Intrusion Prevention Training Course – Hands-on

Intrusion Prevention Training; The latest technology in information security is Intrusion Prevention. Rather than relying on human intervention to respond to an attack, Intrusion Prevention Systems automatically stops hackers, worms, and disgruntled employees before their attacks can complete. This all happens before they can cause damage, potentially saving your organization millions. In Intrusion Prevention: Stop Hackers Before They Start, you will learn how this groundbreaking IPS technology works, how to deploy it, and how to manage it efficiently and effectively.

As with any new automated technology, there are many perils to avoid when implementing it. Just as Intrusion Prevention Systems can prevent hackers and worms, they can easily be configured incorrectly which can block legitimate users from doing their jobs. The intrusion prevention training you receive in this system and network security course will enable you to deploy intrusion prevention systems safely.

The Intrusion Prevention training offered by EnoInstitute covers all areas of intrusion prevention. Host Intrusion Prevention and Network Intrusion Prevention are covered in great detail. You will learn the technical details that make Intrusion Prevention Systems so effective. Much of technical learning is best done by doing, so you will experience a multitude of hands on lab exercises using popular technologies like Entercept, Okena, Inline Snort, Netscreen, Internet Security Security Systems, Top Layer. Additionally, you will learn how to enable Intrusion Prevention features built into operating systems such as OpenBSD, Solaris, Linux and even Tru64.

WHAT’S INCLUDED?

• 5 Days of Intrusion Prevention Training from an Authorized Instructor
• Official Student Courseware (Electronic Version)
• Certificate of Completion

• Intrusion Detection In-Depth Training
• Fundamentals of Information Systems Security Training
• ISACA CSX Practitioner I: Identification and Protection Training

Intrusion Prevention Training – Course Content

• Understanding hashing functions
• Understanding buffer overflows
• Anatomy of an exploit
• Network protocol based attacks
• Intrusion Prevention vs. Intrusion Detection
• Intrusion Prevention deployment strategies
• The stack and heap data structures
• The role the Kernel plays in attacks
• Linux, Solaris and Windows Kernels
• Unix system calls and the Windows API
• Vulnerability development and discovery
• Malicious worm internals
• Host Intrusion Prevention
• Syscall Interception
• Non-executable stacks
• Non-executable heaps
• Page protection
• Heuristic and behavioral blocking
• Network Intrusion Prevention
• Web application IPS
• Layer 7 Intrusion Prevention
• Packet scrubbing
• Shunting and session sniping
• Attack signature development
• Mixed mode IPS
• DDoS Prevention
• Calculating ROI for Intrusion Prevention

Labs

• Hack into an unprotected system
• Utilize a buffer overflow
• Implement a no-exec stack
• Attack a no-exec stack
• Implement an no-exec heap
• Attack a no-exec heap
• Syscall Redirection
• Implement page protection in Linux
• Page protection on Windows
• Page protection on OpenBSD
• Kernel hardening with PaX
• Grsecurity Lockdown
• Use a stack canary
• Implement a Host Intrusion Prevention System
• Attempt two previous attacks against the Host
• Attempt two previous attacks against the Host Intrusion Prevention System
• Deploy Network Intrusion Prevention
• Capture an attack and write an IPS rule
• Build in web server layer 7 IPS
• Session sniping exercise