Join Online Computer Courses & Hands-On Labs

ITD-4133 - Secure Network

(OKU-ITD-4133.AEW1)

Lessons

Lab

TestPrep

AI Tutor (Add-on)

Instructor-Led (Add-on)

Get A Free Trial

This course includes:

Free pre-assessment and first 2 lessons

34+ Interactive Lessons | 427+ Exercises

Accessible on mobile and tablet too

Certificate of completion

Are you an instructor?

Access detailed information about the course content, learning objectives, activities, and assessments before adding it to your curriculum.

Lesson Plan

Today's Security Professional

Cybersecurity Objectives
Data Breach Risks
Implementing Security Controls
Data Protection
Summary
Exam Essentials

Cybersecurity Threat Landscape

Exploring Cybersecurity Threats
Threat Data and Intelligence
Summary
Exam Essentials

Malicious Code

Malware
Summary
Exam Essentials

Social Engineering and Password Attacks

Social Engineering and Human Vectors
Password Attacks
Summary
Exam Essentials

Security Assessment and Testing

Vulnerability Management
Vulnerability Classification
Penetration Testing
Audits and Assessments
Vulnerability Life Cycle
Summary
Exam Essentials

Application Security

Software Assurance Best Practices
Designing and Coding for Security
Software Security Testing
Injection Vulnerabilities
Exploiting Authentication Vulnerabilities
Exploiting Authorization Vulnerabilities
Exploiting Web Application Vulnerabilities
Application Security Controls
Secure Coding Practices
Automation and Orchestration
Summary
Exam Essentials

Cryptography and the PKI

An Overview of Cryptography
Goals of Cryptography
Cryptographic Concepts
Modern Cryptography
Symmetric Cryptography
Asymmetric Cryptography
Hash Functions
Digital Signatures
Public Key Infrastructure
Asymmetric Key Management
Cryptographic Attacks
Emerging Issues in Cryptography
Summary
Exam Essentials

Identity and Access Management

Identity
Authentication and Authorization
Authentication Methods
Accounts
Access Control Schemes
Summary
Exam Essentials

Resilience and Physical Security

Resilience and Recovery in Security Architectures
Response and Recovery Controls
Physical Security Controls
Summary
Exam Essentials

Cloud and Virtualization Security

Exploring the Cloud
Virtualization
Cloud Infrastructure Components
Cloud Security Issues
Hardening Cloud Infrastructure
Summary
Exam Essentials

Endpoint Security

Operating System Vulnerabilities
Hardware Vulnerabilities
Protecting Endpoints
Hardening Techniques
Operating System Hardening
Securing Embedded and Specialized Systems
Asset Management
Summary
Exam Essentials

Network Security

Designing Secure Networks
Secure Protocols
Network Attacks
Summary
Exam Essentials

Wireless and Mobile Security

Building Secure Wireless Networks
Managing Secure Mobile Devices
Summary
Exam Essentials

Monitoring and Incident Response

Incident Response
Incident Response Data and Tools
Mitigation and Recovery
Summary
Exam Essentials

Digital Forensics

Digital Forensic Concepts
Conducting Digital Forensics
Reporting
Digital Forensics and Intelligence
Summary
Exam Essentials

Security Governance and Compliance

Security Governance
Understanding Policy Documents
Change Management
Personnel Management
Third-Party Risk Management
Complying with Laws and Regulations
Adopting Standard Frameworks
Security Awareness and Training
Summary
Exam Essentials

Risk Management and Privacy

Analyzing Risk
Managing Risk
Risk Tracking
Disaster Recovery Planning
Privacy
Summary
Exam Essentials

Basics of Information Security

Why Information Security
What is Information Security
Goals
Methods
Tools
Beyond Confidentiality Integrity Availability (CIA)
Responsibility of Information Security
Perspective of Information Security

Threat Paradigm

Threats Paradigm
Attackers or Threat agents
Threat Motivation
Threat Impact
Types of Attacks

