Information Security Training Course SANS SEC4. Topics. SEC4. 01. Windows Security Module Outline. Windows Security Infrastructure. Wireshark Compare Capture Files' title='Wireshark Compare Capture Files' />Wireshark tutorial learn one of the most important tool every programmer and network admin should know. Img/20140523/14/EC77784E67C1C6222F8E69A13E8441BF.png' alt='Wireshark Compare Capture Files' title='Wireshark Compare Capture Files' />Service packs, hot fixes, and backups. Windows access controls. Lab Microsoft Baseline Security Analyzer. Enforcing security policy. Securing Windows Network Services. Automation, auditing, and forensics. Lab Power. Shell Scripting. Module 2. 4 The Windows Security Infrastructure. Involves the ability to identify the different types of Windows operating systems and the differences between them. Students will also be able to identify the different types of Windows operating systems and the differences between them. Three classes of operating system Lab 5. Process Hacker This lab teaches how to utilize a tool like Process Hacker and understand the operations of Windows and how it works. Install and launch Process Hacker. Examine the details of a process, such as its modules and memory regions. Wireshark Compare Capture Files' title='Wireshark Compare Capture Files' />Inject a DLL into a process and then aggressively terminate that process. Module 2. 5 Service Packs, Hotfixes, and Backups Involves the understanding of how to manage Windows Service Packs and Hotfixes for a network of Windows hosts. Service packs. E mail security bulletins. Patch installation. Automatic updates. Windows server update services. Windows backup. System restore. Device driver rollback. Module 2. 6 Windows Access Controls. Involves understanding how permissions are applied in the Windows NT File System, Shared Folders, Printers, Registry Keys, and Active Directory, and how Privileges are applied. NTFS Permissions. Shared Folder Permissions. Registry Key Permissions. Active Directory Permissions. Privileges. Bit. Locker Drive Encryption. Lab 5. 2 Microsoft Baseline Security Analyzer Learn to utilize a tool like Microsoft Baseline Security Analyzer and operations of Windows and how to properly secure the operating system. Completing the lab, students will understand the following topics Install the Microsoft Baseline Security Analyzer MBSAScan the local computer for vulnerabilities. Examine an MBSA vulnerability report. Article-Images/B04965_17.png' alt='Wireshark Compare Capture Files' title='Wireshark Compare Capture Files' />Compare two capture files. This feature works best when you have merged two capture files chronologically, one from each side of a clientserver connection. We are a software download site without ads, fake download buttons or crapware. This site is 100 supported by donations. Please consider making one if you like. Permission is granted to copy, distribute andor modify this document under the terms of the GNU General Public License, Version 2 or any later version. The Wireshark Certification Program strives to test a candidates knowledge and ability to troubleshoot, optimize and secure a network based on evidence found by. This week on HakTip, Shannon pinpoints an exploitation using Wireshark. Working on the shoulders of last weeks episode, this week well discuss what. Remediate an identified vulnerability using the NET. EXE utility. Scan local system again to confirm remediation. Module 2. 7 Enforcing Security Policy. Involves having a high level understanding of the features of Group Policy and working with INF security templates. Applying security templates. Employing the Security Configuration and Analysis snap in. Understanding Local Group Policy Objects. Understanding Domain Group Policy Objects. Administrative Users. App. Locker. User Account Control. Checking Recommended GPO settings, including. Super Bounce Out Cracked here. Password Policy. Account Lockout Policy. Security Options. Internet Explorer Security. Miscellaneous Administrative Templates. Other Settings. Lab 5. Secedit In this lab, students will learn to utilize a tool like Secedit and understand the operations of security templates and how to analyze a system. Open the Power. Shell ISE desktop application. Compare current state of system against an INF security template. Apply the INF security template to the local computer to reconfigure it. Re examine current state to confirm changes made. Module 2. 8 Securing Windows Network Services. Involves the understanding on how to take basic measures in securing Windows network services. Best way to secure a service. Packet filtering. IPsec authentication and encryption. Internet Information Server IISRemote Desktop Services. Windows Firewall. Module 2. 9 Automation, Auditing, and Forensics. Involves Introduction to the techniques and technologies used to audit Windows hosts. Verifying Policy Compliance. Vulnerability Scanning and Reporting. Creating Baseline System Snapshots. Gathering Ongoing Operational Data. Employing Change Detection and Analysis Lab 5. Power. Shell Scripting In this lab, students will learn to utilize Power. Shell scripting and understand the operations of scripting and automation. Open the graphical Power. Shell ISE editor ISE Integrated Scripting EnvironmentList and manipulate processes and services. Interact with the file system, such as sorting and hashing files Export data to HTML and comma delimited CSV text files. Query the Windows Management Instrumentation WMI service. Query a local or remote Windows Event Log messages.