Stratign
in its endeavor for excellence provides specialized
training in the field of Network security and Information
Warfare. It has a team of dedicated professionals
and infrastructure
to conduct this training.
Network Security
NETWORK SECURITY PROFESSIONAL COURSE (5-day) Target Personnel: Network Server
Administrators, System Administrators, Application Developers, IT Security
Officers. Prerequisites: Computer System Foundation, Server
Administration and Networking/ Network Administration knowledge.
Network Security and Firewalls module is designed to teach participants
how to secure networks from unauthorized activity, establish an effective
security policy, identify different types of hacker activities, understand
the hacker's mind-set and in-act preventive measure. Participants will
also learn about authentication procedures, encryption standards and implementations,
ports and protocols that hackers manipulate, and how to engage in proactive
detection and response/ reporting methods.
What is Security?
Hacker Statistics ,
Attributes of an Effective Security Matrix ,
Threats & Security Standards ,
Elements of Security ,
The Security Concepts and Mechanisms
Elements of Security
Encryption & its use ,
Authentication & Techniques ,
Access Control ,
Auditing ,
Security Tradeoffs and Drawbacks
Applied Encryption
Reasons to Use Encryption ,
Creating Trust Relationships ,
Rounds , Parallelization and Strong
Encryption ,
Symmetric-Key Encryption ,
Symmetric Algorithms ,
Asymmetric Encryption ,
Hash Encryption ,
Applied Encryption Processes ,
Public Key Infrastructure (PKI)
Encryption Review DES, 3DES, AES, Blowfish
Securing Resources
TCP/IP Security Vulnerabilities ,
Implementing Security ,
Resources and Services ,
Protecting TCP/IP Services ,
Simple Mail Transfer Protocol (SMTP) ,
Testing and Evaluating
Implementing a New System ,
Security Testing Software ,
Security and Repetition
Firewalls and Virtual
Private Networks
Access Control Overview ,
Definition and Description of a Firewall ,
The Role of a Firewall
Firewall Terminology ,
Firewall Configuration Defaults ,
Creating Packet Filter Rules ,
Packet Filter Advantages and Disadvantages ,
Configuring Proxy Servers ,
Remote Access and Virtual Private Networks (VPNs) ,
Public Key Infrastructure (PKI)
Network Attacks
Categories ,
Brute-Force and Dictionary Attacks ,
System Bugs and Back Doors ,
Social Engineering and Non-direct ,
Attacks
General Security Principles
Security Awareness,
Need of Security Policy ,
Policy Solution based as required
Damage Control
Enforcement ,
Importance of Training & CT ,
Integrated Security Strategy ,
Need based deployment ,
Need to identify security-based issues ,
Physical Security
Protocol Layers and Security
TCP/IP and Network Security ,
The TCP/IP Suite and the OSI Reference Model ,
Physical, Network, Transport and
Application Layers
Levels of Firewall Protection
Basic Firewall Concepts ,
Firewall Strategies and Goals ,
Building a Firewall ,
Types of Bastion Hosts ,
Hardware Issues ,
Common Firewall Designs
Detecting and Distracting Hackers
Hackers–To Stay ,
Proactive Detection ,
Distracting and Deterring the Hacker
Incident Response
Setting up an Incident Response Team ,
Functions of an Incident Response Team ,
Planning for Response ,
Create a Response Policy ,
Documentation ,
Response Action
Operating System Security module designed to teach participants the
latest security industry recommendations and how to properly protect
Windows and Linux servers in a variety of settings. Participants will
learn how to protect OS from attacks, harden the operating system to
fully protect it, and scan hosts for known security problems. By the
end of the module, participants will have a solid understanding of
the security architectures used by Windows 2000 and Linux/ Unix.
Security Principles
Overview ,
Definition of Security ,
Evaluation Criteria ,
Security Levels, Mechanisms, and
Management ,
Windows 2000 Security ,
Linux Security ,
Plug gable Authentication Modules ,
Windows 2003 Server Security
Assessing Risk
Risk Assessment Basics ,
Security Threats ,
Windows 2000 Security Risks ,
General UNIX Security Vulnerabilities ,
System Port Scanning ,
UNIX Security Risks ,
NIS Security Concerns ,
NFS Security Concerns
Account Security
Overview of Securing Accounts ,
Passwords ,
Verifying System State ,
Password Aging in Linux
File System Security
Overview ,
Windows 2000 File System Security ,
Remote File Access Control ,
Combined Local and Remote Permissions ,
Linux File System Security
Reducing Risk
Risk Reduction Overview ,
Patches and Fixes ,
Windows 2000 Registry Security ,
Disabling and Removing Unnecessary Services in Windows 2000 and
UNIX
Internet Security Resources
(Appendix)
General, UNIX and Windows NT ,
Resources
Security Auditing, Attacks, and Threat Analysis is a module teaches
participants how to perform different phases of a security audit, including
discovery and penetration, and how to prevent unauthorized users from
controlling organization networks. The module discusses how to use
Windows 2000 and Linux to identify security issues and suggest industry-standard
solutions. Participants will also learn how to generate effective audit
reports that can help organizations improve their security and become
current with industry security standards.
