cheddarcon-powershell-threat-hunting-registration

    After you press "Request Registration" near the bottom of this form, within 30 seconds, status will be provided at the bottom of the form, you will also be contacted by phone for credit card information.

    Tech Now is pleased to have the opportunity to provide you training for "Windows Security Automation and Threat Hunting with PowerShell” at CheddarCon 2018!

    Scroll down to see the course description.

    First Name*

    Last Name*

    Your Email*

    Your Organization*

    Phone*

    Questions:

    After you press "Request Registration" on this form, within 30 seconds, status will be provided at the bottom of the form, you will also be contacted by phone for credit card information.

    Windows Security Automation and Threat Hunting with PowerShell Seminar

    Location: 400 W Wisconsin Ave, Milwaukee, WI 53203, USA

    Date: October 10, 2018 8:00am – 4:00pm

    Duration: 8 hours

    Audience: Cyber Security professionals and Windows administrators

    Attendees Environment: Laptops not required, but suggested to have better hands-on absorption of subject matter.

    Description:
    PowerShell is both a command-line shell and scripting language. Fight fires quickly using existing or custom PowerShell commands or scripts at the shell. PowerShell is made for Security Operations (SecOps) automation on Windows. This seminar does not require prior programming skills. The seminar focuses on PowerShell programming, giving a beginner skills to be productive in windows scripting to automate tasks and also remediate problems.

    Cyber Security is the objective of this seminar, and the PowerShell examples will demonstrate PowerShell capabilities that help lock down a Windows system and also report security status.

    Objectives:

    PowerShell Overview

    • Getting started running commands
    • Security cmdlets
    • Using and updating the built-in help
    • Execution policies
    • Fun tricks with the ISE graphical editor
    • Piping .NET and COM objects, not text
    • Using properties and methods of objects
    • Helping Linux admins feel more at home
    • Aliases, cmdlets, functions, modules, etc.

    PowerShell Utilities and Tips

    • Customizing your profile script
    • PowerShell remote command execution
    • Security setting across the network
    • File copy via PowerShell remoting
    • Capturing the output of commands
    • Parsing text files and logs with regex patterns
    • Parsing Security Logs
    • Searching remote event logs
    • Mounting the registry as a drive
    • Security settings in the Registry
    • Exporting data to CSV, HTML and JSON files
    • Running scripts as scheduled jobs
    • Continued Security Compliance
    • Pushing out scripts through Group Policy
    • Importing modules and dot-sourcing functions
    • http://www.PowerShellGallery.com

    PowerShell Scripting

    • PowerShell Scripting to implement Security Practices
    • Writing your own functions to automate security status and settings
    • Passing arguments into your scripts
    • Function parameters and returning output
    • Flow control: if-then, foreach, that make security decisions
    • How to pipe data in/out of your scripts for security compliance and reporting

    Attendees to this seminar, Windows Security Automation and Threat Hunting with PowerShell, will receive TechNow approved course materials and expert instruction.[/wr_text][/wr_column][/wr_row]

    Trademark Recognition

    (ISC)², CBK, and CISSP are registered marks of the International Information Systems Security Certification Consortium in the United States and other countries.

    Access, Excel, Hyper-V, Outlook, Microsoft, SharePoint, Silverlight, SQL Server, Visual Basic, Win32, Windows, Windows PowerShell and Windows Server are registered trademarks of Microsoft Corporation.

    Adobe, Acrobat, Flash and Photoshop are registered trademarks of Adobe Systems Incorporated in the United States and/or other countries

    Amazon Web Services is a trademark of Amazon.com, Inc.

    Android is a trademark of Google Inc.

    APMG-International Change Management, The APMG-International Change Management and Swirl Device logo, APMG-International AgilePM and The APMG-International AgilePM and Swirl Device logo are trademarks of The APM Group Limited.

    Certified Ethical Hacker (CEH) is a registered trademark of EC-Council.

    Cisco is a registered trademark of Cisco Systems Inc.

    CMMI® is registered in the U.S. Patent and Trademark Office by Carnegie Mellon University.

    IIBA®, the IIBA® logo, BABOK® and Business Analysis Body of Knowledge® are registered trademarks owned by International Institute of Business Analysis. These trademarks are used with express permission of International Institute of Business Analysis.

    CAPM, Certified Associate in Project Management (CAPM), PMP, Project Management Professional (PMP), PMI-ACP, PMI Agile Certified Practitioner (PMI-ACP), PMBOK, and the R.E.P. Logo are marks of Project Management Institute, Inc.

    CBAP® and CCBA® are registered certification marks owned by International Institute of Business Analysis. These trademarks are used with express permission of International Institute of Business Analysis.

    Certified Business Analysis Professional, Certification of Competency in Business Analysis, Endorsed Education Provider, EEP and the EEP logo are trademarks owned by International Institute of Business Analysis. These trademarks are used with express permission of International Institute of Business Analysis.

    COBIT is a trademark of ISACA, registered in the U.S. and other countries.

