Difference between revisions of "SEC52O Weekly Schedule"

Revision as of 12:52, 1 February 2018

This WIKI is a Draft
This is NOT a finalized version for SEC520. This SEC520 WIKI resource is scheduled to be used for the Fall 2012 sesemster.

Week

Objectives and Tasks

Course Notes / Assigned Reading

Labs

Week 1

Course Introduction:

SEC520 WIKI
Course Outline
Course Policies
Required Materials
Lab Setup

Developing a "Security Mind":

4 Virtues of Internet Security
8 Rules of Internet Security
Penetration Testing:

Reconnaissance:

Information Gathering
Foot-printing
User Information
Verification

Slides (Concepts):

[ odp ] [ pdf ] [ ppt ] Course Intro / The "Security Mind"
[ odp ] [ pdf ] [ ppt ] Penetration Testing: Reconnaissance

Reading References:

YouTube Videos:

Reconnaissance

Resources:

Lab 1:

Set-Up for Labs:

Setup Hard Disk Pack for Labs

Lab 2:

Pentration Testing:

Reconnaissance

Week 2

Scanning, Enumeration, & Vulnerability Testing:

Penetration Testing (Continued):

Scanning
Enumeration

Vulnerability Testing

Slides (Concepts):

[ odp ] [ pdf ] [ ppt ] Scanning & Enumeration
[ odp ] [ pdf ] [ ppt ] Vulnerability Testing

Reading References:

YouTube Videos:

Resources:

ATLAS Web-page (Active Threat Level Analysis System)

Lab 3:

Penetration Testing / Continued:

WARNING!
Scanning ports must require the permission of Server Owner (preferably in writing). Student must either work in Security lab to scan each others' ports, or sign an agreement to scan the Tank server within or outside Seneca College.

Scanning, Enumeration, & Vulnerability Testing

Assignment #1 Posted:

Details

Week 3

System Hardening in Linux:

Purpose
Rule of Preventative Action
Rule of Separation
Rule of Least Privilege

AAA Protocol (Authentication):

PKI
PAM
Kerebos

Slides (Concepts):

[ odp ] [ pdf ] [ ppt ] Linux Hardening (part 1)

Reading References:

YouTube Videos:

Linux Hardening

Part1 | Part 2 | Part 3

PAM

Resources:

Understanding and Configuring PAM

Lab 4:

System Hardening

Linux System Hardening (part 1)

Week 4

System Hardening in Linux / Continued:

AAA Protocol (Authorization):

ACLs
SELinux
Sudo
Cron Jobs
Turning Off Xwindows

Slides (Concepts):

[ odp ] [ pdf ] [ ppt ] Linux Hardening (part 2)

YouTube Videos:

Reading References:

Resources:

Lab 5:

System Hardening

Linux System Hardening (part 2)

Week 5

Midterm (Test #1) Review:

Complete Labs 1 - 5
Submit Assignment #1
Review for Midterm

Assignment #1 Due:

Assignment Submission Instructions

Week 6

Midterm (Test #1):

Test Details

Week 7

Types of Attacks:

Client-side Attacks

Phishing
Webbrowser - Malicious Payloads
IP Spoofing (Man in the Middle) / Password

Server-side Attacks

Out-dated Software Patches
Database Injection
Password Cracking

Slides (Concepts):

[ odp ] [ pdf ] [ ppt ] Types of Attacks

YouTube Videos:

Reading References:

Lab 6:

Attack Categories:

WARNING!
Scanning ports and exploiting servers must require the permission of Server Owner (preferably in writing). Student must either work in Security lab to scan each others' ports, or sign an agreement to scan the Tank server within or outside Seneca College.

Types of Attacks

Study Week

Week 8

Hardening Windows 2003 Server:

Installing and Configuring Security Configuration Wizard
Using New Technology File System (NTSF)
Configuring Automatic Updates

Slides (Concepts):

[ odp ] [ pdf ] [ ppt ] Hardening Windows

Reading References:

Hardening Windows, 2nd Edition
(Chapter 5 - Pages: )

YouTube Videos:

Security Configuration Wizard 2003

Resources:

Lab 7:

Hardening Windows 2003 Server

Week 9

Intrusion Detection:

Purpose
Logs
Monitoring
Iptables
Using Tripwire

Slides (Concepts):

[ odp ] [ pdf ] [ ppt ] Intrusion Detection / Using Tripwire

Reading References:

Intrusion Discovery - Linux

Linux Security Cookbook
(Chapter 1 - Pages: )

YouTube Videos:

Iptables

Additional Resources (for interest):

Intrusion Discovery - Windows

Lab 8:

Intrusion Detection

Assignment #2 Posted:

Details

Week 10

Additional Considerations:

Decoys: Honey-Pots
Disaster Recovery
The BIGGER Picture

Slides:

[odp] [pdf] [ppt] Additional Considerations

Reading References:

YouTube Videos:

Resources:

