Understanding Security
Key Principles of Security
Security Business Case
Security Risk Management Discipline
Defense in Depth
Security Incident Response
Attack Scenarios
Understanding Your Enemy

Attack Techniques
Network Reconnaissance
Mapping the Network
Sweeping the Network
Scanning the Network
Viruses, Worms, and Trojan Horses
Gaining Control over the System
Recording Keystrokes
Cracking Encrypted Passwords
Reveal Hidden Passwords
Social Engineering
Gaining Unauthorized Access
Hiding Evidence of an Attack
Performing a Denial of Service

Trusted Networks
The Need For Trusted Networks
Authentication and Identification
History of Cryptography
Math and Algorithms
Private Key Exchange
Public Key Exchange
Message Authentication
Public Key Infrastructure and Certification Authority
Applications of PKI
Installing a Root CA and Issuing CA
Managing CAs
Configuring, Managing, and Troubleshooting CRLs
Configuring Archival and Recovery of Keys
Deploying and Revoking Certificates
Backing Up and Restoring the CA
Troubleshooting PKI and IPSec
Troubleshooting IPSec Across Networks

Securing Active Directory
Securing User Accounts and Passwords
Introduction to Kerberos
Managing Kerberos
NTLM
Password Risks
Creating Strong Passwords
Enforcing Password Policies
Account Lockout Policies
Password Recovery
Securing Active Directory Objects and Attributes
Implementing Group Policy
Designing Active Directory Forests and Domains

Securing the Core Operating System
Securing Permissions
Securing Services
Securing IE 6 and Microsoft Office
Configuring Security Templates
Auditing Microsoft Windows Security Events
Securing Mobile Computers
Biometrics

Securing the Network
The Principles of Network Security
Network Security Terminologies
Network Security and Data Availability
Components of Network Security
Network Security Policies
Internet Protocol Security (IPSec)
IP Packet Structure
Routing and Access Control Lists

Securing Wireless Networks
Wireless Authentication Methods
Wireless Encryption Methods
Wireless Access policies

Securing Domain Controller
Threats to Domain Controllers
Hardening Domain Controllers

Security for DNS Servers
Threats to DNS Servers
Hardening DNS Servers

Security for Terminal Servers
Threats to Terminal Servers
Hardening Terminal Servers

Security for DHCP Servers
Threats to DHCP Servers
Hardening DHCP Servers

Security for WINS Servers
Threats to WINS Servers
Hardening WINS Servers

Security for Routing and Remote Access
Threats to Remote Access Servers
Hardening Remote Access Servers and Clients
Securing Virtual Private Networks (VPNs)

Security for Certificate Services
Threats to Certificate Services
Hardening Certificate Services

Security for IIS
Hardening IIS

Managing Security Updates
Patch Management
Patch Managerment Tools
Security Assessment Tools

Security Assessments and Incident Reports
Assessing the Security of a Network
Planning for Incident Response
Responding to Security Incidents