Security Auditing
Introduction to Auditing ,
Auditor Roles and Perspectives ,
Conducting a Risk Assessment
Risk Assessment Stages
Discovery Methods
Discovery ,
Security Scans ,
Enterprise-grade Auditing Applications ,
Scan Levels
Social Engineering
Security Auditing and the Control Phase
Network Control ,
Control Phases ,
UNIX Password File Locations ,
Auditing and the Control Phase
Intrusion Detection
Intrusion-Detection Systems ,
IDS Rules ,
False Positives ,
Intrusion-Detection Software
Intruder Alert ,
Purchasing an IDS ,
Auditing with an IDS
Auditing and Log Analysis
Log Analysis ,
Firewall and Router Logs ,
Operating System Logs ,
Filtering Logs
Suspicious Activity ,
Log Storage ,
Auditing and Performance ,
Degradation
Auditing Server Penetration and Attack Techniques
Network Penetration ,
Attack Signatures and Auditing ,
Common Targets ,
Routers ,
Databases ,
Web and FTP Servers ,
E-mail Servers ,
Naming Services ,
Compromising Services ,
Auditing for System Bugs ,
Auditing Trap Doors and Root Kits ,
Auditing Denial-Of-Service Attacks ,
Buffer Overflow ,
Combining Attack Strategies ,
Denial of Service and the TCP/IP Stack
Audit Results
Auditing Recommendations ,
Creating the Assessment Report ,
Improving Compliance
Security Auditing and Security Standards ,
Improving Router Security ,
Enabling Proactive Detection ,
Host Auditing Solutions ,
Replacing and Updating Services ,
SSH and DNS
Information Warfare
Information Warfare (IW) 5-day Course
Information Warfare is the operation that target or exploit information media in order to win some objectives over an adversary. It has become an important tool for collection of scientific, economic, infrastructure and defence related information from intended objects to be exploited during peace and war, with out crossing any territorial limits.
This five-day programme will acquaint the participants with up-to-date techniques of Information Warfare, both Offensive and Defensive along with hands on exercises.
Module 1: Introduction
• History, Overview
of Information Warfare, Concepts importance of Defensive and Offensive
IW in peace, war and need for a doctrine thereof
• Contemporary Computer
Networks
• Packet movement
in the networks
• Internet and society
• E - governance
strategy
• Critical Infrastructure
and need for protection
Module 2: Information Warfare-RMA, Technology dominance
• IW - A new dimension
of war, RMA, a force multiplier
• Role of Information
in Warfare
• Information Technology Domination, HW, SW and Implications there of examples
of
Iran, Iraq and Syria, Implications for India
• Cyber War Technologies, Steganography
• Demo
Module 3: Information Warfare Operations •
Information Operations, Psy Ops, Perception & Media
Mgmt, Social Engg, EW, DSS,
C&C, AI etc.
• Case Studies of recent operations
•
Objectives of Defensive and Offensive Operations • The Eligible Receiver
Exercise
• The Solar Sunrise Attack
• The Moonlight Maze Attack
• The Mckninnon Case
Module 4: Defensive IW Operations
•
Defensive IW, necessity there of at all times • Information Superiority
• IW Targets •Threats
• Vulnerabilities
•
Cryptology, role in defensive strategy • IT Act 2000, Implications,
Trans judicial
Module 5: Defensive Information Operations, Strategies, Secure Networking • Defensive
Information Operations Strategies
• Router Analysis
• Secure Networking (GIG)
•
Information assurance, security policies • Certification and Accreditation
• Denial of Access, Firewall,
• Intrusion Detection, Anti Virus
• System and Software hardening
• Challenge Associated with Wireless
Module 6: Defensive Information Operations, Strategies, Secure Networking
•
IW attack Case Studies (China, Kosovo, Gulf, East Timor) • Hands
on Defensive Operations
• Real Time Logging
• Remote Intrusion
• Back Tracking
• Attack Path
• Case Studies
Module 8: Offensive IW Operations
•
Importance of Offensive Information Operations and modus operandi • Inside
the fence
•
Analysis of evidence
•
Seizing the signals
•
Computer Break-ins and Hacking
•
Open Sources, Viruses and Worms
•
Masquerade
•
Cyber leagues Legion and LOPHF
•
Role of Crypto Analysis
•
Demo
Module 9: Offensive Information Operations, Arming, Target Assignment • Arming
with 10 Weapons
•
Charting the environment, mapping adversaries Cyber space • Acquiring
Target Signature
• Selecting attack by target profiling
• Selecting appropriate offensive tools
•
Negotiating the environment and back tracking • Running the IW
operations
• Rules of engagement discussions
This is also designated as open day, for hands on, further interaction
with faculty.
