PERFECT FOR COMPLETE BEGINNERS
This course is intended primarily for students who have little to no prior background or knowledge about the field of cyber security.
In the very first section, we will cover the basic terminologies used and discuss topics like the trinity of IT security and computer protocols.
You will learn the background of Cybersecurity & Hacking. You will learn what is cyber-security and the growing demand
for professionals. You will have clarity on what is a basic network, cia triad,essential terminologies used etc. You will go through an introduction to kali linux operating system in this section
You will gain insights on what is cyber security, what are the components, why you should choose this as a career. You will understand that cyber security is about protecting systems, networks, programs, data and money.
You will have an increased awareness of hacking as a profession, they will go through data breaches occurring in Yahoo, Equifax, Target stores, Sony’s play station network etc. You can understand how hacking can be as a profession, types of hackers, what is information risk management regime, companies with data breaches.
You will go through an introduction of what a security operations center is, what are the branches within cyber security
and the various job roles available within cyber security
You will understand network concepts, network topologies and layered communication in this course
We start off where we left, in the previous section 5 we dealt with the fundamental concepts such as Basic Network, CIA Triad, Network concepts, Security Operations Center and Job Roles. Section 6 starts with a refresher on network concepts, topologies etc and connects you to the previous section.
These two sections give a good insight on the OSI Model and all the Layers:
a)Physical layer b)Data link layer c)Network layer d)Transport layer e)Layered packet format f)Flow control g)Error control
f)Connection-orientedness vs connectionless g)Session layer and responsibilities h)Presentation layer and its
responsibilities i)Summary of layers
In this section you will learn important concepts like TCP/IP protocol suite and Domain name system hierarchy.
Section 10: Components of Hacking:
Section 11: Ethical hacking Mindmap
Places of ethical hacking
Section 12: DoS and DDoS
Denial of services
Symptoms of dos attack
Increase in spam emails
Unavailability of a resource
Loss of access to a website
Denial of access to any internet services
Distributed denial of services (DDoS)
DoS/DDoS attack techniques
Land and flood attacks
Service request floods
Section 13: SYN flooding attach using hping3
Section 14: Hacking : Counter Measures Strategies
DoS/DDoS countermeasure strategies
Detech and neutralize handlers
Monitoring the activities running on a system of network
Deflect attacks by load balancing
Mitigate attacks disabling unnecessary services
Intrusion detection systems
Section 15: Metasploit test
Metasploit is so popular is the wide range of tasks that it can perform to ease the work of penetration testing to make
systems more secure. Metasploit is available for all popular operating systems.
Section 16: Maltego Tool Demo
You will go through a demo of the maltego community edition 4.2.4
Section 17: Cyber kill chain methodology
You will gain insights on cyber kill chain methodology and how a traditional kill chain model works: recon,weaponize, deliver, exploit, install, c2, actions.
You will build their capability in information security attack vectors, phishing techniques, whaling and phishing mitigation. You will understand the types of ransom-wares, how crypto ransomware works, you will go through a real world example of a ransomware attack on the Bristol airport screens.
Section 19 & 20:
You will understand the various mitigation strategies, phishing & firewalls, intrusion detection and prevention systems. You will gain knowledge on zero-day exploit, malware and its types, man in the middle (mitm) attack and web application security.
You will gain real time insights on Security information and event management and Security event manager
You will identify threats and possible breaches and collect audit logs for security and compliance. You will be able to conduct investigations and provide evidence.
You will learn that Defense in Depth (DiD) is an approach to cybersecurity in which a series of defensive mechanisms are layered in order to protect valuable data and information.
You can understand how an attacker can come in and tries to understand how a corporate environment is setup of a target.
You will learn what SIEM and Log Management mean for businesses & how to use them more effectively to mitigate risk for your company.
You will learn that SIEM is necessary because of the rise in data breaches and to meet stringent compliance requirements
Learn the right approach to building SIEM use cases, how to organize and prioritize use cases effectively.
You will learn the SIEM elements, Big 3, Process flow, Features, Event life cycle, SOC controls and mgmt, SIEM architecture, Dashboards and Use cases
You will revisit features of SIEM and learn SIEM deployment options like self-hosted, self-managed to Hybrid-model, Jointly-managed. You will understand the business benefits of SIEM.
SIEM Essentials Quiz