Assessing & Securing the Perimeter

SEC-208

Mastery of multiple security techniques are required to defend your network from remote attacks. InfoSec Institute’s Assessing and Securing the Perimeter takes you there 

WHAT'S ON THIS PAGE?

GET QUOTE

Course Overview

COURSE LENGTH:
5-DAY


Today’s network perimeter is no longer a single boundary that is easily definable. This makes defending the perimeter a very difficult task, that requires an information security professional to know a diverse set of technologies and applications.

 

Hands On Labs:

Perimeter defenders learn more by doing, so hands-on problem solving is a primary component of this course. Expect to spend 50% of your time deep in hands-on lab work. You will learn a variety of open source and commercial products in this course.


Who Should Attend



AS SEEN IN:

 

 

Learn from Experts in the field of Information Security:
We don't just have great instructors, our instructors have years of industry experience and are recognized as experts. InfoSec Institute instructors have authored many top selling Information Security books:

 

  • The most hands-on 360 degree security class offered by anyone.

  • Learn to master commercial & open source security applications
FIND OUT PRICING
ON-SITES OFFERED
"Great instructor - thoroughly covered all topics with expertise. He focused our attention to the pertinent information. ... a great experience"

Jeremy J. Pearson,
Joint Staff, Pentagon

What You'll LEARN & DO

InfoSec Institute prepares you to defend the modern perimeter from attack by focusing on the following modules:

 

 

Day 1 – TCP/IP Weapons School and Defenses

  • Packet Investigation Tools
  • Wireshark
  • dsniff
  • OSI Layer 2 Attacks and Defenses
  • Address Resolution Protocol (ARP)
  • ARP spoofing
  • Session Hijacking
  • OSI Layer 3 Attacks and Defenses
  • IP Header Fields
  • Packet Fragmentation
  • Covert Channels
  • OSI Layer 4 & 5 Attacks and Defenses’
  • TCP & UDP Headers
  • TCP Sequence Numbers
  • Port Scanning Prevention
  • ICMP Traffic Control
  • IPv6 Attacks and Defenses
  • IPv6 Headers and Addressing
  • IPv6 Attacks
  • SLAAC Attacks

 

Day 2 - Firewall and Router Defenses

  • Secure DMZ Design
  • Network Address Translation
  • NAT Security Concerns
  • Packet Filtering
  • Vulnerability of packet filtering devices
  • Stateful Inspection
  • Stateful Inspection Security Considerations
  • Border & Gateway Routers
  • Border Router Filtering Best Practices
  • Proxy Devices
  • Proxy Settings and Security
  • Enterprise Firewall Rule Management
  • Top 10 Most Common Cisco router attacks and defenses

 

Day 3 - Security Event Monitoring and Detection

  • Intrusion Detection and Prevention
  • How to write IDS Rules
  • Detecting Attacks
  • Network abuse signatures
  • Attack Signatures
  • Advanced Attack Signatures
  • Remote exploit command shell signatures
  • Network mapping with NMAP
  • Identifying and responding to DDoS attacks
  • False Positive Analysis
  • False Negative Analysis
  • Security Device Log Analysis
  • Antivirus Log Analysis
  • Unified Threat Management
  • SIM Architecture
  • NTP settings
  • Firewall log detection

 


 

 

 

Day 4 - Operating System Security and Remote Access Security

  • Virtual Private Network (VPN) Security
  • IPSEC Overview
  • IPSEC VPNs
    SSL VPNs
  • VPN design considerations
  • Wireless Security
  • WEP, WPA, WPA2
  • 802.1x Security
  • Network Access Control
  • NAC vs. Cisco NAC
  • Securing Servers
  • Patching
  • Password Security
  • Policy Management
  • Automated hardening tools / scripts
  • Securing DNS
  • Securing Web Servers
  • Securing SMTP
  • Vulnerability Assessment

 

 

 

Day 5 - Securing Web Applications and Client Security

  • Client Attacks
  • Spearphishing
  • Attacking and Defending Microsoft Office
  • Attacking and Defending Internet Browsers
  • OWASP Top 10 Application Security Risks
  • Cross Site Scripting
  • Directory Traversal
  • Web Application Vulnerability Scanners


Dates & Locations




Unfortuantely, no public enrollment courses currently match your criteria

Your name can be added to a wait list for an upcomming course, or we can schedule to run an On-Site course in your local area if you have 6 students or more. Complete the following form if you would like to recieve information concerning our wait list policy and/or On-Site training

Full Name:
Company:
Work Phone #:
Email:
Any questions we can answer?
(optional)
 

The best in the world come train with us

See what our students are saying

  • David P. Curly

    Senior Consultant

    Booz Allen Hamilton

    "a must for any true
    security professional"

    "This was a phenomenal class! The instructor was extremely knowledgeable and crafted the exercises so that we truly learned the material. I have a whole new appreciation for how vulnerabilities are exploited. I have gained very practical skills and knowledge in this class which will help me tremendously in my job. I will highly recommend this course to all of my co-workers. This class should be a must for any true security professional. There were several moments during the week when I was amazed at how vulnerable systems truly are. The practical labs and competition teams made the experience fun. I have learned some extremely valuable skills."


    Find out more

  • Adam Robertson.

    Experian

    "hands on lab exercises was the most enjoyable part"

    "Instructor was very knowledgeable and was able to explain a huge amount of information in a very short period of time. The course was very informative; doing the hands on lab exercises was the most enjoyable part of the course, as I found it to be the best way to learn."


    Find out more

  • Virgil Sabas

    SAIC

    "nice to have a dedicated training laptop provided"

    "I got a lot out of the real world scenarios presented in class. Jeremy is very knowledgeable in the field of penetration testing. Would definitely take classes again if he is the instructor. The course books are a great reference, and it was nice to have a dedicated training laptop provided by Infosec and not have to bring my own and waste time installing programs during class"


    Find out more

  • Rummy Dabgotra

    MTS Allstream

    "invaluable to my career"

    "Dan is an excellent instructor and incredibly knowledgeable. Great presenter and very helpful. The course was very intense but well structured. The hours were long but it really allows you to get your head wrapped around it. Slide notes were very good as well as the lab pre-info. The labs tied well into the course. The content and knowledge gained will be invaluable to my career."


    Find out more

Related Courses, Tracks, & Prerequisites

Prerequisites:

  • Firm understanding of the Windows Operating System
  • Firm understanding of computer architecture concepts
  • Grasp of the TCP/IP protocols

 

Career Path-Related Courses

 

Pricing

Call (866)-471-0059 or fill out this short form for current pricing

During the 5 day program, our instructors give you 100% of their time and dedication to ensure that your time
is well spent. You will receive an all-inclusive immersion experience by receiving your hotel stay and most meals
during your training experience; you eat, sleep and train at the learning facility with no distractions!

YOU ALSO GET

  • Course Materials, Pre-study

    Upon registration, InfoSec Institute will ship you targeted pre-study courseware that will enable you to get a jump on the material prior to the class. We also make available many free training resources, produced by our instructors: http://resources.infosecinstitute.com/

  • Class Guarantees!

    Small class size provides intimate learning setting not offered at any of our competitors.


    All meals, snacks and refreshments included. Snacks not included in Las Vegas courses.


    Lecture, Lab Exercise and Text book


GET YOUR QUOTE - INSTANTLY
OUR STUDENTS SAY:
InfoSec Institute has an excellent instructor and this is the best IT security class I have ever taken. His knowledge and method of teaching are unsurpassed.