Expanding Security – CISSP & CEH training

Please note: You will not be able to get files from the server unless you are a paid student and have been issued an account. So some links on this page will not work if you are a guest.

The steps below, the files, and links within, are numbered in order of what you will need to read and do. If this set of steps is unclear, please attend orientation for a walk-through.

00- Reading -

DOS- Not in book –  From Reading links

Reading 1

Reading 2

http://www.iv2-technologies.com/FightingBotnetEcosystem.pdf

http://www.princeton.edu/%7Erblee/ELE572Papers/Fall04Readings/DDoSSurveyPaper_20030516_Final.pdf

Social Engineering – not in book - social-engineer.org framework

. Two other source documents are here:

Social Engineering framework

OSSTMM (16MB) SP800-115 (.6MB)

LAB extra doc on Hping3

01-Mind map review for Note Cards, Terms and Process. For every term in the concepts section of the mindmap you should find a definition first from the book and second from your research. For every tool in the book you should make a notecard based upon Reconn Layer, Exploit Category, and Process.

02-Tool review

You must have the VBox structure in place to start the labs. Every week and every class you will be assigned one or two base tools. We will discuss that tool in the Lab part of class.  Your assignment is to work the tool, collect artifacts and send via email or post them. Artifacts are ALWAYS packet captures and sometimes a screenshot. Do not send large raw packet captures- you must cut the capture down to the attack/response data. You should be able to discuss this tool’s function, place in the process, and comparison to other tools.

The list of tools discussed this week:

8.  Denial of Service

9.  Social Engineering

1. Social Engineer’s Toolkit
2. Maltego Mesh
3. Special Assignment

03-Reports

As a professional you will be required to report your findings to management in a meaningful, actionable way. For each tool you must know how it fits with your original plan, the outcomes from its use, and what should be done to protect the environment from its use in the future.

04-Recording links are listed for your review of presentations. These are updated one week after the new class.

Recording CEH08

Recording CEH08 LAB

Recording CEH09

Recording CEH09 LAB

You can find these links and the class schedule here:http://www.expandingsecurity.com/about/events/

All content is copyright protected. Downloading or reviewing any material means you consent to the copyright restrictions placed on all works by the author. You are forbidden from using any of this material in the teaching of any class. You are only permitted to use this as a current student of Expanding Security. You are not permitted to copy or distribute these materials in any way.

Extra Readings

08 Denial of Service (10)

08 Reading

CERT/CC Denial of Service

Defeating DDoS

http://www.pentics.net/denial-of-service/white-papers/smurf.cgi

DoS attacks: crime without penalty

http://www.damballa.com/downloads/r_pubs/WP%20Botnet%20Communications%20Primer%20%282009-06-04%29.pdf

http://www.iv2-technologies.com/FightingBotnetEcosystem.pdf

An Analysis of Fragmentation Attacks

Hardening the TCP/IP stack to SYN attacks | Symantec Connect Community

http://www.princeton.edu/%7Erblee/ELE572Papers/Fall04Readings/DDoSSurveyPaper_20030516_Final.pdf

DOS Defenses Against TCP SYN Flooding Attacks – The Internet Protocol Journal – Volume 9, Number 4 – Cisco Systems

08 Analysis of DOS

Denial-of-service attack – Wikipedia, the free encyclopedia

Distributed Denial-Of-Service

Valuable and informative information on TFN2K and Trinoo ( Tribal Flood )

SecuriTeam – Analysis of the Shaft distributed Denial of Service tool

Inside the Slammer Worm

Bugtraq: Analysis of trin00

dod1.htm: denial of service attack tools

http://staff.washington.edu/dittrich/misc/trinoo.analysis

http://staff.washington.edu/dittrich/misc/stacheldraht.analysis

Analyzing Distributed Denial Of Service Tools: The Shaft Case

The “mstream” distributed denial of service attack tool – The Community’s Center for Security

Random Scanning Worms and Sapphire/Slammer’s PRNG…

The Spread of the Sapphire/Slammer Worm

Cyberattack Against WikiLeaks Was Weak | Threat Level | Wired.com

08 tools for protection

Poison Ivy – Remote Administration Tool

LOIC – Oh Internet

Socketsoft.net

Network Management Software, Application Server Management-ManageEngine

D-Guard

Andrisoft | IP traffic monitoring and DDoS protection solutions

DDoS Protection | DDoS Attack Mitigation | Stop DDoS | Network Security | Arbor Networks

FortGuard – Professional Anti-DDoS Firewall. Protect your servers from DDoS attack.

IntruGuard – The Leading DDoS Solution | DDoS Protection | Stop DDoS | DDoS Attack Protection

Defeating DDoS

09 Reading

social-engineer.org framework

Social Engineering Fundamentals, Part II: Combat Strategies | Symantec Connect Community

http://www.pewinternet.org/%7E/media/Files/Reports/2009/PIP_Adult_social_networking_data_memo_FINAL.pdf.pdf

http://www.infosecwriters.com/text_resources/pdf/Social_Engineering_Can_Organizations_Win.pdf

Social Engineering: The Human Side Of Hacking

09 Phishing

Bank Safe Online

APWG: Resources

azuzi.me | Information Security Task Force

Internet Research, Anti-Phishing and PCI Security Services | Netcraft

PhishTank | Join the fight against phishing