Security+ SY0-501 Exam Update 2019 Content

Attacks Around the World

Course Content

1. Comparing & Contrasting Attacks

1. Comparing and Contrasting Attacks
2. Comparing and Contrasting Attacks
3. Topic A: Compare and Contrast Information Security Roles
4. Information Security
5. Assets and Liabilities
6. Data Assets
7. The CIA Triad
8. Security Policy
9. Roles and Responsibilities
10. Information Security Competencies
11. Discussing Information Security Roles
12. Topic B: Explain Threat Actor Types
13. Vulnerability, Threat, and Risk
14. Attributes of Threat Actors
15. Script Kiddies, Hackers, and Hacktivists
17. Nation State/Advanced Persistent Threat (APT)
18. Malicious Insider Threats
19. The Kill Chain
20. Indicators of Compromise (Slide 1 of 2)
21. Indicators of Compromise (Slide 2 of 2)
22. Open Source Intelligence
23. Deep Web and Dark Web
24. Threat Intelligence Resources
25. Discussing Threat Actor Types
26. Topic C: Compare and Contrast Social Engineering Attack Types
27. Social Engineering
28. Impersonation
29. Trust and Surveillance
30. Phishing, Whaling, and Vishing
31. Pharming and Hoaxing
32. Social Engineering Attack Troubleshooting
33. Discussing Social Engineering Attacks
34. Topic D: Determine Malware Types
35. Computer Viruses
36. Computer Worms
37.Trojans and remote access trojans (RATs)
38. Spyware, Adware, and Keyloggers
39. Rootkits
40. Ransomware, Crypto-Malware, and Logic Bombs
41. Discussing Malware Types
42. Exploring the Lab Environment
43. Determining Malware Types
44. What type of attack is of the most concern in your environment?

The CIA Triad Video Link aka AIC or PAIN
Example of Data Security Policy Link
Is the Mafia taking over CyberCrime Not Really
Fireeye Nation State report Link
APT Groups Link
Open-source intelligence (OSINT) Link Link2
Google Dorks Link
Reconnaissance web site Shodan Link
Using Shodan Video Link
Rogueware, Scareware Ransomware Link
Mitre PRE-ATTACK Matrix Link
Mitre STIX Whitepaper Link
The Pyramid of Pain (Mitre Attack Framework) Link Link2
PRE-ATT&CK Link
Pre-ATT&CK Matrix Link
ATT&CK Navigator Link
SpamThru Botnet example Link
DarkMatter US Intelligence and Apple Firmware Link Link2
Different Types of Viruses Link
crontab schedule a task "Logic Bomb" Link

2. Comparing & Contrasting Security Controls

1. Comparing and Contrasting Security Controls
2. Comparing and Contrasting Security Controls
3. Topic A: Compare and Contrast Security Control and Framework Types
4. Security Control Types (Slide 1 of 2)
5. Security Control Types (Slide 2 of 2)
6. Defense in Depth
7. Frameworks and Reference Architectures
8. Regulatory Compliance Requirements
9. Benchmarks and Secure Configuration Guides
10. Discussing Security Control and Framework Types
11. Topic B: Follow Incident Response Procedures
12. Incident Response Procedures (Slide 1 of 2)
13. Incident Response Procedures (Slide 2 of 2)
14. Preparation Phase and Incident Response Plan
15. Cyber Incident Response Team (CIRT) Roles and Responsibilities (Slide 1 of 2)
16. Cyber Incident Response Team (CIRT) Roles and Responsibilities (Slide 2 of2)
17. Communication Processes
18. Incident Types/Category Definitions
19. Incident Response Exercises
20. Identification Phase (Slide 1 of 2)
21. Identification Phase (Slide 2 of 2)
22. Containment Phase
23. Eradication and Recovery Phases
24. Lessons Learned Phase
25. Guidelines for Responding to Security Incidents
26. Discussing Incident Response Procedures
27. Responding to an Incident