Information Security Controls

Information Security Controls
Examples of Information Security Controls

Decoding Policies Standards Procedures & Guidelines

Documents Hierarchy
Policy
Standards
Procedures and Guidelines
Document Format
Decoding Policies and Standards

Know Your Assets

Identifying Assets
Different Types of Assets
Asset Responsibility
Asset Valuation
Asset Classification/Rating Review
Audit Requirement

Implementing Network Security

Introducing Assets to Production Environment
Pre-Production Check List
Best Practices for Network Design
Best Practices for Firewall
Best Practices For Router And Switches
Best Practices for VPN
Best Practices For Wireless Network

Secure Change Management

Change Management
Secure Change Management Process
Audit Requirements

Vulnerability and Risk Management

Vulnerability and Risk Management
Common Vulnerabilities Found in Network Environment
Vulnerability and Risk Management Process
Handling Zero Day
Audit Requirements

Access Control

Introduction
Identification
Authentication
Authorization
Accounting
Access Control Policies And Procedures
Access Control Implementation
User Registration And De-Registration
Password Management
Asset Classification
Access Provisioning
Network Admission Control (NAC)
Privilege User Access Management
Remote Access Management
Third Party Access Management
User Access Review
Audit Requirements

Capacity Management

Capacity Management
Documented Policies and Procedures
Capacity Management Process
Audit Requirements

Log Management

Logging
Log Management Process and Documentation
Log Generation
Log Transmission
Log Storage
Log Analysis
Log Disposal
Audit Requirements

Network Monitoring

Monitoring
Physical, Environmental And Content Monitoring
System Monitoring Standards and Procedures
Traffic Monitoring
Device Monitoring
Log Monitoring - Security Information and Event Management
Audit Requirements

Information Security Audit

Information Security Audit
Audit Management From Auditor’s Side
Audit Management From Auditee's Side

Technical Compliance Audit

Technical Compliance Audit
Technical Compliance Audit from Auditor's Point of view
Technical Compliance Audit from Auditee's Point of View
Good Practices To Avoid Compliance Findings

Penetration Testing

Penetration Testing (Pen Test)
Stages of Penetration testing
Pen-Testing vs. Vulnerability Assessment
Pen Testing from Auditee's Point
Good Practices to Avoid Vulnerabilities

Appendix

Appendix 1: Vulnerability Management Sheet
Appendix 2: Risk Management Sheet
Appendix 3: Sample Compliance Task List
Appendix 4: Risk Acceptance Form

Hands-on LAB Activities

Malicious Code

Examining Spyware
Analyzing Malware Using VirusTotal

Social Engineering and Password Attacks

Using Social Engineering Techniques to Plan an Attack
Cracking a Linux Password Using John the Ripper
Cracking Passwords

Security Assessment and Testing

Scan for Vulnerabilities Using Nikto
Conducting Vulnerability Scanning Using Nessus
Consulting a Vulnerability Database
Gathering Site Information

Application Security

Fuzzing Using OWASP ZAP
Performing SQL Injection in DVWA
Exploiting LFI and RFI Vulnerabilities
Conducting a Cross-Site Request Forgery Attack
Performing an XSS Attack in DVWA
Examining Application Vulnerabilities
Exploiting an Overflow Vulnerability
Exploiting a TOCTOU Vulnerability

Cryptography and the PKI

Using Symmetric Encryption
Creating Asymmetric Key Pairs
Creating File Hashes
Examining PKI Certificates

Identity and Access Management

Installing a RADIUS Server
Examining Kerberos Settings
Enforcing Password Policies
Using the chmod Command
Creating Linux Users and Groups

Cloud and Virtualization Security

Detecting Virtualization

Network Security

Capturing Credentials On-path
Launching a DoS Attack

Wireless and Mobile Security

Securing a Wi-Fi Hotspot

Monitoring and Incident Response

Examining MITRE ATT&CK
Viewing Linux Event Logs
Viewing Windows Event Logs

Digital Forensics

Completing the Chain of Custody
Using FTK Imager
Analyzing Forensic Case with Autopsy

