And Log Management
Syslog
Remote Logging
Reading Log Files
Logwatch
Log Aggregation
utmp And wtmp
Intrusion Detection And Prevention
Anti-Virus
Tripwire
Samhaim
Prelude
AIDE
Snort
Alerting With Snort
Snort Console
Reading Snort Traces With Wireshark
RootKitHunter
Users And Permissions
etc-shadow And etc-passwd Files
Creating Users
Securing Passwords
Cracking Passwords
Alternate User Management
AppArmor
Unix Permissions
SELinux
Modifying SELinux Permissions
Restoring SELinux Permissions
PAM
Utilities
netstat
Process Management – top And ps
Process Management – kill
nmap
OpenVAS
Nexpose
Find
tcpdump
Wireshark
lspci And lsusb
Kernel
Linux Kernel
Kernel Modules
Managing Kernel Parameters
Kernel Builds
Kernel Config
Viewing Kernel Config From Running Kernel
Firewalls
iptables
NAT With iptables
iptables Tables
Matching On Protocol
Rate limiting
New Versus Established Versus Related
Targets
iptables Logs
iptables With Multiple Interfaces
Firewalld
Zones And Services
Matching On Owner
ufw
gufw
Conclusion
What We Covered
What Comes Next
Wrap-Up
Introduction To Cloud Services
Introduction And About The Author
Service Models
Service And Deployment Models
Deployment Models Summary
Deployment Models And Benefits
Distributed Processing - The Reverse Cloud
Building Internal Cloud Hardware
Building Internal Cloud Software
Using An External Cloud
Securing The Infrastructure
Introduction
Framework
Policy Samples
Risk Management Introduction
Risk Assessment
Risk Management
Security Program And CIA
CIA
Types Of Security
Sensitive Data
Data Classification
AAA
Bastion Host - Part 1
Bastion Host - Part 2
Configuration Control
Security Training - Part 1
Security Training - Part 2
User Provisioning
Monitoring And Incident Response
Incident Response Process
Preparing For Cloud Use
Introduction And Framework For Governance
Planning For Cloud Use
Planning For Cloud Use - Readiness Tool
Security Controls
Enterprise Connect Zone
Web App Security
Security As A Service
Security Controls Summary
Due Diligence On The CSP
The Cloud Services Agreement
Required Services
NDA, Access And Compliance
Data Protection And Redundancy
Data Fault Tolerance And Redundancy
System Fault Tolerance And Redundancy
Connectivity Fault Tolerance And Redundancy
Notification And Penalties
CSP Prudent Management
Monitoring The CSP
Staying Secure In The Cloud
Cautious Implementation
Inspections - Monitoring And Metrics
Incident Response And Key Escrow
Agreement Monitoring And Enforcement
Wrap Up
Course Review
Introduction
What Is Forensics?
Professions Needing Forensics
What You Should Expect From This Video
What You Should Know
What You Will Learn
Legal Issues
Chain Of Custody
Evidence Acquisition
Validating Data Under Linux
Validating Data Under Windows
Expert Witness
Ethics For Experts
Evidence Storage
Rules Of Evidence
Investigations
Differences With Legal Investigations
Reasons For Corporate Investigations
Preparing For An Investigation
Forensic Workstation
EnCase
FTK
Coroners Toolkit
ProDiscover Basic
Audit Policies
Reporting
UNIX Tools
Sleuth Kit
DEFT Linux
Operating Systems
Windows Family
Mac OS X
Linux
Other Types Of Operating Systems
Boot Processes
File Systems: Windows-Based
File Systems: Linux
File Systems: Mac OS
File Systems: CD
RAID
Autostarting
Executable Types And Structure: Windows
Executable Types And Structure: Unix-Based
Disk Partitions
Image Acquisition
Image Formats
Image Acquisitions Under Linux
Image Acquisitions Under Windows
Volatile Information
Data Recovery
Hard Drives
Network Acquisitions
OSI Reference Model
TCP/IP
Network Attacks
Reasons For Network Acquisitions
Man In The Middle Attacks
Capturing Traffic
NetworkMiner
Other Network Tools
Wireless Networking
Wireless Tools
Firewalls And Their Uses
Intrusion Detection Systems
Data Spaces
Alternate Data Streams
Deleted Files
Hidden Partitions
Slack Space And Swap File
Registry
Virtual Memory
System Recovery Checkpoints: Windows
Audit Logs And Settings
Data Recovery
Graphics Files
Internet: Cache, Cookies, Etc.