NIST 800-53 Security & Privacy Controls Link
CIRT Vs SOC Link
Playbooks Link
18 Biggest data breaches of the 21st Century Link

3. Assessing Security Posture and Software tools

1. Assessing Security Posture with Software Tools
2. Assessing Security Posture with Software Tools
3. Topic A: Explain Penetration Testing Concepts
4. Security Assessment Frameworks
5. Vulnerability Scanning
6. Penetration Testing
7. Rules of Engagement
8. Authorization for Testing
9. Penetration Testing Techniques
10. Guidelines for Implementing Penetration Testing
11. Discussing Penetration Testing Concepts
13. Network Scanners
14. ipconfig, ifconfig, and ip
15. ping and arp
16. nmap Host Discovery
17. tracert, traceroute, and nmap Topology Discovery
18. DNS Harvesting (Slide 1 of 2)
19. DNS Harvesting (Slide 2 of 2)
22. Topic C: Assess Security Posture with Fingerprinting and Sniffing Software Tools
23. Service Discovery
24. netstat (Slide 1 of 3)
25. netstat (Slide 2 of 3)
26. netstat (Slide 3 of 3)
27. nmap Service Discovery
28. OS Fingerprinting
29. Banner/OUI Grabbing
30. Sniffers and Protocol Analyzers
31. tcpdump and Wireshark
32. Packet Injection
33. Wireless Scanners/Crackers (Slide 1 of 2)
34. Wireless Scanners/Crackers (Slide 2 of 2)
35. Remote Access Trojans
36. Steganography
37. Discussing Fingerprinting and Sniffing Software Tools
40. Topic D: Assess Security Posture with Vulnerability Scanning Software Tools
41. Vulnerability Scanning Concepts
42. Vulnerability Scanner Types
43. Passive and Active Scanning Techniques
44. Credentialed vs. Non-Credentialed Scanning
45. Lack of Controls and Misconfigurations (Slide 1 of 2)
46. Lack of Controls and Misconfigurations (Slide 2 of 2)
47. Exploitation Frameworks (Slide 1 of 2)
48. Exploitation Frameworks (Slide 2 of 2)
49. Honeypots and Honeynets
50. Discussing Vulnerability Scanning Software Tools
51. Identifying Vulnerabilities with Scanning Software Tools
52. What sort of vulnerability assessment tools have you used

OSINT (Open Source Intelligence) Link
CVE (MS IE Vulnerability) Link
Greenbone Live demo (livedemo/livedemo) Link
Sectools.org (metasploit/nmap/nessus) link
Metaploit Link
"TARGET" attack (Pivot via HVAC) Link
Traceroute Windows Cisco difference Link
MAC address OUI Finder Link
ETTERCAP (mitm/arp spoofing) video Link
BBC Honeypot Test Link
LOIC DoS tool Link
PEN Test tools Hak5 Link

4. Explaining Basic Cryptography Concepts

1. Explaining Basic Cryptography Concepts
2. Basic Cryptography Concepts
3. Topic A: Compare and Contrast Basic Concepts of Cryptography
4. Cryptographic Terminology
5. Uses of Cryptography (Slide 1 of 2)
6. Uses of Cryptography (Slide 2 of 2)
7. Cryptographic Ciphers and Keys
8. Confusion, Diffusion, and Frequency Analysis
9. One-Time Pad and XOR
10. Initialization Vectors (IVs), Nonces, and Salt
11. Cryptanalysis Techniques (Slide 1 of 2)
12. Cryptanalysis Techniques (Slide 2 of 2)
13. Weak Keys and Random Number Generation
14. Side Channel Attacks
15. Discussing Basic Cryptography Concepts
16. Topic B: Explain Hashing and Symmetric Cryptographic Algorithms
Exam Objectives:
17.Resource vs. Security Constraints
18. Data States
19. Implementation vs. Algorithm Selection
20. Hashing Algorithms
21. Symmetric Encryption
22. Stream Ciphers vs. Block Ciphers
23. Symmetric Block Cipher Algorithms
24. Modes of Operation
25. Discussing Hashing and Symmetric Cryptographic Algorithms
26. Topic C: Explain Asymmetric Cryptographic Algorithms
27.Public Key Cryptography
28. RSA Digital Signatures
29. Digital Envelopes
30. Digital Certificates
31. Diffie-Hellman (Merkle)
32. DSA/ElGamal and Elliptic Curve Cryptography (ECC)
33. Key Exchange
34. Perfect Forward Secrecy (PFS)
35. Man-in-the-Middle, Downgrade, and Replay Attacks
36. Birthday Attack and Collisions
37. Identifying Asymmetric Cryptographic Algorithms
38. Implementing Certificate Services
39.Which types of cryptography has your organization implemented?

