Observations of Instructor Led Training with Real Hardware

TechNow has heard many students talk about virtualized/remote training that TechNow Does Not Do. While training our most recent offering of PA-215: Palo Alto Networks Firewall Essentials FastTrack a student told his story of how he endend up in our course. His story we have heard for other technologies like Cisco, VMware, BlueCoat and other products.

A large percentage of training is moving to the virtualized/remote lab environments. Students are asked to use some variant of remote access software and remote into the training company's lab environment. Our student in our Palo Alto Networks Firewall course informed us that he went to a very costly offering of that course from the vendor and was not able to perform any labs. There were either network connectivity issues, or issues with the remote access software, or other problems. The whole training experience was very frustrating and not productive.

We keep our labs open to students if they would like after hours, or before hours access. Repeatedly going through a lab engrains that knowledge for later recall. Touching hardware is so critical in understanding the problems that arise when a cable comes loose, or a cable gets plugged in the wrong port. There are other scenarios such as just pulling the power cable, or turning off a power strip, or accidently overwriting a configuration. These disaster scenarious requires hands-on physical access to hardware. Preventing and recovering from disasters is what it's all about, and that requires hands-on, instructor led, real hardware.

L-395: Accelerated Linux Administration and Utilities

Course Overview:

This course is extremely fast paced and for students that have already had UNIX or Linux training, or have not worked with Linux in several months or years. This is NOT a course for students new to Linux and assumes the student requires a refresher before progressing through high end security courses that require dexterity on Linux. RedHat and Ubuntu, VMware Virtual Machines, and BackTrack are used for the instruction of this course. The student will acquire the skills to easily navigate the advanced VMware training environment and will be able to create scripts to manipulate and manage Linux. The ulimate goals of the skills of this course is to provide the student the ability to automate through scripting BackTrack tools for offensive security, forensics, and defense.

Attendees to L-395: Accelerated Linux Administration and Utilities will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Duration: 5 days

Course Objectives:

Day 1 and 2: Unix Review and Unix Utilities

Linux File System Archictecure and In-Depth discussion of Hard and Soft Links
Linux File, Directory, and Permissions Management
Linux archives using tar and zip
Interacting with BASH
Review of Common Linux commands
Sorting files by line or field
Regular Expressions (meta character) with grep commands to locate specific lines in files
Grep, egrep extended metacharacters, combinations-lab advanced combinations- lab Sed
Basic commands- Lab, Advanced commands- Lab, Advanced scripting -Lab
Miscellaneous commands Tr, sort, cut, past, pr -Lab
Performing non-interactive editing tasks with the sed command
Writing simple sed scripts to perform complex editing tasks
Using awk variables & arrays to sort data
Employing awk programs to manipulate numeric & textual data
Performing formatted printing in awk
Writing simple awk programs to write reports from data files
Using built-in awk functions & defining new functions
Write awk programs that make decisions based on numeric or string comparisons (branches & loops)

Day 3 – Intro to Programming / Shell Scripting

Shell Review
Shell Interpretation of Quotes & Backslash
The Bash Shell
Shell's combined with UNIX utilities
Programming Basics
Data Constructs
Programming Looping
Your Environment
More on Parameters

Day 4 and 5 – Security Fundamentals, Linux Administration

System Configuration / Kernel overview
System Maintenance / Disk and file admin
Using utilities for process control, locating files & automating maintenance tasks
System Startup / Boot Process – LILO & GRUB Configuration
Managing the Linux file system
Customization of setup files
Run Levels
Network Services / Configuration
User Management Monitoring, accessing & restricting root system access
Administration Tools
Process Control
Client side components of NFS, Samba, NTP, NIS
Server side components such as DHCP, Samba, NIS, LDAP, inet, telnet, ftp, DNS, etc.

Prerequisites:

Prior UNIX/Linux experience or training

Comments

Latest comments from students

User: mikenaya

Instructor comments: As usual, Dave was excellent and the content was very relevant to our line of work.

Facilities comments: The hotel facilities met our basic needs but it was awkward having a bathroom so close. I can't wait for the new facility to open.

User: fquinene

Instructor comments: Instructor was super knowledgeable and helped me tie in a lot of information from other OS and processes.

Facilities comments: Facility was fine

Liked the class? Then let everyone know!

N-505: CISCO DoD Comply to Connect (C2C)

Course Overview:

Cisco DoD Comply-to-Connect (C2C) course teaches you how to implement and deploy a Department of Defense (DoD) Comply-to-Connect network architecture using Cisco Identity Services Engine (ISE). This training covers implementation of 802.1X for both wired and wireless devices and how Cisco ISE uses that information to apply policy control and enforcement. Additionally, other topics like supplicants, non-supplicants, ISE profiler, authentication, authorization, and accounting (AAA) and public key infrastructure (PKI) support, reporting and troubleshooting are covered. Finally, C2C specific use case scenarios are covered.

This training also earns you 32 Continuing Education (CE) credits toward recertification.