    COBIT® 5 is a trademark of the Information Systems Audit and Control Association® (ISACA®). This product includes COBIT® 5, used by permission of ISACA®. 2012© ISACA®. All rights reserved.

    CompTIA A+ and CompTIA Network+ are registered trademarks of the Computing Technology Industry Association, Inc.

    CompTIA CASP and CompTIA Cloud Essentials are trademarks of the Computing Technology Industry Association, Inc.

    GIAC and associated certifications:  GSEC, GPEN, GXPN, GCFW, GCUX, GCWN, GCIA, GREM are registered trademarks of the SANS Institute

    Hadoop is a registered trademark of the Apache Software Foundation.

    Hibernate is a registered trademark and servicemark of Red Hat, Inc.

    iPad, iPhone, Mac and Mac OS are trademarks of Apple Inc., registered in the U.S. and other countries.

    ITIL®, PRINCE2® and MSP® are registered trademarks of AXELOS Limited.

    JavaScript, JavaServer, JavaServer Pages, Enterprise JavaBeans, MySQL and PL/SQL are trademarks of Oracle Corporation.

    Linux is a registered trademark of Linus Torvalds.

    Java and Oracle are registered trademarks of Oracle Corporation.

     Palo Alto Networks, PAN-OS, App-ID, Content-ID, Url-ID, GlobalProtect, Wildfire, and Panorama are trademarks of Palo Alto Networks, Inc.

    "Python" is a registered trademark of the Python Software Foundation, used by Learning Tree International with permission from the Foundation.

    Red Hat and Red Hat Enterprise Linux are registered trademarks of Red Hat, Inc. in the United States and other countries.

    Red Hat Middleware, LLC. All rights reserved.

    SANS and associated certifications:  GSEC, GPEN, GXPN, GCFW, GCUX, GCWN, GCIA, GREM are registered trademarks of the SANS Institute

    SAP Crystal Reports is the registered trademark of SAP AG in Germany and in several other countries.

    Scrum Alliance REPSM is a service mark of Scrum Alliance, Inc. Any unauthorized use is strictly prohibited.

    TechNow® is a registered trademark of TechNow Incorporated.

    The CompTIA Authorized Quality Curriculum logo is a proprietary trademark of CompTIA. All rights reserved.

    The Swirl logo™ is a trademark of AXELOS Limited.

    Transact-SQL is a trademark of Sybase, Inc.

    UNIX is a registered trademark of The Open Group.

    VMware is a registered trademark of VMware, Inc. in the United States and/or other jurisdictions.

    XML is a trademark of MIT, INRIA or Keio on behalf of the World Wide Web Consortium.

    in   

    N-595: VoIP Security Analysis and Design

    Course Overview:

    As VoIP (Voice-over IP) is integrated into the operations of many missions, it is imperative to understand its security ramifications.  In the N-595: VoIP Security Analysis and Design class the objectives are designed for those who are chartered with the responsibility of securing networks and application environments that incorporate VoIP.   Topics include how VoIP works, its interactions with the network, its vulnerabilities and mitigations.  Focus is on leading open source and proprietary technologies utilizing Asterisk and Cisco and the protocols SIP, H.323, RTP, MGCP, and Skinny.  Other protocols such as Nortel's UNIStim will be addressed.  As for Cisco, security pieces in the VoIP CallManager servers, Catalyst switches, IOS-based routers, and ASA firewalls, amounts to several different platforms, each with its own management interface and lockdown procedures.   Various open source tools including those in BackTrack are used for VoIP attacks.  A task list of actions for securing enterprise VoIP is carried out in hands-on labs, performed on Cisco phones, routers, switches, and ASA firewalls.

    Attendees to N-595: VoIP Security Analysis and Design will receive TechNow approved course materials and expert instruction.

    Dates/Locations:

    No Events

    Duration: 5 Days

    Course Objectives:

    • VoIP Architecture
    • VoIP Signaling and media protocols
    • Common VoIP authentication mechanisms
    • Common VoIP encryption techniques
    • VoIP protocol analysis with Wireshark
    • Maintaining QoS while mitigating DoS
    • VoXML, XML, and application integration security
    • Converged network security design and implementation
    • Impact of NAT and firewalls
    • SIP, H.323, and MGCP vulnerabilities
    • VPN, IPsec and SRTP to secure VoIP services
    • Penetration testing with open source tools
    • Attacks for Eavesdropping, call redirection, and DoS
    • Design of hacked firmware virtualization layer
    • Concise lockdown steps for network hardware and VoIP

    Prerequisites:

    • This is an advanced Information Security Course which requires basic Windows & UNIX competency
    • Certification or 2 years of experience in these operating systems is highly recommended
    • As well as an understanding of TCP/IP

    Comments

    Latest comments from students

    Liked the class?  Then let everyone know!