Week 11

Test #2:

Test Details

Week 12

Assignment #2 Evaluation:

Presentations
Evaluate Secured System

Assignment #2 Due:

Assignment Submission Instructions

Week 13

Final Exam Review

Details

Exam Week - TBA

@@ Line 45: / Line 45: @@
 :'''Reading References:'''
-::* [http://libcat.senecac.on.ca/vwebv/holdingsInfo?searchId=86056&recCount=50&recPointer=0&bibId=263746 Inside the Security Mind, Making the Tough Decisions (E-Book)]  (Chapters 1 - 3)
+<!-- DEAD LINKS::* [http://libcat.senecac.on.ca/vwebv/holdingsInfo?searchId=86056&recCount=50&recPointer=0&bibId=263746 Inside the Security Mind, Making the Tough Decisions (E-Book)]  (Chapters 1 - 3)-->
-::* [http://libcat.senecac.on.ca/vwebv/holdingsInfo?searchId=89542&recCount=50&recPointer=0&bibId=315433 Penetration Tester's Open Source Toolkit (E-book)]<br />(Chapter 2: Reconnaissance)
+<!-- DEAD LINKS::* [http://libcat.senecac.on.ca/vwebv/holdingsInfo?searchId=89542&recCount=50&recPointer=0&bibId=315433 Penetration Tester's Open Source Toolkit (E-book)]<br />(Chapter 2: Reconnaissance)-->
 :'''YouTube Videos:'''
@@ Line 91: / Line 91: @@
 :'''Reading References:'''
-::* [http://libcat.senecac.on.ca/vwebv/holdingsInfo?searchId=89542&recCount=50&recPointer=0&bibId=315433 Penetration Tester's Open Source Toolkit (E-book)]<br />(Chapter 3)
+<!-- DEAD LINK::* [http://libcat.senecac.on.ca/vwebv/holdingsInfo?searchId=89542&recCount=50&recPointer=0&bibId=315433 Penetration Tester's Open Source Toolkit (E-book)]<br />(Chapter 3)-->
 :'''YouTube Videos:'''
@@ Line 102: / Line 102: @@
 :'''Resources:'''
 ::*[http://atlas.arbor.net/ ATLAS Web-page] (Active Threat Level Analysis System)
-::*[http://www.sans.org/top-cyber-security-risks/summary.php Top Security Risks 2009 (SANS Institute)]
+<!-- DEAD LINK::*[http://www.sans.org/top-cyber-security-risks/summary.php Top Security Risks 2009 (SANS Institute)]-->
@@ Line 149: / Line 149: @@
 :'''Reading References:'''
-::*[http://lcweb.senecac.on.ca:2063/0596003919 Linux Security Cookbook (E-book)]<br />(Chapter 4 - Pages: )
+<!-- DEAD LINK::*[http://lcweb.senecac.on.ca:2063/0596003919 Linux Security Cookbook (E-book)]<br />(Chapter 4 - Pages: )-->
 :'''YouTube Videos:'''
@@ Line 198: / Line 198: @@
 :'''Reading References:'''
-::*[http://lcweb.senecac.on.ca:2063/0596003919 Linux Security Cookbook]<br />(Chapter 5 - Pages: )
+<!-- DEAD LINKS::*[http://lcweb.senecac.on.ca:2063/0596003919 Linux Security Cookbook]<br />(Chapter 5 - Pages: )-->
-::*[http://lcweb.senecac.on.ca:2063/0131963694?uicode=seneca SELinux by Example]<br />(Chapter x - Pages: )
+<!-- DEAD LINKS::*[http://lcweb.senecac.on.ca:2063/0131963694?uicode=seneca SELinux by Example]<br />(Chapter x - Pages: )-->
 :'''Resources:'''
@@ Line 288: / Line 288: @@
 ::*[http://www.youtube.com/watch?v=-hd7XG-b6uk IP Spoofing]
 ::*[http://www.youtube.com/watch?v=AhTfo6pWBIM Database Injection]
-::*[http://www.youtube.com/watch?v=Iyh_w0Ix2bc Password Cracking]
+<!-- DEAD LINKS::*[http://www.youtube.com/watch?v=Iyh_w0Ix2bc Password Cracking]-->
 :'''Reading References:'''
-::* [http://libcat.senecac.on.ca/vwebv/holdingsInfo?searchId=89542&recCount=50&recPointer=0&bibId=315433 Penetration Tester's Open Source Toolkit (E-book)]<br />(Chapters 4,5,6)
+<!-- DEAD LINKS::* [http://libcat.senecac.on.ca/vwebv/holdingsInfo?searchId=89542&recCount=50&recPointer=0&bibId=315433 Penetration Tester's Open Source Toolkit (E-book)]<br />(Chapters 4,5,6)-->
 |

Difference between revisions of "SEC52O Weekly Schedule"

Revision as of 12:52, 1 February 2018

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

get involved with CDOT

courses

course projects

links

Tools