Online Coder/Decoder Rot13 XOR etc Link Better Link
On-Line MD5 Hashing Generator Link
Rail Fence Cipher Link
On Line XOR Calculator. AND/OR/XOR explained
DHE Explained Link
Diffie Hellman on-line calculator Link
ECDH Video Link

5. Implementing a Public Key Infrastruture

1. Implementing a Public Key Infrastructure
2. Implementing a Public Key Infrastructure
3. Topic A: Implement Certificates and Certificate
4. Public and Private Key Usage
5. Digital Certificates
6. Certificate Fields, Extensions, and OIDs
7. Key Usage Extensions
8. Certificate Formats
9. Certificate Authorities
10. Registration and CSRs
11. Certificate Policies
12. SSL Web Server Certificates (Slide 1 of 3)
13. SSL Web Server Certificates (Slide 2 of 3)
14. SSL Web Server Certificates (Slide 3 of 3)
15. Other Certificate Types
16. Discussing Certificates and Certificate Authorities
17. Topic B: Implement PKI Management
18. Certificate and Key Management
19. Key Generation and Usage
20. Key Storage and Distribution
21 Key Recovery and Escrow
22. Key Revocation and Renewal
23. Certificate Revocation Lists (CRLs)
24. OCSP and Stapling
25. PKI Trust Models
26. Online vs. Offline CAs
27. Certificate Pinning
28. Certificate Issues
29. PGP/GPG
30. Discussing PKI Management
31. Deploying Certificates and Implementing Key Recovery
32. Why might you implement

View Certs in Windows (mmc) (certmgr.msc) Link
Certification Practice Statement CPS Link
Certificate Pinning HPKP Link
Various Certificate formats Link
Google distrust Symantec certs Link

6. Implementing Identity and Access Management Controls

1.Implementing Identity and Access Management Controls
2. Implementing Identity and Access Management Controls
3. Topic A: Compare and Contrast Identity and Authentication Concepts
4. Identification, Authentication, Authorization, Accounting (Slide 1of 2)
5. Identification, Authentication, Authorization, Accounting (Slide 2 of 2)
6. Identification
7. Issuance/Enrollment and Identity Management
8. Authentication
9. Something You Know Authentication
10. Something You Have Authentication
11. Something You Are/Do Authentication
12. Somewhere You Are Authentication
13. Multifactor Authentication
14. Mutual Authentication
15. Discussing Identity and Authentication Concepts
16. Topic B: Install and Configure Authentication Protocols
17. LAN Manager (LM) Authentication
18. NTLM Authentication
19. LM/NTLM Vulnerabilities
20. Kerberos Authentication (Slide 1 of 2)
21. Kerberos Authentication (Slide 2 of 2)
22. PAP, CHAP, and MS-CHAP (Slide 1 of 2)
23. PAP, CHAP, and MS-CHAP (Slide 2 of 2)
24. Password Attacks
12. Somewhere You Are Authentication
13. Multifactor Authentication
14. Mutual Authentication
15. Discussing Identity and Authentication Concepts
16. Topic B: Install and Configure Authentication Protocols
17. LAN Manager (LM) Authentication
18. NTLM Authentication
19. LM/NTLM Vulnerabilities
20. Kerberos Authentication (Slide 1 of 2)
21. Kerberos Authentication (Slide 2 of 2)
22. PAP, CHAP, and MS-CHAP (Slide 1 of 2)
23. PAP, CHAP, and MS-CHAP (Slide 2 of 2)
24. Password Attacks
25. Password Crackers
26. Password Cracker Attack Types
27. Key Stretching
28. Pass-the-Hash Attacks
29. Discussing Authentication Protocols
30. Cracking Passwords Using Software Tools
31. Topic C: Implement Multifactor Authentication
32. Smart Cards and Proximity Cards
33. IEEE 802.1X/EAP
34. One-Time Password Tokens
35. Open Authentication (OATH)
36. Biometric Authentication
37. Biometric Factors
38. Fingerprint Scanners
39. Retinal and Iris Scanners
40. Facial Recognition Scanners
41. Behavioral Technologies
42. Common Access Cards
43. Guidelines for Implementing IAM
44. Discussing Multifactor Authentication
45.

