LinoBox Technology Solutions

Please fill up the below form
and our Career Consultant will
contact to you in next 12 hours!

Office: 022-24933060
Cell: 9920 436030

info@linobox.com

Live Practice Labs

Our live access labs provide full console access to a self-paced study lab environment. This is an ideal place to re-work lab exercises from class or to experiment with advanced configuration from your home or hotel room. Find out which works for you and get a downloadable eKit when you enroll.

Nmap & Nessus

Nessus Security Scanner (http://www.nessus.org) for example, is one of the highest rated security/vulnerability scanners as rated by a Network Computing article. It relies heavily on Nmap to perform port scanning. Nmap is Enumeration Tools (Network Scanners). Nmap and Nessus have different types of scanning philosophies and understanding how they work can help you achieve success with your network scanning efforts. The Nessus server includes its own portscanning, service fingerprinting and operating system identification techniques that are similar but independent from Nmap’s. However, you may run into a situation where Nmap was run first and you already have the output from this tool and want to apply the results to your vulnerability scan. Configuring Nessus to run batch mode scans based on Nmap results

Who should attend
System administrators, Security administrators, Network administrators and Software developers.

Prerequisites Participants must have at least entry to mid-level administration knowledge, with good exposure to networking concepts. Working knowledge on Linux / Unix OS is essential.

Course Outline

NMAP - Port Scanner and Vulnerability Assessment Tool
Discuss Stage-1 host/network attack concepts
Discuss TCP handshake procedure
Discuss half-open/SYN connections
Perform connect and SYN-based host/network reconnaissance
Identify potential vulnerabilities on interesting hosts derived from reconnaissance
Examine NMAP logging capabilities
Perform port sweeps to identify common vulnerabilities across exposed systems
Secure exposed daemons/services
Perform follow-up audit to ensure security policy compliance
Obtain, and install current version of NMAP
Identify commonly used NMAPoptions/switches/parameters
Explain typical TCPhandshake protocol while using NMAP
Identifiy key NMAP configuration files
Upgrade NMAP reconnaissance tool to increase effectiveness
Identify NMAP files
Use NMAP to perform operating system fingerprinting
Peform subnet-wide ethical scans
Perform default TCPSYN-based ethical scans of local and remote resources
Examine the results of scans on remote Cisco firewall with debugging mode enabled
Perform default TCPConnect-based ethical scans of local and remote resources
Peform local ethical scans
Discuss NMAP's features and applications
Perform Connect/Syn/Fin and various ethical port-scans
Perform service exposure scans

Nessus Vulnerability Scanner
Prepare system for Nessus vulnerability scanner installation - identify/install dependencies
Register Nessus to obtain updated definitions
Activate Nessus subscription, server and client components
Perform basic Nessus system configuration and start the daemon
Use Nessus Linux client to connect to Nessus Server and perform scans
Examine resuls of scanning local and remote hosts
Evaluate results
Discuss vulnerability scanner capabilities and applications
Generate self-signed SSL/TLS certificates for secure client/server communications
Explore vulnerability scanner interface and features
Perform network-based reconnaissance attack to determine vulnerabilities
Examine results of the reconnaissance attack and archive results
Secure exposed vulnerabilities

Trainings
Onsite Training
These courses are available for on-site delivery for groups of 5 or more students. LinoBox offers discounted training for on-site courses of more than 5 students - contact Sanjeet Vanamala at sanjeet@linobox.com or 91-9819586142 to schedule training and arrange details or for any kind of information..