Metadata
Log Files
Steganography
Steganography Techniques: Images And Video
Steganography Techniques: Audio And Documents
Steganalysis
Compression
Virtual Machines
Virtual Machines
Checkpoints
Data Formats
Hypervisors
Mobile Forensics
IOS
Android
Symbian OS
Tools
Memory Considerations
SIM Cards
Malware Forensics
Malware Forensics
Static Malware Analysis
Dynamic Malware Analysis
About Me
About Me
Getting Started
Introduction To Reversing
About The Author
Ethical Considerations
Reversing Tools - Part 1
Reversing Tools - Part 2
Reversing Tools - Part 3
Reversing Tools - Part 4
Reversing Tools - Part 5
Reversing Tools - Part 6
Reversing Compiled Windows Applications
Vulnerabilities - Part 1
Vulnerabilities - Part 2
Vulnerabilities - Part 3
Using Fuzzing - Part 1
Using Fuzzing - Part 2
Using Fuzzing - Part 3
Using Fuzzing - Part 4
Just Enough Assembly - Part 1
Just Enough Assembly - Part 2
Just Enough Assembly - Part 3
Stack Overflows - Part 1
Stack Overflows - Part 2
Stack Overflows - Part 3
Heap Overflows - Part 1
Heap Overflows - Part 2
Heap Overflows - Part 3
Heap Overflows - Part 4
Format String Bugs - Part 1
Format String Bugs - Part 2
Format String Bugs - Part 3
Format String Bugs - Part 4
Section Overflows
Windows Kernel Flaws
Decompilers
Automation - Part 1
Automation - Part 2
Reversing Compiled OS X Applications
Where Are The Vulnerabilities?
Locating Stack Overflows
Heap Overflows
Reversing Compiled Linux Applications
Where Are The Vulnerabilities?
Linux Stack Overflows - Part 1
Linux Stack Overflows - Part 2
Linux Stack Overflows - Part 3
Linux Stack Overflows - Part 4
Linux Stack Overflows - Part 5
Linux Heap Overflows - Part 1
Linux Heap Overflows - Part 2
Linux Heap Overflows - Part 3
Linux Heap Overflows - Part 4
Linux Kernel Flaws - Part 1
Linux Kernel Flaws - Part 2
Reversing Android Applications
Introduction To Android And ARM
Android Applications
Finding Other Vulnerabilities
Web Site Vulnerabilities
Database Vulnerabilities
Simple Exploits
Going From Vulnerability To Exploit
A Simple Exploit Script
Creating A Metasploit Module For An Exploit - Part 1
Creating A Metasploit Module For An Exploit - Part 2
Creating A Metasploit Module For An Exploit - Part 3
Exploit Payloads
Shellcode - Part 1
Shellcode - Part 2
Shellcode - Part 3
Shellcode - Part 4
Making Exploits Harder To Detect
Encoding Shellcode - Part 1
Encoding Shellcode - Part 2
Web Exploitation
Web Exploits In Metasploit
ARM Exploitation
Android Exploits In Metasploit
Future Directions
Wrap Up And Suggestions For Further Study
Introduction
Introduction And About The Author
What We Will Cover
System Requirements
Legal Issues
Penetration Testing
802.11
802.11 Basics
Frequencies
Access Points
Ad-Hoc Versus Infrastructure Mode
Wireless Modes - ABGN
SSID, ESSID And BSSID
MAC Address
Associations
Beaconing And Broadcasting
Access Point Basics
Enterprise Networks
WiFi In Windows
WiFi In Mac OS
WiFi In Linux
Securing Your Wireless Network
Authentication
802.1X
Radius
Encryption
WEP
WPA
WPA2
WPS
EAP
Hiding Your Network
Filtering
Network Segmentation
Default Configurations
Wireless Attack Tools
Built-In Tools
Kali Linux
Kismet
Aircrack-Ng
WiFi Explorer
Wireshark
Wireless Attack Toolkit
NetStumbler
Ettercap
Dsniff
Airpwn
Aireplay-Ng
Fern
WiFi Tap
Cowpatty
WiFi-Honey
Wireless Attacks
Using Wireshark
Capturing Network Packets
Monitor Mode
Investigating Packets
Filtering
Radio Traffic
War Driving
Frame Injection
RADIUS Replay
SSL Stripping
De-Authentication
Airodump
Fake Authentication
Access Point Attacks
Replay Attacks
Cracking WEP - Part 1
Cracking WEP - Part 2
Cracking WPA
Rogue Access Points
Man In The Middle Attacks
MAC Changes
Bluetooth
Bluetooth Overview
Bluetooth Authentication
Bluetooth Profiles
Bluesnarfer
Blueranger
BT Scanner
Protecting Bluetooth
Other Tools
Other Wireless
WiMax
Near Field Communication
ZigBee
RFID
Conclusion
What Have We Covered
Next Steps
Conclusion