Workshop

06. Exploiting and Defending Networks
Trainer Nish Balla, Security Compass (CA)
Date 28-29 August 2006
Duration 2 Days
Price Rp. 9.000.000,-
Requirement Participants are required to bring their own laptops and must have administrative access to install software. VM-Player will be installed. Windows/Linux images will be provided for use during the class. It is recommended that the laptops have minimum 512MB of RAM.

 

Overview

The purpose of this course is to provide tech leads, testers, administrators, network administrators, help desk support and all other participants detailed security techniques and knowledge as applied to UNIX, Windows, and Network security. It goes from the very basic concepts of understanding of Operating Systems (UNIX & Windows), learning the concepts of attacking and protecting Operating Systems, Networks &l Network Devices. Participants would also learn how to take advantages of vulnerabilities tat might exists in an environment. The training will not only show the latest techniques for exploiting the environment, but also how to defend the organisation infrastructure against those weaknesses. Hands-on lab exercises reinforce the course material in a real world environment.

top ^

Course Outline

PART I - Introduction Understanding TCP/IP, Windows, and Unix

  1. TCP/IP
    1. Understanding the 3-way handshake
    2. Understanding UDP
    3. Understanding ICMP
  2. Windows
    1. Understanding Domains and Workgroups
    2. Domain Trust relationships
    3. Enumeration
    4. Understanding SIDs and RIDs
    5. Registry and SAM files
    6. Common services (Netbios, webservers, IIS)
  3. UNIX
    1. DIG/nslookup
    2. Users and groups (understanding Unix file permissions, user, group)
    3. Common servies (FTP, Telnet, SSH, TFTP, RPC, NFS)

PART II - Introduction Attack & Penetration

  1. Foot-printing
    1. whois
    2. Search engine
    3. Google hacking
    4. News-groups
    5. Corporate websites
    6. EDGAR
  2. Scanning
    1. Finding live hosts
    2. Port scanning (CONNECT, SYN, FIN)
    3. Passive network monitoring
  3. Enumeration
    1. OS Fingerprinting
    2. Detailing network service information (Banner grabbing, DNS information)
    3. Obtaining list of valid users and resources
    4. Passive network monitoring
    5. OS specific enumeration

PART III - Exploiting & Defending Windows

  1. Obtaining additional information
  2. Enumerating windows users and shares (net, nete, enum, local, global, nltest, dumpsec, getmac, epdump, ldp)
  3. Windows (sam, pwdump3, LSA secrets)
  4. Cracking passwords (l0phtcrack, john)
  5. Brute forcing (TS-Grind/SQL/Brutus)

PART IV - Exploiting & Defending UNIX

  1. Obtaining additional information
    1. User enumeration on UNIX
    2. Brute forcing
  2. Misconfigurations
    1. TFTP
    2. NFS (nfsshell)
    3. NIS
    4. X vulnerabilities (xscan)
  3. Obtaining and cracking password files
    1. Unix (/etc/shadow, NIS (ypcat))
    2. Buffer overflows (metasploit)

PART V - Exploting & Defending Web

  1. Server-based
    1. Identifying and scanning server
  2. Application-based
    1. Authentication
    2. Authorisation
    3. Exception management
    4. Input validation

top ^

About the tutor

Nischal Balla, the founder of Secrity Compass, is a specialist in product testing, code reviews, web application testing, host and network reviews.

Nish has co-authored "Buffer Overflow Attacks: Detect, Exploit & Prevent" and is a contributing author for "Windows XP Professional Security", "HackNotes: Network Security", "Writing Security Tools and Exploits" and "Hacking Exposed: Web Application, 2nd edition". Nish has also been involved in the open source project such as OWASP and YASSP. He also written articles for SecurityFocus and also spoken at web seminars for Global Knowledge and University of Florida.

He is a frequent speaker on emerging security issues. He has spoke at reputed security conferences such as at "Reverse Engineering Conference 2005" in Montreal, the "HackInTheBox 2005" in Malaysia and "ISC2's Infosec Conference" in Las Vegas and New York. He also has created and taught the Exploiting and Defending Classess for Security Compass. Some of the upcoming conferences he is going to be speaking at are "ISC2's Infosec Conference" in DC/Toronto, CSI's NetSec conference in Arizona and Dallascon.

Prior joining Security Compass, Nish was a Principal Consultant at Foundstone, where he performed numerouse security reviews (web application/code) for major software companies, online banking and trading & e-commerce sites. He also helped develop and teach the "Secure Coding" class, the Ultimate Hacking, Ultimate Web Hacking and Utimate Hacking Expert classess. Prior to working at Foundstone, Nish provided engineering and security consulting services as an independent consultant to a variety of organisations including Sun Microsystems, Lucent Technologies, TD Waterhouse & The Axa Group.

Nish holds his Master in Parallel Processing from Sheffield University, is a post graduate in Finance from Strathclyde University and a Bachelor in Commerce from Bangalore University.

For questions regarding event registration, please call +62-21-570-5800 (Ms. Astri). For general questions, please email bcs2006@bellua.com or send an empty message to bcs-announce-subscribe@bellua.com to receive future event information.

< back top ^

This document is available at PT BELLUA ASIA PACIFIC's website and protected by the copyright laws of the Republic of Indonesia and International treaties. All use subject to "DISCLAIMER" set forth at /disclaimer/