Hands-On Vulnerability Assessment: Protecting Your Organization

Frequently Asked Questions

What is this course about? In this course, you run vulnerability* scans and observe exploits* to better secure networks, servers and workstations. You learn to assess the risk to your enterprise from specific vulnerabilities and to continually control your exposure to current security threats. Throughout this course, extensive hands-on exercises provide you with practical experience assessing recent vulnerabilities and analyzing "in the wild"* exploits. Who will benefit from this course? This course is valuable for those involved in securing enterprise systems. Typical participants include network and system administrators, technical managers, auditors, developers, computer security personnel and officers with direct involvement in security. What background do I need? It is assumed that you have a basic understanding of network security and security issues. For example, you should understand: TCP/IP networking Network security goals and concerns The roles of firewalls and intrusion detection systems Course 468, System and Network Security: A Comprehensive Introduction, provides the necessary background. A working knowledge of TCP/IP is also helpful. Course 367, TCP/IP: A Comprehensive Hands-On Introduction, offers the necessary experience. What types of vulnerability are covered in this course? This course focuses on vulnerabilities that affect network infrastructures, servers, and workstations. You explore vulnerabilities introduced by software errors, problems inherent in core network protocols, and risks resulting from insecure system configurations. Will I learn what methods attackers use to break into systems? Yes. You learn how attackers conduct reconnaissance, assess system vulnerabilities and deploy exploits. Will I learn hacking techniques? Yes. You learn the basics about exploits that lead to denial-of-service (DoS), unauthorized system access, data eavesdropping and other system compromises. You learn how servers are "rooted" by privilege escalation and SQL injection. You also conduct directory transversal, buffer overflows and cross-site scripting attacks. Will I learn how to use vulnerability scanners? Yes! You learn in detail the use and configuration of ISS Internet Scanner, eEye Retina Scanner, and the popular scanner, Nessus. Will I learn how to hack? No. In this course, you observe an array of exploits to demonstrate how attacks work, so that scanners can be used more effectively. The overall goal of the course is to discover vulnerabilities and prevent hacking. Will this course help me prepare for the CISSP Certification examination? Yes, this course helps you prepare for multiple domains on the CISSP Certification exam. For more information, please refer to the CISSP Q&A. Does this course provide me with (ISC)2 continuing professional education (CPE) credits? Yes! Learning Tree, in agreement with (ISC)2, is a recognized "Trusted CPE Provider." This course provides you with 32 "A-level" CPE credits toward maintaining your CISSP Certification. Please see the CISSP Q&A for more information on the continuing education requirements of (ISC)2. Glossary Exploit:  - a program or technique that takes advantage of a vulnerability in software that can be used for breaking security or otherwise attacking a host. Vulnerability:  - a flaw or weakness in a system's design, implementation or operation and management that can be exploited to violate the system's security. In the Wild:  - a live exploit in active use. In the Wild does not refer to in-lab testing or discovery. How much time is devoted to each topic? Content Hours Fundamentals of vulnerabilities, scanners and exploits 5.5 Analyzing vulnerabilities and exploits on the infrastructure, server and desktop 10 Configuring scanners and generating reports 2.5 Assessing risks in a changing environment 3.0 Managing vulnerabilities 1.5 Controversies of vulnerability assessment 0.5 Times, including the workshops, are estimates; exact times may vary according to the needs of each class. Are the tools based on UNIX/Linux or Windows platforms? Both UNIX/Linux and Windows-based tools are used throughout the course. Exercises are performed using Red Hat Linux and Windows XP/2003. What kinds of hands-on exercises are in the course? Approximately 40 percent of class time is spent on hands-on exercises. The exercises are designed to give you hands-on experience assessing vulnerabilities and analyzing attack methods and exploit scenarios. You configure and run several powerful vulnerability scanners and compare the reports generated by various types of scans. In addition, you execute many exploits and observe their operation, assess impact and learn how the vulnerability may be detected. Will I learn defensive measures in this course? You learn general defenses for a wide range of vulnerabilities and exploits. This course helps you determine how to prioritize your defensive efforts so that the most severe risks may be addressed early. You see how proactive measures can prevent many attacks. This course does not provide detailed steps for configuring Web servers, firewalls, or Intrusion Detection Systems (IDS). These topics are covered in other courses within the security curriculum, including Course 588, Detecting and Analyzing Intrusions: Hands-On, and Course 940, Securing Web Applications, Services and Servers: Hands-On. How is this course different from Course 537? Course 537, Ethical Hacking and Countermeasures: Hands-On, focuses on learning and practicing a hacking methodology useful for testing network security. It involves intelligence gathering, scanning and exploitation of systems and networks. While Course 589 focuses on detection and remediation of vulnerabilities for your organization, Course 537 concentrates on exploitation and hacking techniques in a case study form. How does this course relate to other Learning Tree courses? 420, Securing Wireless Networks: Hands-On provides the skills to defend against attacks and maintain security within your wireless network 941, Controlling Network Access: Hands-On provides the practical skills and knowledge required to perform information assurance that protects data integrity and maintains organizational credibility 367, TCP/IP: A Comprehensive Hands-On Introduction provides a comprehensive technical introduction to TCP/IP, which is valuable for understanding vulnerabilities 537, Ethical Hacking and Countermeasures: Hands-On enables you to deploy ethical hacking to expose weaknesses in your organization and select countermeasures 940, Securing Web Applications, Services and Servers: Hands-On provides in-depth, hands-on experience securing Web-based applications and host servers within your organization 433, UNIX® and Linux® Security: Hands-On enables you to understand, assess, and combat threats to the security of your UNIX platforms by taking advantage of tools and utilities to defend against threats and maintain system integrity 536, Computer Forensics and Incident Response: Hands-On provides you with extensive experience in the latest Windows-based computer forensic techniques