 General informationCode: HAVE
Duration: 5 days
Present: 10 Maximum
Price: 2790 HT Public concerned- RSSI
- Engineer/Technician
- Administrator network
Pre-necessary- Administration network
- TCP/IP
Means- Support of complete course (450 pages)
- 70% of practical exercises
- 1 PC by anybody
- Windows/Linux environment of demonstration and
practical application
Objectives- To implement an architecture network made safe, in
a Windows/Linux environment
- To include/understand the problems related to the
attacks network
- To integrate tools of safety and monitoring
network
- To deploy solutions Firewall, VPN, PKI, IDS, Proxy
under linux and Windows
| Description This formation will help you to conceive a
protected infrastructure advanced on a homogeneous or heterogeneous
network (analog and digital system Linux, Windows, Solaris...).
The stress is laid on the study of the protocols, the software
and the existing hardware, then on the practical application of the
attacks and the integration of solutions of adapted safety measures. You will learn how there to integrate the most known
solutions of safety according to their compatibility with the existing
sytèmes, and their performances according to your needs. The
stress is laid on the detailed presentation, the installation and the
administration of the free solutions (Netfilter, Snort, IPCOP,
FWbuilder, Squid...) and commercial (ISA, Checkpoint...); with their
forces and weaknesses for various types of S.I the solutions are also
studied to make safe a system against the distant attacks and
networks, as well as the implementation of channels of communication
made safe on Internet, of the type VPN, PKI, and various protected
protocols... |
Day 1 & 2- Protected system
- Definition
- Methodology
- Patchs of safety, under Windows, Solaris, Linux, HP-UX &
System BSD
- Logs, under Windows, Solaris & Linux
- Authentification
- Under Windows: Activate Directory
- Under Unix LDAP Samba
- To return more on its system
- The antivirus
- The antione
- Firewall
- Alternatives
- Hardening the OS
- The dangers which watch for us
- Trojans news poured
- Known attacks
- Social engineering
- Concept of exploit
- Keyloggers
- Rootkits
- Attacks of the network type
- Seek of a target
- The enumeration
- Consequences
| Days 3,4 & 5
- Firewalls of company: Considerations and
installation.
- Methodologies of Firewalling
- ISA 2004
- Checkpoint
- Free solutions
- Projections
- Ids: intrusion detection system
- Principle of IDS
- Methods of detection
- Problems related to IDS
- Limits of IDS
- Techniques of escape HTTP
- Shellcodes
- Installation and visualization of the logs with SNORT
- Proxy
- Transparent Proxy under Linux
- Installation of a proxy with authentification under ISA
2004
- The protocols current networks against the attacks
- The DMZ
- NAT/internal Forwarding Port/DNS
- Zones of decontamination
- Encodings of the traffic
- The PKI (Public Key Infrastructure)
- VPN
|
