Course Code: linsecbspk
Duration: 28 hours
Course Outline:

Security

  • What is Security?
  • Assessment
  • Prevention
  • Detection
  • Reaction
  • Labs


Threats and Risk Assessment

  • Classes of Attackers
  • Types of Attacks
  • Trade-Offs
  • Labs
     

Physical Access

  • Physical Security
  • Hardware Security
  • Understanding the Linux Boot Process
  • Labs
     

Logging

  • Logging Overview
  • Syslog Services
  • journald Services
  • The Linux Kernel Audit Daemon
  • Linux Firewall Logging
  • Log Reports
  • Labs
     

SELinux & AppArmor (Added)

  • Overview of SELinux
  • Configuring SELinux
  • AppArmor Profiles and Configuration
  • Practical Applications of SELinux and AppArmor
  • Labs
     

Auditing and Detection

  • Auditing Basics
  • Understanding an Attack Progression
  • Detecting an Attack
  • Intrusion Detection Systems
  • Labs
     

Application Security

  • Bugs and Tools
  • Tracking and Documenting Changes
  • Resource Access Control
  • Mitigation Techniques
  • Policy-Based Access Control Frameworks
  • Real-World Examples
  • Labs
     

Kernel Vulnerabilities

  • Kernel and User Spaces
  • Bugs
  • Mitigating Kernel Vulnerabilities
  • Vulnerability Examples
  • Labs
     

Authentication

  • Encryption and Authentication
  • Passwords and PAM
  • Hardware Tokens
  • Biometric Authentication
  • Network and Centralized Authentication
  • Labs
     

Local System Security

  • Standard UNIX Permissions
  • Administrator Account
  • Advanced UNIX Permissions
  • Filesystem Integrity
  • Filesystem Quotas
  • Labs
     

Network Security

  • TCP/IP Protocols Review
  • Remote Trust Vectors
  • Remote Exploits
  • Labs
     

Network Services Security

  • Network Tools
  • Databases
  • Web Server
  • File Servers
  • Labs
     

Denial of Service

  • Network Basics
  • DoS Methods
  • Mitigation Techniques
  • Labs
     

Remote Access

  • Unencrypted Protocols
  • Accessing Windows Systems
  • SSH
  • IPSEC VPNs
  • Labs
     

Firewalling and Packet Filtering

  • Firewalling Basics
  • iptables
  • Netfilter Implementation
  • Netfilter Rule Management
  • Mitigating Brute Force Login Attempts
  • nft Concepts
  • Labs
     

Response and Mitigation

  • Preparation
  • During an Incident
  • Handling Incident Aftermath
  • Labs
     

Compliance Testing with OSCAP

  • Compliance Testing
  • SCAP Introduction
  • OpenSCAP
  • SCAP Workbench
  • Command Line Scan
  • Labs

Summary and Conclusion