FREE Security Awareness Guide - CompTIA

FREE Security Awareness GuideGet 7 simple security hacks that you can use today.

bit.ly/SecurityAwarenessGuide

1. Differences between threats and vulnerabilities2. Pen testing do’s and don’ts3. Metasploit introduction through the Armitage GUI4. Information gathering and scanning5. Playing with auxiliary modules like ARP, DNS and DHCP attacks6. Browser drive-by attack (application-based attack)7. Remote exploit demo (application-based attack)8. Payloads using the Meterpreter9. Metasploit automation

Ethical Hacking Using a Weaponized Operating System

Threat VulnerabilityOR

End of life operating system

Ransomware

Unneeded running service

Ransomware

Hacker

Ransomware

Hacker

Ransomware

Hacker

Unlocked door

Ransomware

Hacker

Unlocked door

Ransomware

Hacker

Unlocked door

Untrained user

Ransomware

Hacker

Unlocked door

Untrained user Untrained user

Ransomware

Hacker

Unlocked door

Untrained user Untrained user

Flaw or Gap Actor

Pen testingDo’s Don’ts

Get WRITTEN authorization

Get WRITTEN authorizationGet contact information

Define the Scope and timing

Review Threats and VulnerabilitiesDefine the Scope and timing

Test public cloud environments

Test public cloud environmentsUse payloads that cause damage

Test public cloud environmentsUse payloads that cause damageChange configurations

Test public cloud environmentsUse payloads that cause damageChange configurationsPractice in production

WARNING

Don’t test anyone’s network unless youGet WRITTEN authorization!

Everything you see here has an IDS signatureand will trigger an alert!

Environment

Armitage

• Live GUI Review

Information Gathering

• NMAP Again? Nah• Let’s learn Info Gathering through protocols and HPING3• TTLs• Packet ID

EternalBlue

• Leaked by Shadow Brokers April 2017. Fixed by Microsoft in May• The vulnerability is tracked by CVE-2017-0144 • The exploit targets the Microsoft Server Message Block (SMB) protocol• Used by WannaCry• Let’s play with it! • I become the threat

• Address Resolution Protocol (ARP)• RFC 826 from 1982 https://tools.ietf.org/html/rfc826• Layer 2 of the OSI• Used to find the hardware address or Media Access Control (MAC) address• ARP cache• MAC looks like 11-22-33-44-55-66• First 3 octets are the OUI

• Mitigation: Dynamic ARP inspection• On supported cisco devices: IP ARP INSPECTION VLAN 100

• Dynamic Host Configuration Protocol (DHCP)• First implemented in the Bootstrap Protocol BOOTP in 1985 RFC 951• Last updated in 1997 with RFC 2131 https://tools.ietf.org/html/rfc2131• Layer 7 of the OSI• Uses Broadcast• DHCP Relays turn broadcast into unicast to remote DHCP servers• Mitigation: DHCP Snooping• On supported cisco devices: DHCP SNOOPING VLAN 100

• Domain Name System (DNS)• First implemented in RFC 882 in 1983• Last updated in 1997 with RFC 2181 https://tools.ietf.org/html/rfc2181• Layer 7 of the OSI• Hierarchical and decentralized

Question & Answer

Ask your questions in the Q&A chat box!

FREE Security Awareness Guide - CompTIA

Documents

CompTIA N10-006 CompTIA Network+

CompTIA Basic - Cisco Training, Cisco Certifications, … · CompTIA Master CompTIA basic certifications cover foundational topics and issues in IT and are suited for ... CompTIA

FREE Aboriginal Awareness Online Course

Free Your Mind - Expand Your Awareness

June 1 2019 to May 31 Community Technology Learning Center ... · CompTIA A+ ce . CompTIA Network+ . CompTIA Security+ . CompTIA Server+ . Microsoft Certified Solutions Associate

Comptia N+

Course overview CompTIA Network+ N10-006 ... - …ccilearning.com/comptia/G524-Outline.pdfCourse overview CompTIA Network+ N10-006 Official Study Guide ... created for the CompTIA

COMPTIA - Preguntas

A guide to CompTIA training and certification · The CompTIA A+, CompTIA Network+, CompTIA Security+ and CompTIA CySA+ certification are good for three years from the date of your

CompTIA Advanced Security Practitioner (CASP) Objectivesd13wv0uuz2t96k.cloudfront.net/pdf/comptia/CASP... · The CompTIA Advanced Security Practitioner (CASP) Certification is aimed

CompTIA Network+ N10-006 Cert Guide, Deluxe …uA free copy of the CompTIA Network+ N10-006 Authorized Cert Guide Premium Edition eBook and Practice Test. This package provides you

CompTIA Network+Mentoring N10-006 CompTIA Network+ - Connects you with a Network+ content specialist who can answer questions - Available as a free resource within your Skillport account

Networking Comptia

Comptia Certification

Provide your students with · CompTIA A+ Core 1 and 2 CompTIA IT Fundamentals CompTIA Linux+ CompTIA Mobility+ CompTIA Network+ CompTIA PenTest+ CompTIA Project+ CompTIA Server+ Juniper

Corporate & Professional EDUCATION · CompTIA A+ Certification Prep XTA 4 CompTIA Network+ with Exam Voucher: Online XCT 4 CompTIA Security+ with Exam Voucher: Online XAC 5 CompTIA

CompTIA A+ (220-801) Objectivesbytes.co.za/sites/bytes_p2/files/BPS CompTIA A+ Certification... · The CompTIA A+ 220-801 examination measures necessary ... CompTIA is constantly

Skillsoft - CompTIA

CompTIA Continuing Education (CE) User Guide V16 · CompTIA A+, CompTIA Network+, CompTIA Mobility+, CompTIA Security+, CompTIA Cloud+ and CompTIA Advanced Security Practitioner (CASP)

CompTIA A+ Certification - DCI Resources, LLCdciresourcesllc.com/DCI-CompTIA-Program.pdfPage 1 CompTIA A+ Certification Held by over 1 million IT professionals worldwide, CompTIA A+