Teach students to identify the threats against network infrastructures and build defensible networks that minimise the impact of attacks, as well as understand how to recognise and respond to attacks.
Defence Network Infrastructure
• Introducing Network Infrastructure as Targets for Attack• Impact of compromised routers and switches• Management policies and procedures• Escalating privileges at layers 2 and 3• Integrating and understanding existing and network devices to defend against attacks• Implementing the Cisco Gold Standard to Improve Security• CISecurity Level 1 and 2 Benchmarks for Routers• SANS Gold Standard switch configuration• Implementing security on an existing network and rolling out new devices• Advanced Layer 2 and 3 Controls• Routing protocol authentication• Filtering with access control lists• DHCP, ARP snooping, and Port Security• Introduction to Network Admission Control and 802.1x
Packet Analysis
• Architecture Design and Preparing Filters• Building intrusion detection capability into a network• Understanding the components currently in place• Detection Techniques and Measures• Understanding various types of traffic occurring on a network• Knowing how normal traffic works• Differentiating between attacks and normal users on a network• Advanced IP Packet Analysis• Performing deep packet inspection and understanding usage of key fields• Event correlation and analysis• Analyzing an entire network instead of a single device• Building advanced snort rules• Intrusion Detection Tools• Installing and using analysis software• Building custom filters
Pentesting
• Variety of Penetration Testing Methods• Frequency and use of vulnerability analysis, penetration testing, and security assessment• Vulnerability Analysis• How to perform vulnerability analysis• Key areas to identify and ways to fix potential problems• Key Tools and Techniques• Tools, techniques, and methods used in testing• Basic Pen Testing• Methods and means of performing a pen test• Focus, requirements, and outputs of a successful test• Prioritizing and remediation of issues• Advanced Pen Testing• Understanding and mapping to an organization infrastructure• Application testing and system analysis
First Responder
• Incident Handling Process and Analysis• Preparing for an incident• Identifying and responding• Containing a problem to preserve mission resilience• Identify and eradicate the problem• Recovery system data, including restoring to normal operation• Lesson learned and follow-up reporting• Forensics and Incident Response
| Module Content & Assessment | |
|---|---|
| Assessment Breakdown | % |
| Other Assessment(s) | 100 |