Dates/Locations:

No Events

Duration: 5 days

Course Outline:

Section 1: C2C Fundamentals

Comply to Connect Overview
From C2C to ZTA
Steps to Implement C2C

Section 2: Cisco Identity-Based Networking Services

Cisco IBNS Overview
AAA Role in Cisco IBNS
Compare Cisco IBNS and Cisco ISE Solutions
Explore Cisco IBNS Architecture Components

Section 3: Introducing Cisco ISE Architecture

Cisco ISE as a Network Access Policy Engine
Cisco ISE Use Cases
Cisco ISE Functions

Section 4: Introducing Cisco ISE Deployment

Cisco ISE Deployment Models
Cisco ISE Licensing and Network Requirements
Cisco ISE Context Visibility Features
New Features in Cisco ISE 3.X

Section 5: Introducing Cisco ISE Policy Enforcement Components

802.1X for Wired and Wireless Access
MAC Authentication Bypass for Wired and Wireless Access
Identity Management
Active Directory Identity Source
Additional Identity Sources
Certificate Services

Section 6: Introducing Cisco ISE Policy Configuration

Cisco ISE Policy
Cisco ISE Authentication Rules
Cisco ISE Authorization Rules

Section 7: PKI and Advanced Supplicants

Public Key Infrastructure (PKI)
TEAP in Comply to Connect (C2C)
Secure Client ISE features and Configuration for C2C

Section 8: Introducing the Cisco ISE Profiler

Web Access with Cisco ISE
ISE Profiler
Cisco ISE Probes
Profiling Policy
Custom Attributes in Profile

Section 9: Introducing Cisco ISE Endpoint Compliance Services

Endpoint Compliance Services Overview

Section 10: Configuring Client Posture Services and Compliance

Client Posture Services and Provisioning Configuration

Section 11: Introducing Profiling Best Practices and Reporting

Profiling Best Practices

Section 12: C2C Use Cases

Cisco CX ISE Reporting Tool
ISE Reporting
ISE Hardening
Profiling Best Practices for C2C

Section 13: C2C Third-Party Integrations-Tenable

Tenable Use Case
Tenable Overview and Capabilities
Tenable Integration Prerequisites
Tenable Integration Configuration
Policy Design
Policy Enforcement
Enforcement Verification

Section 14: C2C Third-Party Integrations-MECM

MECM Use Case
MECM Overview and Capabilities
MECM Integration Prerequisites
MECM Integration Configuration
Policy Design
Policy Enforcement
Enforcement Verification

Section 15: C2C Third-Party Integrations-Trellix

Trellix Use Case
Trellix Overview and Capabilities
Trellix Integration Prerequisites
Trellix Integration Configuration
Policy Enforcement
Enforcement Verification

Section 16: Troubleshooting Cisco ISE Policy and Third-Party NAD

Cisco ISE Third-Party Network Access Device Support
Troubleshooting Cisco ISE Policy Configuration

Section 17: Exploring Cisco TrustSec

Cisco TrustSec Overview
Cisco TrustSec Enhancements
Cisco TrustSec Configuration

Section 18: Working with Network Access Devices

Reviewing AAA
Cisco ISE TACACS+ Device Administration
Configuring TACACS+ Device Administration
TACACS+ Device Administration Guidelines and Best Practices

Course Prerequisites:

There are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are:

Familiarity with 802.1X
Familiarity with Microsoft Windows Operating Systems
Familiarity with Cisco IOS CLI for wired and wireless network devices
Familiarity with Cisco Identity Service Engine

EC-Council

TechNow,Inc is an Accredited Training Center. As an ATC we are authorized to conduct EC-Council curriculum courses. Students will receive official EC-Council Curriculum and access to iLabs and when applicable access to EC-Council Cyber Range.

Here are the EC-Council course offerings:

TN-515: Implementing Cybersecurity and Information Assurance Methodologies

Course Overview:

Learn to protect yourself and your company against hackers, by learning their tools and techniques, and then testing your network. This course is heavily based on Kali and primarily on Metasploit. In TN-515: Implementing Cybersecurity and Information Assurance Methodologies class you will learn the step by step process that hackers use to assess your enterprise network, probe it & hack into it, utilizing a mixed-platform target environment including Windows, Linux, Solaris, and Cisco. This course is 90% hacking, but defenses for demonstrated hacks will be discussed. If you want to know the ins and outs of the hacks presented in this course, then this is the course for you.

Attendees to TN-515: Implementing Cybersecurity and Information Assurance Methodologies Class Attendees will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

Introduction to Pen Testing using the PTES model
Metasploit Basics
- MSFconsole, MSFcli, Armitage, MSFpayload, MSFencode, NasmShell
Intelligence Gathering
- Nmap, Databases in Metasploit, Port Scanning with Metasploit
Quick Intro to Ruby
- Writing a simple Ruby script to create a custom scanner
Vulnerability Scanning
- Importing Nessus Results
- Scanning with Nessus from Within Metasploit
Exploitation
- Using the Metasploit Framework and console to exploit
Meterpreter
- Compromising a Windows System
- Attacking MS SQL, xp_cmdshell
- Dumping Usernames and Passwords, extracting and dumping hashes
- Pass the Hash and Token Impersonation
- Pivoting
- Railgun
- Using Meterpreter Scripts: Migrating a process, Killing AV, Persistence
Avoiding Detection
- Creating Stand-Alone Binaries with MSFpayload
- Encoding with MSFencode and Packers (go Green Bay:)
Exploitation Using Client Side Attacks
- Introduction to Immunity Debugger
- Using Immunity Debugger to Decipher NOP Shellcode
Metasploit Auxiliary Modules
Social Engineer Toolkit (SET)
- Spear-Phishing, Web Attack
- Creating a Multipronged Attack
Creating Your Own Module
- Adapt an existing Module
- Add some PowerShell and Run the Exploit
Meterpreter Scripting
Capture The Flag Exercise

Prerequisites:

This is an advanced Cybersecurity and Information Assurance Course which requires basic Windows & UNIX competency
Certification or 2 years of experience in these operating systems is highly recommended
An understanding of TCP/IP

Comments

Latest comments from students