services


	IP TABLES AND FIREWALL
	OPEN LDAP
	MRTG
	NAGIOS
	NIDS USING SNORT
	NMAP NESSUS
	SQUID PROXY SERVER
	SAMBA SERVER
	TOMCAT WITH APACHE
	QMAIL SERVER

Duration 10 Hours

Download PDF

Nessus Security Scanner (http://www.nessus.org) for example, is one of the highest rated security/vulnerability scanners as rated by a Network Computing article. It relies heavily on Nmap to perform port scanning. Nmap is Enumeration Tools (Network Scanners). Nmap and Nessus have different types of scanning philosophies and understanding how they work can help you achieve success with your network scanning efforts. The Nessus server includes its own portscanning, service fingerprinting and operating system identification techniques that are similar but independent from Nmap’s. However, you may run into a situation where Nmap was run first and you already have the output from this tool and want to apply the results to your vulnerability scan. Configuring Nessus to run batch mode scans based on Nmap results.

Who Should Attend

System administrators, Security administrators, Network administrators and Software developers.

Prerequisites

Participants must have at least entry to mid-level administration knowledge, with good exposure to networking concepts. Working knowledge on Linux / Unix OS is essential.

Course Outline

NMAP - Port Scanner and Vulnerability Assessment Tool
Discuss Stage-1 host/network attack concepts
Discuss TCP handshake procedure
Discuss half-open/SYN connections
Perform connect and SYN-based host/network reconnaissance
Identify potential vulnerabilities on interesting hosts derived from reconnaissance
Examine NMAP logging capabilities
Perform port sweeps to identify common vulnerabilities across exposed systems
Secure exposed daemons/services
Perform follow-up audit to ensure security policy compliance
Obtain, and install current version of NMAP
Identify commonly used NMAPoptions/switches/parameters
Explain typical TCPhandshake protocol while using NMAP
Identifiy key NMAP configuration files
Upgrade NMAP reconnaissance tool to increase effectiveness
Identify NMAP files
Use NMAP to perform operating system fingerprinting
Peform subnet-wide ethical scans
Perform default TCPSYN-based ethical scans of local and remote resources
Examine the results of scans on remote Cisco firewall with debugging mode enabled
Perform default TCPConnect-based ethical scans of local and remote resources
Peform local ethical scans
Discuss NMAP's features and applications
Perform Connect/Syn/Fin and various ethical port-scans
Perform service exposure scans

Nessus Vulnerability Scanner
Prepare system for Nessus vulnerability scanner installation - identify/install dependencies
Register Nessus to obtain updated definitions
Activate Nessus subscription, server and client components
Perform basic Nessus system configuration and start the daemon
Use Nessus Linux client to connect to Nessus Server and perform scans
Examine resuls of scanning local and remote hosts
Evaluate results
Discuss vulnerability scanner capabilities and applications
Generate self-signed SSL/TLS certificates for secure client/server communications
Explore vulnerability scanner interface and features
Perform network-based reconnaissance attack to determine vulnerabilities
Examine results of the reconnaissance attack and archive results
Secure exposed vulnerabilities

Home \| Courses \| Modular Courses \| Workshop & Lab Courses \| Career Courses \| Training \| Services \| Contact Us
Copyright © 2010. Linobox Technology. All Rights Reserved.