Bio-metrics fooled Link
Weakness in MS-CHAP Link
Windows Workgroups/Domains Link
Vertical and Horizontal Brute Force Link
Pass The Hash Youtube Link
Golden Ticket Forging AD Kerberos Link
FAR, FRR an CER Link
MicroChip Implants Link
NTLM (DES-encrypt) Link

7. Managing Access Services and Accounts

Linux File permissions Link
X500 DAP and LDAP Link
DAC, RBAC (windows), MAC Link
Sharepoint federated access video Link
XML Signature Wrapping Attack video Link
Shibboleth Link
Group Based Access Control AD Link
AD OUs, Containers and groups Link
Group based Access Control Video Link
netplwiz or control userpasswords2 to access Applet Link

8. Implementing a Secure Network Architecture

ToR Switches (Nexus) Link
Rogue WiFi Link

9. Installing and Configuring Security Appliances

1. Installing and Configuring Security Appliances
2. Installing and Configuring Security Appliances
3. Topic A: Install and Configure Firewalls and Proxies
4. Firewalls
5. Packet Filtering Firewalls
6. Stateful Inspection Firewalls (Slide 1 of 2)
7. Stateful Inspection Firewalls (Slide 2 of 2)
8. Application Aware Firewalls
9. Network-Based Firewalls
10. Application-Based Firewalls
11. Host-Based Firewalls (Slide 1 of 2)
12.Host-Based Firewalls (Slide 2 of 2)
13. Web Application Firewalls
14. Proxies and Gateways
15. Forward Proxy Servers and Content Filters
(Slide 1 of 2)
16. Forward Proxy Servers and Content Filters
(Slide 2 of 2)
17. Reverse Proxy Servers
18. Firewall Configuration
19. Misconfigured Firewall/Content Filter Troubleshooting
20. Discussing Firewalls and Proxies
21. Topic B: Install and Configure Load Balancers
22. Denial of Service (DoS)
23. Distributed Denial of Service (DDoS)
24. Amplification Attacks (DRDoS)
25. DDoS Mitigator
26. Load Balancers
27. Load Balancer Configuration
28. Cluster Services (Slide 1 of 2)
29. Cluster Services (Slide 2 of 2)
30. Discussing Load Balancers
31 Installing and Configuring a Firewall
32. Topic C: Install and Configure Intrusion Detection/ Prevention Systems
33. Network-Based Intrusion Detection Systems (NIDS)
34. Network-Based Intrusion Detection Systems (NIDS) (Slide 2 of 2)
35. Taps and Port Mirrors
36. Network-Based Intrusion Prevention Systems (NIPS)
37. In-band uses regular data channels—not always secure
38. Host-Based Intrusion Detection and Prevention
(Slide 1 of 2)
39. Host-Based Intrusion Detection and Prevention
(Slide 2 of 2)
40. Signature-Based Detection
41. Behavior- and Anomaly-Based Detection (Slide 1 of 2)
42. Behavior- and Anomaly-Based Detection (Slide 2 of 2)
43. IDS Analytics (False Positives and False Negatives)
44. Anti-Virus Scanners
45. Unified Threat Management (UTM)
46. File Integrity Checkers
47. Advanced Malware Tools (Slide 1 of 3)
48. Advanced Malware Tools (Slide 2 of 3)
49. Advanced Malware Tools (Slide 3 of 3)
50. Discussing Intrusion Detection/PreventionSystems
51. Installing and Configuring an Intrusion Detection System
52. Topic D: Install and Configure Data Loss Prevention (DLP) Systems
53. Data Exfiltration (Slide 1 of 2)
54. Data Exfiltration (Slide 2 of 2)
55. Data Loss Prevention (DLP) (Slide 1 of 2)
56. Data Loss Prevention (DLP) (Slide 2 of 2)
57. DLP Remediation
58. Rights Management Services
59. Discussing Data Loss Prevention (DLP) Systems
60. Topic E: Install and Configure Logging and SIEM Systems
61. Security Information and Event Management (SIEM)
62. SIEM Sensors and Collectors
63. Types of Logs
64. Baselines and Thresholds
65. Reporting Alerts and Alarms and Identifying Trends
66. Secure Logging/WORM
67. Log Maintenance
68. Guidelines for Configuring Network Security Technologies (Slide 1 of 2)
69. Guidelines for Configuring Network Security
70. Discussing Logging and SIEM Systems

