|
|
1-800-THE-TREE (1-800-843-8733)
|
|
|
 |
|
Hands-On Vulnerability Assessment: Protecting Your OrganizationExposing Network Weaknesses
Course: 589
Type: Hands-On Training
Duration: 4 Days
You Will Learn How To
- Detect and respond to vulnerabilities that put your organization at risk using scanners
- Employ real-world exploits and evaluate their effect on your systems
- Configure vulnerability scanners
- Analyze the results of vulnerability scans
- Assess vulnerability alerts and advisories
- Establish a strategy for vulnerability management
Course Benefits Knowledge of vulnerability assessment and hacking techniques allows you to detect vulnerabilities before your networks are attacked. In this course, you learn to configure and use vulnerability scanners to detect weaknesses and prevent network exploitation. You acquire the knowledge to assess the risk to your enterprise from an array of vulnerabilities and to minimize your exposure to costly security breaches.Who Should Attend Security auditors, firewall/IDS personnel, PCI security testers, network managers and others involved in securing enterprise systems. Experience with network security at the level of Course 468, "System and Network Security Introduction," is assumed. A working knowledge of TCP/IP is also assumed.Hands-On Training Exercises provide you with practical experience assessing vulnerabilities and include:
- Configuring scanners
- Port scanning and enumeration
- Scanning infrastructure, servers and desktops
- Exploiting browsers, IDS, SQL and file services
- Investigating and preventing spyware
- Creating custom vulnerability tests
- Performing a risk assessment
- Interpreting scanning reports
- Identifying false positives and negatives
- Comparing scanner results
Course 589 Content
- Defining vulnerability, exploit, threat and risk
- Identifying the goals of assessments
- Creating a vulnerability report
- Conducting an initial scan
- Common Vulnerabilities and Exposure (CVE) list
- Vulnerability detection methods
- Types of scanners
- Port scanning and OS fingerprinting
- Enumerating targets to test information leakage
- Types of exploits: worm, spyware, backdoor, rootkits, Denial of Service (DoS)
- Deploying exploit frameworks
- Scanning the infrastructure
- Uncovering switch weaknesses
- Vulnerabilities in Ethereal and Wireshark
- Network management tool attacks
- Firewall weaknesses
- Identifying Snort IDS bypass attacks
- Corrupting memory and causing denial of service
- Scanning servers: assessing vulnerabilities on your network
- Uploading rogue scripts and file inclusion
- Catching input validation errors
- Performing buffer overflow attacks
- SQL injection
- Cross-site scripting (XSS) and cookie theft
- Scanning for desktop vulnerabilities
- Client buffer overflows
- Silent downloading: spyware and adware
- Attacking design errors
- Identifying browser plug-in weaknesses
- Choosing credentials, ports and dangerous tests
- Identifying dependencies
- Preventing false negatives
- Creating custom vulnerability tests
- Adding new Nessus scans
- Handling false positives
- Filtering and customizing reports
- Interpreting complex reports
- Contrasting the results of different scanners
- Producing a filtered report
- Using the National Vulnerability Database (NVD) to find relevant vulnerability and patch information
- Evaluating and investigating security alerts and advisories
- Determining vulnerability severity
- Employing the Common Vulnerability Scoring System (CVSS)
- Evaluating the impact of a successful attack
- Calculating vulnerability severity
- Weighing important risk factors
- Performing a risk assessment
- Applying a vulnerability process
- Standardizing scanning with Open Vulnerability Assessment Language (OVAL)
- Patch and configuration management
- Rewards for vulnerability discovery
- Bounties on hackers
- Markets for bugs and exploits
|
Related Courses
|
|
|
|
|
|
|
Print Friendly
E-mail a Colleague
Course FAQ
Course PDF
Home
