TN-565: Nessus Vulnerability & Compliance Auditing

Course Overview:

This course provides security professionals with the skills and knowledge to perform vulnerability and compliance scanning of supported operating systems, devices, and applications. Students will construct custom scan policies for topology discovery, network vulnerability detection, credentialed patch audits, and compliance benchmarks, and discuss the underlying technologies utilized by the Nessus scanner.

This course provides students with the necessary information to prepare for the Tenable Certified Nessus Auditor (TCNA) exam.

Date/Locations:

No Events

Duration: 5 days

Course Objectives:

Introduction to Nessus and Vulnerability Scanning
Nessus Installation and Administration
Basic Nessus Scan Operation
Nessus Scan Configuration and Policy Creation
Vulnerability Analysis and Reporting with Nessus
Advanced Scan Configuration and Policy Creation
Introduction to Compliance and Auditing
Nessus Auditing Features
Windows System Auditing
Unix System Auditing
Cisco IOS Auditing
Nessus Database Auditing
Nessus Content Auditing
Auditing to Industry Guidelines
Auditing to Federal Guidelines

Prerequisites:

Students should possess a basic understanding of TCP/IP networking, operating systems security, and common client/server applications.

Comments

Latest comments from students

Liked the class? Then let everyone know!

Security Course Flow

We are often asked what is the recommended sequence of classes. Here is our recommended sequence of classes for The Security Field.

Certified Information Security Manager (CISM)

CT-325 CompTIA Security+

TN-825 Certified Information Security Manager

Certified Information Systems Auditor(CISA)

CT-325 CompTIA Security+

TN-425 Certified Ethical Hacker

TN-822: Certified Information Systems Auditor (CISA)

Certified Information Systems Security Professional(CISSP)

CT-325 CompTIA Security+

TN-425 Certified Ethical Hacker

TN-815 CISSP Certification Prep Seminar

TN-901: Linux for Security Professionals

Course Overview:

This course will be fast paced with in-depth and live demonstrations.

Date/Locations:

No Events

Duration: 1 day

Course Objectives:

AIDE
DNS Security with DNSsec
Logging and Audit Management
Linux Security Modules and SE-Linux
Linus Containers (Jailing Services and Apps)
SSH and SSL tunneling

Prerequisites:

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-415: Computer Hacking Forensics Investigator (CHFI)

Course Overview:

The Computer Hacking Forensic Investigator (CHFI) course delivers the security discipline of digital forensics from a vendor-neutral perspective. CHFI is a comprehensive course covering major forensic investigation scenarios and enabling students to acquire necessary hands-on experience with various forensic investigation techniques and standard forensic tools necessary to successfully carry out a computer forensic investigation leading to the prosecution of perpetrators.

The CHFI certification gives participants the necessary skills to perform an effective digital forensics investigation. CHRI presents a methodological approach to computer forensics including searching and seizing, chain-of-custody, acquisition, preservation, analysis and reporting of digital evidence

What’s Included:

5 days of instructor-led in classroom training
Detailed Labs for hands-on learning experience; approximately 50% of training is dedicated to labs
Hundreds of investigation tools including EnCase, Access Data FTL, & ProDiscover
Huge cache of evidence files for analysis including RAW, .dd images, video & audio files, MS Office files, systems files, etc.
CHFI Courseware
Exam Voucher
CHFI onsite exam scheduling

Course Objectives:

Establish threat intelligence and key learning points to support pro-active profiling and scenario modeling
Perform anti-forensic methods detection
Perform post-intrusion analysis of electronic and digital media to determine the who, where, what, when, and how the intrusion occurred
Extract and analyze of logs from various devices like proxy, firewall, IPS, IDS, Desktop, laptop, servers, SIM tool, router firewall, switches AD server, DHCP logs, Access Control Logs & conclude as part of investigation process
Identify & check the possible source/ incident origin
Recover deleted files and partitions in Windows, MAC OS X, and Linux
Conduct reverse engineering for known and suspected malware files
Collect data using forensic technology methods in accordance with evidence handling procedures, including collection of hard copy and electronic documents

Dates/Locations:

No Events

Duration: 5 Days

Course Content:

- Module 01. Computer Forensics in Today’s World
- Module 02. Computer Forensics Investigation Process
- Module 03. Understanding Hard Disks and File Systems
- Module 04. Data Acquisition and Duplication
- Module 05. Defeating Anti-forensics Techniques
- Module 06. Operating System Forensics (Windows, Mac, Linux)
- Module 07. Network Forensics
- Module 08. Investigating Web Attacks
- Module 09. Database Forensics
- Module 10. Cloud Forensics
- Module 10. Malware Forensics
- Module 11. Investigating Email Crimes
- Module 12. Investigating Email Crimes
- Module 13. Mobile Forensics
- Module 14. Forensics Report Writing and Presentation

Prerequisites:

- - 2+ years of proven information security work experience
  - Educational background with digital security specialization
Target Audience:
- - Law Enforcement
  - Defense & Military
  - E-Business Security
  - Systems Administrators
  - Legal Professionals
  - Banking & Insurance professionals
  - Government Agencies
  - IT Managers
Comments

Latest comments from students

Liked the class? Then let everyone know!

Courses Similar to SANS

TechNow is in no way associated with SANS or GIAC, but has courses that are similar in subject matter: