Operating Systems Security |
| Operating Systems Security |
The Operating System Security is an ideal course for anyone charged with securing Operating systems. From securing a desktop, to the high availability options available on the platform, to directory services options, this course is going to be a swift overview of Windows 2003, Linux and Sun Solaris.
|
| Why should you attend this course? |
|
Throughout this course we will focus on reviewing existing exploits and the basic concepts and challenges of securing the Operating Systems. We then move on to the standard security measures that should always be employed, and the usability implications of each.
|
| Who should attend this course? |
|
If you're a newcomer to the field of information security but a long time user of these Operating Systems or a newcomer to these Operating Systems but a long time information security expert, this is the course for you. You will develop skills that will help you to bridge the gap between the Operating Systems administrators and the security administrators in most organizations; and you will learn the ins and outs of keeping your data private. |
| Course Contents |
By the end of the course participants will be able to:
Windows 2003
Section One – General Windows 2003 Security
- Module 1: Object Oriented Design
- Module 2: Underlying Principles of Security Architecture
- Module 3: Security Terminology
|
|
Session Two - Attacking Window System Information
- Module 4: Gathering system information
- Module 5: Interpreting important information
|
|
Session Three – Physical Security
- Module 6: BIOS Password
- Module 7: Password protected screen saver
- Module 8: Number of Windows platforms on a machine
|
|
Session Four – Securities Policies
- Module 9: Basic Guidelines
- Module 10: Windows NT Security Policies
- Module 11: Local Security Policy
- Module 12: Global Policy
|
|
Session Five – User Rights Assignment
- Module 13: Security Options
- Module 14: Account Lockout Policy
- Module 15: Password Policy
|
|
Session Six – Operating System Security
- Module 16: Version of OS
- Module 17: Patches and Service Packs
- Module 18: Checking for hot fixes and service packs
- Module 19: Using hfnetchk
- Module 20: Software Inventory
- Module 21: Alternative OS Support
- Module 22: Drives and file systems
- Module 23: NTFS, FAT
- Module 24: Introduction to Access Control
- Module 25: Shares and Share Security
- Module 26: File/Folder permissions and Encryption
|
|
Session Seven – Network Security
- Module 27: Find Open Ports
- Module 28: Determine services keeping open ports
- Module 29: Unnecessary and necessary services
- Module 30: Dangerous network protocols
- Module 31: Network settings to avoid DoS attacks
|
|
Session Eight – IIS Security
- Module 32: ODBC connections security
- Module 33: IIS installation location
- Module 34: IIS components
- Module 35: Services required for IIS
- Module 36: FPSE Security
- Module 37: ACLs on virtual directories
- Module 38: Sample files and websites
- Module 39: Script mappings
|
|
Session Nine – Internet Explorer Security
|
|
Session Ten – Miscellaneous
- Module 40: Registry Security
- Module 41: Event Log configuration
- Module 42: Backup procedures
- Module 43: Virus Protection
|
|
Section Eleven – Active Directory
- Module 44: Integrated Zones
- Module 45: Sites, domains and organizational units
- Module 46: AD Groups
- Module 47: AD redundancy
- Module 48: Group Policy Objects
|
|
Linux
Session Twelve – User and Group Security
- Module 49: Check Local User Accounts and Group Accounts
- Module 50: Check password security
- Module 51: Startup files in /etc/rc.d
- Module 52: Network services
- Module 53: Critical network files
- Module 54: NFS Security
|
|
Session Thirteen –Users and Groups
- Module 55: Procedure of adding / removing users
- Module 56: User security policy
- Module 57: Securing root
- Module 58: List of users
- Module 59: Password and Account Policy
- Module 60: /etc/shadow and /etc/password files
- Module 61: Cracking user passwords
- Module 62: Group membership
- Module 63: The wheel group
- Module 64: User quotas
|
|
Session Fourteen – File System Security
- Module 65: List of File Systems
- Module 66: Using lsof
- Module 67: Determine disk usage
- Module 68: UNIX file permission
- Module 69: SUID and SGID files
- Module 70: Umask
- Module 71: Permissions on critical files and folders File integrity mechanisms – Tripwire, MD5
- Module 72: Permissions on critical files and folders File integrity mechanisms – Tripwire, MD5
|
|
Sun Solaris
Session Fifteen – Physical Security
- Module 73: General Checks
- Module 74: The Server itself
- Module 75: EEPROM Security
- Module 76: GUI Security
|
|
Session Sixteen – Operating System
- Module 77: Identify Vendor and Version
- Module 78: Processes on Unix systems
- Module 79: Hardware and software inventory
- Module 80: Security patches
- Module 81: Cron and At
- Module 82: Logging
|
|
Session Seventeen – Network Security
- Module 83: Determine Network Interfaces
- Module 84: Network connections
- Module 85: Unix Services /etc/inetd.conf
- Module 86: Startup files in /etc/rc.d
- Module 87: Critical network files
- Module 88: Network services
- Module 89: NFS Security
- Module 90: Banners
- Module 91: SMTP Security
- Module 92: FTP Security
- Module 93: Apache Security
|
|
Session Eighteen – Backup and Emergency Procedures
|
|
Session Nineteen – Automated Security Testing
- Module 94: SARA / SATAN / COPS
- Module 95: NMAP
- Module 96: Nessus
- Module 97: BSM
- Module 98: Solaris Security Toolkit – JASS
|
|
Session Twenty – Linux Security
- Module 99: Linux Boot Loader Security
- Module 100: Linux kernel security
- Module 101: RPM Security
- Module 102: Xinetd features
- Module 103: SSH Security
|
|
Session Twenty One – Apache Security
- Module 104: Secure Apache Installation
- Module 105: OS Security
- Module 106: Directives
- Module 107: CGI Security
- Module 108: Chroot jail
- Module 109: Secure HTTP Server
|
