MindGrove Training Consultancy

HOME
Photographic image of World cities

ABOUT US

PROBING SYSTEM SECURITY

COURSE OVERVIEW

IT Auditors would prefer to be able to personally probe systems to get direct answers to questions concerning security vulnerabilities. Yet few IT Auditors are aware of the extent of low cost reliable software available to assist this process. This course provides a stimulating introduction to the probing of security relevant data and focuses on ethical non-invasive methods.

COURSE BENEFITS

Skills:

After completion of this course, you will be able to:

  • Search knowledge bases for security vulnerabilities

  • Describe the importance of planning patching and fixing regimes

  • Deploy tools to probe operating system security

  • Deploy tools and strategies to investigate user accounts, user permissions and user security

  • Appreciate how to analyse operating system and other logs

  • Appreciate and investigate data and database security

  • Deploy tools and strategies to investigate networks and network hosts

  • Build a personal toolbox of useful security utilities

Support Materials:

This course is accompanied by a manual that includes full briefing notes and a CD ROM of software to use during and after the course.

WHO SHOULD ATTEND

This intensive hands-on course is open to all, although staff with novice knowledge of IT Auditing are likely to find it too challenging. The heart of the course is in the deployment and use of non-invasive security and discovery tools. The result is a course where participants spend most of their time exploring systems with the training presenter.

COURSE Programme

System security at large

  • Sources of knowledge of system vulnerability

  • Searching the knowledge bases

  • Patching and fixing systems – commercial perspective

  • Patch tracking and identification

  • Patching and fixing systems – issues

  • Hardening of key software

Operating system security

  • Inventory scanners

  • Authentication scanners

  • Vulnerability scanners – UNIX and Windows

  • Free tools to help these jobs

User security

  • The visible and invisible user accounts – locating and extracting them

  • Atypical accounts

  • The user environment – resource access permissions

  • Static and mobile users

  • Logs of user activity

  • Logs – checking they are adequately configured

  • Logs – checking they represent an unbroken record

  • Logs – checking that they are anti-tamper

  • Logs – extracting data about jobs, people, events, administration

  • Filtering the wheat from the chaff

  • Important event Types

Data (base) security

  • The user perspective – data access permissions

  • Data encryption

  • Typical database infrastructures

  • Database vulnerability scanning

  • Free tools to help these jobs

Networks and networked hosts

  • Discovery scans – mapping the network

  • Deploying scanning tools – wired network

  • Deploying scanning tools – wireless network

  • Routers – basic and extended router operations

  • Routers – checking for router vulnerabilities

  • Routers – checking the rules

  • Firewalls – basic and extended firewall operations

  • Firewalls – checking the rules

  • Interpreting firewall data (logs)

  • False positives

  • IP addresses – construction and use

  • Tracing ownership of IP addresses

  • Free tools to help these jobs

PRESENTED BY:
This course is designed, developed and presented by MindGrove Ltd.

TRAINING

In-House Training

Public Course Schedule

Course Library

CONSULTANCY

RESOURCES

CLIENTS

CONTACT US

To discuss bringing this course in-house, please complete our on-line Enquiry Form or call us on 01925 732 757.

Copyright 2008 MindGrove Ltd.

Call us on +44 (0)1925 732 757

All rights reserved.
to discuss your requirements