PREREQUISITE: Working knowledge on Computer Systems (Windows. Office Applications, E-mail, Internet usage), Networking and mind to explore (Knowledge of C/C++ is desirable but not a must).
Network Analysis
Training(NAT) System
STN-5120 NAT
"Stratign has designed Test and Simulation
Modules for various Customers to meet their
Operational Training Requirements. The System
has been field-tested and can be customized for
each specific requirement to meet your
organization related needs."
Stratign FZCO provides cutting-edge
Network Analysis Training and Software's
for various types of Networks, providing
clients with the ability and confidence to
meet the challenges of tomorrow's
technology. Keeping pace with the industry
trends, we offer professional tools that
support the simulation of the latest
standards, protocols, software, and
hardware for both wired and wireless
networks.
The NAT is modular in architecture and can
be used to simulate multiple types of
network by changing respective hardware
modules.
The NAT system enables the operators to
understand and practice on a simulated
training environment prior to handling the
actual network. Multiple Simulated Test
and Training scenarios can be created as
per the trainer's requirement.
The Various types of modules that can be integrated with the system include.
• AN Simulation (NAT-LAN)
• SAT Simulation (NAT-SAT)
• Allows the user to create replica of the exact network infrastructure.
• Operators can be trained prior to deployment on a simulated environment.
• Multiple Simulated Test and Training scenarios can be created as per the trainer's requirement.
• System offers flexibility for advanced userst to create simulated complex network scenarios.
• New protocol modules can be introducedf for simulation and training without effecting actual network.
• Support for multiple types of Satellite andL LANN
• User friendly and Interactive Graphical UserI Interfacee
• Portable and easy to Carry
• Easy to Deploy
NAT SAT is a next generation satellite link
simulation and test system designed for
Network operators to significantly
accelerate the delivery of advanced
communications services while improving
quality and reducing the costs of
deployment. With Network Analyzer's
ability to integrate customized automated
testing, quickly respond to repair and turnup
requests, as well as offer an easy-toaccess
technology, service providers can
now drastically reduce operational costs
associated with new service turn-up and
Network maintenance testing and training.
Building on Stratign FZCO's popular
Network Analysis Training System, the
system provides Network operators with
greater efficiency and accuracy when
planning the entire lifecycle of a service
deployment. The system is also helpful for
familiarizing the operators with operating
concepts and intricacies of the actual
equipments before deployment.
FEATURES OF NAT-SAT
• Simulation of Abnormal Carrier Alarms
• Automatic Interference Simulation
• Automatic Parameter Simulation
• Data and trace storage Simulation
• Simulation of Carrier under Carrier display
• FEC Simulation
• Simulation of TDMA/FDMA
• Historical trace & Measurement playback
NAT LAN simulator is a professional
network simulator that provides operators
with an effective means of
simulatingComputer networks. The module
covers simulation of different LAN and
WAN protocols with a focus on
performance analysis, Network
programming and explanation of
networking principles.
NAT-LAN is a versatile toll to simulate and
analyze computer networks. With
comprehensive modeling facility, detailed
performance reports and enhanced
protocol analytics, NAT-LAN provides
trainers with unmatched power and
flexibility.
TECHNOLOGIES
Gigabit Ethernet: This is a new protocol
that has been added to the NAT-LAN
protocol stack. The design is IEEE 802.3z
standard.
Wireless LAN 802.11a and 802.11g:
These are two new protocol variants of
IEEE 802.11 series of wireless standards.
802.11a and 802.11g supports data rates
of 54 mbps, improving upon the 11 Mbps that 802.11b supports.
FEATURES OF NAT-LAN
• Supports C-Editor and Complier
• Can be used for simulating Node and
Device Modeling
• Simulates Packet Trace
• Capable of generating Hierarchical
Reporting
• Utilization and Delay
• Provides Simulated Network Statistics
• Metrics Analysis and Graphing
• Inbuilt LAN Bandwidth Measurement Tool
• Simple Graphical User Interface
Technical Specifications of NATSAT
Interface
• Giga Bit Ethernet LAN
• SMA Female
• RJ-45
Electrical
• 24 V DC 1.6 Amp
• DC Jack
Weight
• 2.1 Kg
Dimensions
• 260mm x 290mm x 130mm
Operating temperature
• between 5 degrees Celsius and 55
degrees Celsius
Relative humidity
• Operating: between 8% and 90%
(non--condensing)
Operating System Supported
• Windows XP, Windows Vista and
Windows 7
Technical Specifications of NAT-LAN
Interface
• Giga Bit Ethernet LAN
• RJ-45
Electrical
• 24 V DC 1.4 Amp
• DC Jack
Weight
• 2 Kg
Dimensions
• 260mm x 290mm x 130mm
Operating temperature
• between 5 degrees Celsius and 55 degrees
Celsius
Relative humidity
• Operating: between 8% and 90% (non--
condensing)
Operating System Supported
• Windows XP, Windows Vista and Windows 7
