Infrastructure Security 101Training
This training is an introduction into infrastructure and network security. It deals with reconnaissance and enumeration of hosts in a given network and gives an overview about typical attacks and misconfigurations. The goal of this training is to provide practical insights into how attacks are performed and how vulnerabilities could affect the security posture of the whole network.
This training is designed for IT professionals who are keen to learn more about the concepts and techniques of attacking networks from an attackers point of view. Basic knowledge of Linux and fundamental network concepts (TCP/IP) is beneficial but not required.
The training aims to give an introduction into infrastructure and network security and starts with basic terminology and concepts of networking. Afterwards the attendees will identify active systems in the given network and inspect them further to identify operating systems and available network services. Based on these results the targets are analysed for vulnerabilities and eventually the identified vulnerabilities are exploited in order to compromise systems and gain a foothold. By the end of the course the attendees will be able to conduct targeted network scans, identify security issues and work on remediation of the identified weaknesses.
- Basic networking concepts and theory
- Network Scanning
- Vulnerability discovery
- Remediation and hardening
- Outro, Recap and Q&A