Threat Paradigm

Creating a RAT
Analyzing the WannaCry Ransomware Attack
Examining Spyware
Conducting Vulnerability Scanning Using Nessus
Capturing Packets Using Wireshark
Performing an MITM Attack
Cracking Passwords Using Cain and Abel
Using Rainbow Tables for Cracking Passwords
Configuring WPA/WPA2/WPA3 for Personal and Enterprise Use
Performing ARP Spoofing
Configuring a Wireless AP
Analyzing Malware Using VirusTotal
Performing a Phishing Attack Using a SET
Detecting Rootkits
Simulating a DDoS Attack

Information Security Controls

Configuring IPSec
Configuring a Windows Firewall
Implementing Physical Security
Performing Symmetric and Asymmetric Encryption
Observing an SHA-256-Generated Hash Value
Observing an MD5-Generated Hash Value

Network Security Design

Enabling an ACL

Implementing Network Security

Configuring a Router
Configuring AAA for Device Access Control

Access Control

Implementing MFA on Mobile Devices

Lessons Lab TestPrep AI Tutor

CompTIA A+ (220-1001)

ISBN: 9781644590768
220-1001

Lessons Lab TestPrep

Comprehensive Computer Technician (CompTIA A+ 1001/1002)

ISBN: 9781644590423
220-1001-220-1002

Lessons Lab TestPrep

CompTIA A+ (220-1002)

ISBN: 9781644590775
220-1002

Lessons Lab TestPrep AI Tutor

Complete A+ Guide to IT Hardware and Software (1101/1102)

ISBN: 9781644593844
220-1101-1102-SCH.AB1

Lessons Lab TestPrep AI Tutor Instructor-Led

CompTIA A+ Core 1 (220-1101) and Core 2 (220-1102)

ISBN: 9781644593967
220-1101-1102.AB1

Lessons Lab TestPrep AI Tutor Instructor-Led

CompTIA A+ (220-1101 & 220-1102)

ISBN: 9781644595282
220-1101-1102.AE2

Lessons Lab TestPrep AI Tutor Instructor-Led

CompTIA A+ (220-1102)

ISBN: 9781644595329
220-1102.AE2

ITD-4133 - Secure Network

Are you an instructor?

ITD-4133 - Secure Network

Skills You’ll Get

Interactive Lessons

Gamified TestPrep

Hands-On Labs

Lesson Plan

Today's Security Professional

Cybersecurity Threat Landscape

Malicious Code

Social Engineering and Password Attacks

Security Assessment and Testing

Application Security

Cryptography and the PKI

Identity and Access Management

Resilience and Physical Security

Cloud and Virtualization Security

Endpoint Security

Network Security

Wireless and Mobile Security

Monitoring and Incident Response

Digital Forensics

Security Governance and Compliance

Risk Management and Privacy

Basics of Information Security

Threat Paradigm

Information Security Controls

Decoding Policies Standards Procedures & Guidelines

Network Security Design

Know Your Assets

Implementing Network Security

Secure Change Management

Vulnerability and Risk Management

Access Control

Capacity Management

Log Management

Network Monitoring

Information Security Audit

Technical Compliance Audit

Penetration Testing

Appendix

Hands-on LAB Activities

Malicious Code

Social Engineering and Password Attacks

Security Assessment and Testing

Application Security

Cryptography and the PKI

Identity and Access Management

Cloud and Virtualization Security

Network Security

Wireless and Mobile Security

Monitoring and Incident Response

Digital Forensics

Threat Paradigm

Information Security Controls

Network Security Design

Implementing Network Security

Access Control

Related Courses

CompTIA A+ (220-1001)

Comprehensive Computer Technician (CompTIA A+ 1001/1002)

CompTIA A+ (220-1002)

Complete A+ Guide to IT Hardware and Software (1101/1102)

CompTIA A+ Core 1 (220-1101) and Core 2 (220-1102)

CompTIA A+ (220-1101 & 220-1102)

CompTIA A+ (220-1102)