Week 7 - Network & Application Security II

Week 7 - Kickoff

What Is a Firewall?

How Do Firewalls Work?

Windows Firewall - Tool Introduction

Firewall in Windows

Ready, Set, Lab! - Configuring Windows Firewalls

Week 7 - Configuring Windows Firewalls

Iptables - Tool Introduction

Firewall in Linux

Ready, Set, Lab! - Configuring Chain Rules in Iptables

Week 7 - Configuring Chain Rules in Iptables

What is Segmentation?

Host-Based Firewall vs. Network-Based Firewall

Ready, Set, Lab! - Creating Network-Based Firewall

Week 7 - Creating Network-Based Firewall

What are IDS and IPS?

How Does an IDS Function?

IDS Approaches

The Role of an IPS

NIDS & HIDS

Snort - Tool Introduction

Snort Rules

Snort Modes

Snort Cheat Sheet

Ready, Set, Lab! - Snort Detections and Analysis

Week 7 - Snort Detections and Analysis

Ready, Set, Lab! - IDS - Real life Scenario

IDS The Mission

Week 7 - IDS - Real life Scenario

Data Loss Prevention

DLP Objectives

Types of DLP

How Does It Work?

DLP Best Practices

DLP - Knowledge Check

What is SIEM?

How Does It Work?

SIEM Architecture

SIEM Alert Structure

Correlation Rules

Correlation Rules - Practice

SIEM Objectives

What Is Splunk?

Splunk - Tool Introduction

Splunk Features

Splunk Components

Splunk's Interface

Ready, Set, Lab! - Splunk Investigation and Dashboarding

Week 7 - Splunk Investigation and Dashboarding

Ready, Set, Lab! - SIEM Real Life Scenario

SIEM Real Life Scenario - The Case

Week 7 - SIEM Real Life Scenario

Endpoint Detection & Response

EDR Key Components

EDR Data Collection

EDR Phases

Detection

Triage

Investigation

Remediation

Differences Between AV and EDR

Differences Between SIEM and EDR

The Importance of EDR

Week 7 - Key Takeaways

Week 7 - Weekly Quiz

Network & Application Security Glossary

Summary

Tools Overview

Network & Application Security Ongoing Learning