Network security

This course describes network architecture for SSI, intrusion detection, penetration testing, web security and also introduces applied cryptography.

Network architecture for ISS

Introduction to ISS

Objectives, properties
Principles
Vocabulary
Attacker profiles and threats


Network protocols

ISO model
Operation
Vulnerabilities, exploitation
Countermeasures


Network architectures

Partitioning
Security equipment

Firewalls
Proxies, application relays





Network intrusion detection

Detection by signature / heuristics
Detection on network capture / OS / application mechanisms
Standardization, aggregation and correlation of events
Reporting and synthesis

Penetration testing

Principle of computer intrusion
Comparison of penetration test / real intrusion
Objectives and approach of a penetration test intrusion test
Tools

Metasploit
Hping / Nping / Scapy
Nmap



Applied cryptography

Principles

Symmetrical and asymmetrical cryptography
Hash functions
Encryption and signature
Algorithms, modes


Software implementation of SSL

Study of several vulnerabilities
Problems, impacts
Exploitation and detection
Correction and protection


Certificates and key management infrastructures

Web security

Web browsing

Protocols
Browser, plug-ins, servers
Security models


Study of classic vulnerabilities (SQLi, XSS, etc.).)

Concept
Research and advanced exploitation
Detection and protection


Tools

Sqlmap / W3af / Burp