    RH-295: Linux System Administration II

    Course Overview:

    Linux System Administration II course is for experienced administrators ready for advanced administration topics. This course provides students with hands-on experience working with more complex and integrated administration concepts, and builds upon the Part 1 course. Students will be instructed in essential  local Red Hat system administration skills including: Logical Volumes, Raid Management, and System Logging, SELinux and Virtual Machines.  The Linux System Administration II course will get you started in understanding network administration topics, including monitoring, routing, Firewall with iptables, and servers such as NFS, SAMBA, DNS, SMTP, HTTP, DHCP, and Kickstart.

    Attendees to RH-295: Linux System Administration II will receive TechNow approved course materials and expert instruction.

    Dates/Locations:

    No Events

    Duration: 5 days

    Course Objectives:

    • Managing Logical Volumes and RAID
    • Network Routing, Filtering and Monitoring
    • Configuring File Sharing Across Platforms
    • Configuring Internet Services
    • Configuring Security
    • Configuring System Messaging
    • Using Name Services
    • Configuring Name Service Clients
    • Configuring Kickstart
    • Virtualization with KVM
    • Troubleshooting Boot Process

    Prerequisites:

    Comments

    Latest comments from students

    Liked the class?  Then let everyone know!

    CL-415: AWS System Operations

    Course Overview:

    AWS System Operations begins with a one day  introduction to AWS products, services, and common solutions. It provides you with fundamentals to become more proficient in identifying AWS services so that you can make informed decisions about IT solutions based on your business requirements and get started working on AWS.

    The AWS course continues to flow with teaching those in a Systems Administrator or Developer Operations (DevOps) role how to create automatable and repeatable deployments of networks and systems on the AWS platform. The course covers the specific AWS features and tools related to configuration and deployment, as well as common techniques used throughout the industry for configuring and deploying systems.

    To continue to learn more about AWS, TechNow has the following course:

    CL-425: AWS Security Operations and Architecture 

    Attendees to CL-415: AWS System Operations will receive TechNow approved course materials and expert instruction.

    Duration: 5 Days

    Audience:
    This course is intended for:
    • System Administrators
    • Software Developers, especially those in a Developer Operations (DevOps) role

    DoD 8140: Not Mandated

    Course Prerequisites:
    We recommend that attendees of this course have the following prerequisites:
    • Background in either software development or systems administration
    • Some experience with maintaining operating systems at the command line (shell scripting in Linux environments, cmd or PowerShell in Windows)
    • Basic knowledge of networking protocols (TCP/IP, HTTP)

    Course Objectives:
    This course is designed to teach you how to:
    • Understand basic data center design concepts.
    • Recognize terminology and concepts as they relate to the AWS platform and navigate the AWS Management Console.
    • Understand the foundational infrastructure services, including Amazon Virtual Private Cloud (VPC), Amazon Elastic Compute Cloud (EC2), Amazon Elastic Block Store (EBS), Amazon Simple Storage Service (S3), Auto Scaling, and Elastic Load Balancing (ELB).
    • Understand the security measures AWS provides and key concepts of AWS Identity and Access Management (IAM).
    • Understand AWS database services, including Amazon DynamoDB and Amazon Relational Database Service (RDS).
    • Understand AWS management tools, including Amazon CloudWatch and AWS Trusted Advisor.
    • Use standard AWS infrastructure features such as Amazon Virtual Private Cloud (VPC), Amazon Elastic Compute Cloud (EC2), Elastic Load Balancing, and Auto Scaling from the command line
    • Use AWS CloudFormation and other automation technologies to produce stacks of AWS resources that can be deployed in an automated, repeatable fashion
    • Build functioning virtual private networks with Amazon VPC from the ground up using the AWS Management Console
    • Deploy Amazon EC2 instances using command line calls and troubleshoot the most common problems with instances
    • Monitor the health of Amazon EC2 instances and other AWS services
    • Manage user identity, AWS permissions, and security in the cloud
    • Manage resource consumption in an AWS account using tools such as Amazon CloudWatch, tagging, and Trusted Advisor
    • Select and implement the best strategy for creating reusable Amazon EC2 instances
    • Configure a set of Amazon EC2 instances that launch behind a load balancer, with the system scaling up and down in response to demand
    • Edit and troubleshoot a basic AWS CloudFormation stack definition

    Dates/Locations:

    No Events

    Course Outline:

    Day 1

    • Introduction and History of AWS
    • AWS Infrastructure: Compute, Storage, and Networking
    • AWS Security, Identity, and Access Management
    • AWS Databases
    • AWS Management Tools

    Day 2
    • System Operations on AWS Overview
    • Networking in the Cloud
    • Computing in the Cloud
    Day 3
    • Storage and Archiving in the Cloud
    • Monitoring in the Cloud
    • Managing Resource Consumption in the Cloud
    Day 4
    • Configuration Management in the Cloud
    • Creating Scalable Deployments in the Cloud
    • Creating Automated and Repeatable Deployments
    Day 5
    Full Day Lab
    • Select the appropriate AWS service based on compute, data, or security requirements
    • Execute steps required to provision cloud resources for selected deployment
    • Identify and implement data protection, encryption, and capacity planning
    • Implement and manage security policies, access controls, and role
    • Implement Automation

     

    Next/Related Courses: