GSM COURSE TUTORIAL

MICROSOFT

 
   
Course Name: Defending Windows Networks Training
   
Deployment Options: Onsite - Instructor-Led Training
   
Course Duration: 5-6 days depending on audience background and options
   
Related Courses
 
 
Introduction:
 
This lab-intensive, Windows network training course - a ENO Exclusive - goes beyond Official Microsoft Learning Product (OMLP) to illustrate defense techniques against real-world threats, instead of simply addressing software-security features.

In this advanced security course, you will learn how to protect a Windows Server Network from security threats. Get an introduction to the concepts and processes needed to protect against attacks on a Windows Network. Examine how attacks are performed, how they can compromise a Windows Server Network Infrastructure, and how you can lock down the network. This course covers Windows Server 2003, Windows Server 2008, Windows XP, and Windows Vista.
 
Audience:
 
The class is designed for Security/Network Administrators who have at least working knowledge of networking and network security.
 
Prerequisites:
 
It is recommended that the students should have a working knowledge of Windows administration, System Administration concepts, a basic understanding of computer security concepts, and a general understanding of viruses and anti-virus technologies.
 
Customize it:
 
This 5-6-day Windows Security course will be customized to your needs and specifications. Eno.com will assist you in identifying those needs and specifications. A word to the wise, there are many vendors of IT security training. They will typically have a broad and general course, one size fits all, already developed and just put your organization?s name on the title slide. This minimizes their effort and time investment. At Eno.com, every course is made to your exact and exacting specifications. We help you ensure what you are getting is what you really need even if at the beginning you weren't too sure of what that was. We fit the class to your needs. We never fit you into our standard, one size fits all, class. Please call or e-mail to schedule a no-obligation conference call to help us understand your audience background and training objectives.
 
Objectives:
 

What You'll Learn

  • Concepts and processes behind hacking
  • Prevalent security threats
  • Protect and defend against security threats
  • Leverage security policies proactively
  • Use the features of Windows Server 2008 and Vista to secure a Windows Network Infrastructure
 
Course Outline and Labs Taught
 

1. Security: Concept to Policy

  • Dispelling the Myths
  • Physical Security First
  • Defining Proprietary Data
  • The Secure Access Process
  • Developing and Enforcing Best Practices
  • Designing and Enforcing Security Policy
  • Best Practices

2. Encryption Technologies

  • Protecting Your Data
  • When Do We Need Encryption?
  • When Can You Lose Physical Control of Your Data?
  • Cryptography Basics
  • Symmetric Key Encryption
  • Public Key Infrastructures
  • Hybrid Cryptosystems
  • Certificate Services

3. Evaluating The Threat - Know Your Enemy

  • Know Your Enemy
  • Hacking Basics
  • Why Hack? Hacking Goals
  • What is Ethical Hacking?

4. Target Acquisition

  • Are You Asking to Be Hacked?
  • Target Acquisition: The Hit List
  • Choosing a Target
  • Creating a Target
  • Researching a Target
  • Footprinting: Who are You?
  • Why Windows Hacking Is Most Common
  • Best Practices

5. Sniffing Around

  • What's on Your Network?
  • What's on the Wire?
  • The Curse of Cleartext
  • What Does Your E-Mail Look Like on the Wire?
  • Monitors and Probes
  • Circumventing the Switch
  • Best Practice: Using IPSec

6. Compromising Windows Authentication

  • What is Your Weakest Link?
  • Are You Still Using Legacy Authentication?
  • Improved Windows Authentication
  • What Is a Good Password Policy?
  • Password Cracking
  • Security Policy in Windows
  • Alternative Login Methods
  • Best Practices

7. Account Discovery: Got Admin?

  • The End Game: Getting Admin Privileges
  • Security Principals
  • Understanding Windows Security ID
  • Anonymous Access and SIDs
  • Why it is Important to Hide the Identities of the Admin Accounts?
  • Best Practices

8. Trojan Horse = Workhorse

  • Beware of Geeks Bearing Gifts
  • The Trojan Horse Application
  • Trojans and Their Hosts
  • Simple Trojans
  • Evolving Trojans
  • Gaining Full Control
  • Best Practices vs. Trojans

9. Defeating and Defending the Firewall

  • Defeating the Firewall
  • Basic Firewall Functionality
  • Firewalls: Closing Ports at a Network Near You
  • How Hackers Get Invited In
  • Chatting with Your Trojan Horse
  • Phishing with USB Flash Drives
  • Hardware Firewalls
  • Windows Firewall
  • Best Practices

10. Defending Against Other Windows Exploits

  • Be Prepared
  • Penetration Testing and Vulnerability Scanning
  • The Buffer Overflow Attack
  • Metasploit Framework
  • Microsoft Baseline Security Analyzer
  • Windows Server Update Services
  • Windows Defender and Windows Live OneCare
  • Best Practices

11. Wireless Intrusion

  • Wireless Networking = No More Walls
  • Wireless Networking: Broadcasting Your Data over FM Radio
  • Sniffing Wireless
  • Spoofing Wireless Access Points
  • Cracking WEP and WPA
  • War Driving
  • Using WPA2 and RADIUS for Security
  • Best Practices

12. Using Windows Certificate Services

  • Using Certificate Services to Protect Your Data
  • DNS and Your Security
  • How to Steal a Web Site in Under a Minute
  • Taking the Guesswork out of Name Resolution
  • Deploying a Public Key Infrastructure
  • What Is a Certificate Authority?
  • Security Your E-mail
  • Smartcards and Other Alternative Logins
  • Best Practices

13. Laptops: Proprietary Data To Go?

  • Mobile Systems Means Mobile Data
  • Laptops Are Difficult to Secure
  • Encrypting File System
  • Using a Quarantine
  • Laptops and Driver Hacks
  • Best Practices

14. Balancing Security Policies

  • The Importance of Good Policy
  • Ease of Use vs. Security
  • How Far Can You Go with Group Policy
  • Application Needs and Configuration
  • Being the Smaller Target
  • Best Practices
 
Other Expertise:
 
Complete Training Catalog
Oracle Applications Training and Consulting
Peoplesoft Applications Training and Consulting
SAP Applications Training and Consulting
Security Technologies Training and Consulting
Telecommunications Training and Consulting
Wireless Technology Training and Consulting
 

For organizational purchases, please send us a message at salesinfo@eno.com or complete and submit this form .

 
Copyright E and A Information Services. All Rights Reserved.
Home About ENO.Com Clients Site Map-GSM Network Architecture, Operation, and Design Training Press Room Contact Us at 1-888-742-3214 CustomerService Search Consulting - GSM Training classes Onsite Training - GSM Training courses Course Catalog - GSM Tutorial Outlines Partners Resources Products and Services Solution by Industry Request Information Shopping Center Customer Service About Eno.Com Careers at ENO.com Legal Notices Privacy Policy