 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
||
|
|
Classes :: class description : Check Point Firewall
This exciting and informative two-day course is a must for network and system administrators who are responsible for the installation and administration of their FireWall-1 system. It is recommended that students new to Check Point's product attend this course before taking the more advanced CCSE class. The course starts with a product overview and discusses the basics of Firewall applications. It focuses on installation of the software, implementation, set-up, and installing and maintaining a security policy. Emphasis is placed on the core features including authentication, content security, and address translation. The format of the course contains extensive hands-on lab exercises accompanied by lecture and discussion, and students gain real-life experience installing FireWall-1, designing various corporate security policies and programming them into the FireWall-1 system. Both NT and Unix servers are discussed in this course.
Students must be familiar with basic Network Concepts and TCP/IP Procedures.
Module 1 - DNS and Whois · Courseware topics · Using DNS to gather data · Using whois to gather data Lab · Using whois and DNS queries to gather data · Tools include - whois, nslookup, samspade Module 2 - Web Site Data Gathering · Courseware topics · Gathering user information from company web sites · Gathering user information from newsgroups and mailing lists Module 3 - Network Scanning · Courseware topics · ICMP Scanning to find hosts · TCP and UDP Scanning to identify ports · Mapping Firewall rules with port scanning Lab · ICMP scan target hosts · TCP/UDP scan target hosts · Tools include - Fscan, Superscan, nmap Module 4 - Operating System and Application Identification · Courseware topics · Discuss why determining the operating system is necessary · Discuss how to determine an application and give example responses Lab · OS fingerprinting and Banner grabbing · Tools include - nmap, queso, telnet, netcat Module 5 - Remediation of Fingerprinting · Courseware topics · High level overview of how to stop/protect against each type of fingerprinting · Exploit Identification Module 6 - Using Scanners to find vulnerabilities · Courseware topics · Discuss what scanners can provide you and when they should be used · Discuss how to use Sara and Nessus Lab · Vulnerability scan using Sara · Vulnerability scan using Nessus · Tools include - Sara, Nessus Module 7 - Exploiting Routers · Courseware topics · SNMP enumeration · Modifying Access lists for additional access · Cracking passwords that can be used throughout the network Lab · SNMP Scans · Exploit of the web interface · Tools include - Network View, Solarwinds Module 8 - Exploiting Windows NT 4.0 · Courseware topics · Enumerating Windows NT · Exploiting default NT permissions and services · Password vulnerabilities Lab · Use null session to dump user, group, account policy information · SNMP scanning · Manual and automated brute force to obtain administrator · Password cracking · Tools included - Dumpsec, enum, NAT, etc. Module 9 - Exploiting Windows 2000 Server · Courseware topics · Enumeration through directory traversal · Buffer overflows and recent worms · NT 4.0 and Windows 2000 comparison Lab · Use directory traversal for web site defacement and root kit placement · Use buffer overflows to obtain admin privileges · Password cracking · Tools include - various exploit scripts Module 10 - Exploiting Solaris · Courseware topics · Common weaknesses · SMTP vulnerabilities Lab · SMTP Relay attack · RPC vulnerabilities · Print services vulnerabilities · Tools include - various exploit scripts Module 11 - Remediation of Operation System Exploits · Courseware topics · Preventative measures · Patching your system · System hardening Module 12 - Advanced Attack techniques · Courseware topics · Cascaded access · Backdoor / Remote Control through available ports · HTML exploits Module 13 - Security Best Practices · Courseware topics · Network design · Security Policies · Intrusion Detection
|
Overview
