Useful Files
ike-ipsec file courtesy of Dan IINS Jan 2018
General Useful Links
VPNs to Self Zone configuration Link
New-code Vs Legacy in "test aaa" link Configuring EIGRP HMAC-SHA-256 Routing Instance Link A Cisco Guide to DDOS Link MITRE ATT&CK Framework Link CISSP Certified Information System Security Professional The Titman break that helped crack the Enigma code "Configure replace" command link Really good PDF from Cisco giving Overview of SourceFire/FireSIGHT UK Government Security Classifications IINS V3.0 Exam objectives from Cisco BPDU Guard and ROOT Guard globally and interface (Link) Online Diffie Hellman Calculator NTP, quicken the update using "ntp update-calander" this is like ntpdate in unix "aaa authorization config-commands" Understanding Private VLANs, Limitations and restrictions PVLANS and DHCP Server access via Promiscuous ports Private VLANs across Trunks Link Control Plane Policing Best Practices VLAN Hopping Attackes explained and Understanding SNMP V3 Authentication/Encryption & Timeliness (150 secs) Default security levels "Inside" & "Outside" IP FLOW INGRESS (Netflow) Switch Port Port-Security Parameters Object Groups Cisco document explaining IOS IPS Cisco PPT slide show IPS Defense In Depth Video, The Onion
|
Useful Links Module by Module
VOL 1
Module 1: Security Concepts 7-149
Bronze Soldier attack Estonia,
Human rights attacks and China, HM Revenue & Customs lost accounts. Mafia Boy DOS attack Feb/2000. Anonymous attack against the Home Office. Stuxnet attacks against atomic plants in IRAN. Turkish Web site Hacking. Spamming 350 million and the result = 28 E,T, A are the most common English letters in order of frequency What is Phishing, redirection to malicious website, via email. Vishing is as Phishing except via Phone. Smishing is Phishing via SMS What is Pharming, redirection to malicious website unknown (DNS/HOSTs) Nimda Code Red 1999-2004, Conficker worm 2008, Stuxnet 2010, NHS Attack May 2017 WannaCry Link Admin/Tech/Physical Link Common Vulnerabilities & Exposures CVE EU-US Agreement re data transfer (Safe Harbour) DNS DDOS attack. it almost broke the Internet 3/2013 (New Amplification) NTP Attack Feb 2014 (Amplification) Morris Worm first Internet -based worm 1988 Hacking Tools, sectools.org, Kali Linux, Metasploit Basic Security Requirements CIA Salted Password Hashing MD5 Avalanche effect Hello World hash will be totally different to Hello World1, and MD5 Collision Demo Simon Singh Web Site Information Security Policies RUSECURE Module 2: Secure Network Devices 151-267
The "snmp-server user" is stored in the private -config in the router
SNMP MIB is a tree structure to organise Config and data SNMP V3 Authentication/Encryption & Timeliness (150 secs) OID is the MIB are referenced via their OID Process Switching, Fast Switching & CEF Link Control Plane Policing Best Practices Control Plane Policing and Control Plane Protection CCIE Notes VOL 2
Module 3: Layer 2 Security 269-373
VACLs Config on a 3550
Understanding Private VLANs PVLANS and DHCP Server access via Promiscuous ports VLAN Hopping Attackes explained and Understanding DHCP Snooping Config & dB including off box storage Module 4: Firewall 1-151
Default security levels "Inside" & "Outside"
ASAv VXLAN Interfaces (Layer 2 vlans extended over layer 3) ASAv vNICs (10/ASAv) Module 5:VPN 153-329
Profile XML Contents
Module 6: Advanced Topics 331-425
FireSIGHT = Central Management FirePOWER = Real traffic analysis Exploit CGI script on Web Server PHF Obfuscation and Whisker attacks FireSIGHT Overview The Security Blogger Cisco FireSIGHT Management Centre Talos researchers create threat intelligence for Cisco products Talos Cisco AMP (Advanced Malware Protection) for Endpoints & Network AMP Endpoint Agent (Collector) Really good PDF from Cisco giving Overview of SourceFire/FireSIGHT Lab Minutes ASA FirePOWER Malware Detetction Lab Anyconnect Web Security Client Email Security Appliance (ESA) Web Security Appliance (WSA) Cloud Web Security (CWS) Data Loss Prevention (DLP) SenderBase Email and Web Repuation old name SensorBase Personally identifiable information (PII) AsyncOS for Web 8.0 User Guide AsyncOS for ESA 9.6 User Guide WSA User Guide PDF Search for "Decrypting HTTPS Traffic" | ||||||||||||||||||