Security Onion Link
Cisco DDOS Link
Dropper Malware Link

10. Installing and Configuring Wireless and Physical Access Security

dBm and dB explained Video Link
Signal Strength represented as -dbm (0 to -100) Link
WiFi Transmit Power levels simple Link
Wireless dbm calculator Link
dbm in negative numbers Link
TKIP & RC4 PH1/2 video Link Link2 Link3
BlueBourne Link
What is RSSI Link Link2

11. Deploying Secure Host, Mobile and Embedded Systems

Common Criteria PP replaces EAL Levels Link
Certified Products Common Criteria Link
Christopher Tarnovsky TPM Keys extraction Link Link2
TPM on Window PC Link
Confused Deputy Link AWS Link
FDE Vs SED Link
EMP Vehicle Stop Link EMP Iphone Link
SS& Attacks Cellular Link
USB Kill Link
O.MG Cable Link
Satelite weakness Link
FBI and Apple Encryption dispute Link Link2

12. Implementing Secure Access Protocols

DNS BIND Vulnerability Link
RRset and DNSSEC Link Video Link
DNS Name 21st Century Fox Link
NTP Stratum Levels 0-15 Link

13. Implementing Secure Network Applications

VDI Vs RDS (RDP) Link Citrix ZenDesktop Link
SSL/TLS Vulnerabilities (POODLE etc) Link
Cloud Computing Services Link
Time to disable all SSL/TLS 1.0 (PCI Compliance) Link
VDI Solutions Citrix/VMware Link
Vitrual Mobile Infrastructure (NUBO IOS/Android) VMI Link
Meltdown and Specter Vulnerabilities (virtual) Link

14. Explaining Risk Managementand Disaster Recovery Concepts

Parity Video Link

15. Summarising Secure Application Development Concepts.

Public Web Site for Hacking Link
Clickjacking Link

16. Explaining Organisational Security Concepts

Delegate Material Registration Link
Delegate Material Access Link

Delegate Lab access Link
(6 Months Access once redeemed)

Instructor Access Course Material Link

SY0-501 Exam Domains

Domain 1 Threats, Attacks and Vulnerabilities
Domain 2 Technologies and Tools
Domain 3 Architecture and Design
Domain 4 Identity and Access Management
Domain 5 Risk Management
Domain 6 Cryptography and
CompTIA Roadmap Link
FREE KALI LINUX PDF
Install Kali Link

Access Old Course Labs Materials

lo_courseware_comptia_-_choice.doc
File Size:	30 kb
File Type:	doc