Tech100: A Systematic Approach to Vulnerability Testing

 

Description: This full-day workshop will provide a slightly different focus than some of the other network penetration seminars.  It will introduce a step by step approach to test a network for vulnerabilities. Using a checklist approach, the seminar guides the attendee though the necessary steps in performing this type of testing. This checklist details all the steps needed to complete an extensive technical review of the environment and includes a list of tools used including a number of web sites for obtaining additional information.

 

Audience: This seminar is intended for internal and external audit professionals, consultants and individuals who wish to learn more about performing attack and penetration testing.


Prerequisites: There is no prerequisite for this seminar.


Objectives: After completing this seminar, participants will be able to:

·         Recognize what the key steps are in performing this type of testing

·         Describe the latest threats faced by networks and operating systems

·         Explain the countermeasures used to protect organizations against the various attacks

·         Understand the many tools and techniques used to perform this work

·         Conduct an assessment and technical review of their organization's network and operating systems


Course Outline:

Network Security Fundamentals

·         Understanding TCP/IP

·         Reviewing routers, hubs and switches

Outlining an attack and penetration process using a checklist

Demonstrating possible attacks:

·         On web servers,

·         On the network and routers,

·         Though network packet sniffing

·         With denial of service attacks

Demonstrate how to test for workstation vulnerabilities using keystroke grabbers

Protecting Operating Systems and testing them with proven penetration attacks

·         UNIX,

·         Windows 2000

·         Windows 2003

·         Windows XP

Mr. Lewis’ seminar will draw upon his almost 30 years of experience in the areas of IT operations and information security in both industry and consulting and with his expertise in leading seminars around the world for over 20 years.

 

[Back to Seminars/Courses]