Cybersecurity – Attack and Defense Strategies
(CYBSEC-ATK-DEF.AJ1) / ISBN : 978-1-64459-546-6
About This Course
The Cybersecurity – Attack and Defense Strategies course delves into the intricacies of cybersecurity by exploring both offensive and defensive strategies. This course is meticulously crafted to empower you with the expertise required to safeguard systems, networks, and data from cyber threats while gaining insights into the tactics employed by cyber attackers. Whether you are venturing into cybersecurity or aiming to advance your competencies, this course equips you with the skills necessary to excel in the cybersecurity domain.
Skills You’ll Get
Get the support you need. Enroll in our Instructor-Led Course.
Interactive Lessons
18+ Interactive Lessons | 175+ Exercises | 80+ Quizzes | 88+ Flashcards | 88+ Glossary of terms
Gamified TestPrep
65+ Pre Assessment Questions | 65+ Post Assessment Questions |
Hands-On Labs
37+ LiveLab | 36+ Video tutorials | 01:11+ Hours
Preface
- Who this course is for
- What this course covers
- To get the most out of this course
Security Posture
- Why security hygiene should be your number one priority
- The current threat landscape
- Cybersecurity challenges
- Enhancing your security posture
- The Red and Blue Teams
- Summary
- References
Incident Response Process
- The incident response process
- Handling an incident
- Post-incident activity
- Considerations for incident response in the cloud
- Summary
- References
What is a Cyber Strategy?
- How to build a cyber strategy
- Why do we need to build a cyber strategy?
- Best cyber attack strategies
- Best cyber defense strategies
- Benefits of having a proactive cybersecurity strategy
- Top cybersecurity strategies for businesses
- Conclusion
- Further reading
Understanding the Cybersecurity Kill Chain
- Understanding the Cyber Kill Chain
- Security controls used to stop the Cyber Kill Chain
- Threat life cycle management
- Concerns about the Cybersecurity Kill Chain
- How the Cyber Kill Chain has evolved
- Tools used during the Cyber Kill Chain
- Comodo AEP via Dragon Platform
- Summary
- Further reading
- References
Reconnaissance
- External reconnaissance
- Internal reconnaissance
- Tools used for reconnaissance
- Passive vs. active reconnaissance
- How to combat reconnaissance
- How to prevent reconnaissance
- Summary
- References
Compromising the System
- Analyzing current trends
- Performing the steps to compromise a system
- Mobile phone (iOS/Android) attacks
- Summary
- Further reading
- References
Chasing a User’s Identity
- Identity is the new perimeter
- Strategies for compromising a user’s identity
- Summary
- References
Lateral Movement
- Infiltration
- Network mapping
- Performing lateral movement
- Summary
- Further reading
- References
Privilege Escalation
- Infiltration
- Avoiding alerts
- Performing privilege escalation
- Summary
- References
Security Policy
- Reviewing your security policy
- Educating the end user
- Policy enforcement
- Monitoring for compliance
- Continuously driving security posture enhancement via security policy
- Summary
- References
Network Security
- The defense-in-depth approach
- Physical network segmentation
- Securing remote access to the network
- Virtual network segmentation
- Zero trust network
- Hybrid cloud network security
- Summary
- References
Active Sensors
- Detection capabilities
- Intrusion detection systems
- Intrusion prevention system
- Behavior analytics on-premises
- Behavior analytics in a hybrid cloud
- Summary
- References
Threat Intelligence
- Introduction to threat intelligence
- Open-source tools for threat intelligence
- Microsoft threat intelligence
- Summary
- References
Investigating an Incident
- Scoping the issue
- Investigating a compromised system on-premises
- Investigating a compromised system in a hybrid cloud
- Proactive investigation (threat hunting)
- Lessons learned
- Summary
- References
Recovery Process
- Disaster recovery plan
- Live recovery
- Contingency planning
- Business continuity plan
- Best practices for disaster recovery
- Summary
- Further reading
- References
Vulnerability Management
- Creating a vulnerability management strategy
- Elements of a vulnerability strategy
- Differences between vulnerability management and vulnerability assessment
- Best practices for vulnerability management
- Vulnerability management tools
- Conclusion
- Summary
- Further reading
- References
Log Analysis
- Data correlation
- Operating system logs
- Firewall logs
- Web server logs
- Amazon Web Services (AWS) logs
- Azure Activity logs
- Google Cloud Platform Logs
- Summary
- References
Security Posture
- Performing a Phishing Attack
What is a Cyber Strategy?
- Simulating the DDoS Attack
- Using OWASP ZAP
Understanding the Cybersecurity Kill Chain
- Cracking Password Using Hydra
- Using Nikto
- Cracking a Linux Password Using John the Ripper
- Using Sparta
- Using Kismet
- Using the EternalBlue Exploit in Metasploit
Reconnaissance
- Performing Reconnaissance on a Network
- Using the masscan Command
- Capturing Network Packets Using tcpdump
- Performing Nmap Port Scanning
- Gathering OSINT
- Sniffing a Network with Wireshark
- Using Cain and Abel
- Installing the Wardriving Application and Analyzing a Site Survey Capture
- Using theHarvester
- Conducting Vulnerability Scanning Using Nessus
- Using nslookup for Passive Reconnaissance
Compromising the System
- Using the Armitage Tool for Intrusion Detection
- Cracking Windows Password Using Ophcrack
- Conducting a Cross-Site Request Forgery Attack
- Exploiting a Website Using SQL Injection
Lateral Movement
- Understanding Lateral Movement
Privilege Escalation
- Understanding LPE
Network Security
- Configuring VLANs
- Configuring a Network Firewall
- Configuring a VPN
Active Sensors
- Performing Intrusion Detection
Threat Intelligence
- Examining MITRE ATT&CK
Investigating an Incident
- Using the NETSH Command
- Using the PING Command
Recovery Process
- Using the chntpw Command
Vulnerability Management
- Performing Vulnerability Scanning Using OpenVAS
Log Analysis
- Analyzing Linux Logs for Security Intelligence
- Viewing Windows Event Logs