קורס הקשחת מערכת ההפעלה Windows

קורס הקשחת מערכת ההפעלה Windows

היקף התוכנית:

המסלול כולל 60 שעות כיתה וכן כ- 80 שעות שיעורי בית.

מטרת התוכנית:

להכשיר מישמי אבטחת מידע ומהנדסיאבטחת מידע בסביבת Windows Server 2008 ו- Windows 7 (מרבית החומר רלבנטי גם למערכות הותיקות Windows server 2003 ו- XP.

קהל יעד:

קורס זה מיועד לבעלי רקע בסביבת System של Microsoft או Linux ואינו מומלץ למתחילים חסרי רקע טכנולוגי.

תמצית תוכנית הלימודים

1.  Securing Active Directory and DNS

    °    Read-Only Domain Controllers (RODC)

    °    Securing Domain Controllers

    °    SYSKEY.EXE

    °    Disaster Planning and Recovery

    °    Encrypting Replication Traffic

    °    Property-Level Permissions (DACLs)

    °    Audit Settings (SACLs)

    °    Delegation of Authority

    °    Organizational Unit Design

    °    Custom MMC Consoles

    °    The "Empty Root" Domain Model

    °    Best Practices for Forest Design

    °    DNS SRV Records

    °    Unix BIND Integration

    °    Secure Dynamic Updates

    °    Best Practices for Securing DNS

2. Group Policy

    °    The Group Policy Management Console (GPMC)

    °    Security Templates

    °    Security Configuration and Analysis MMC Snap-In

    °    SECEDIT.EXE

    °    Group Policy Objects (GPOs)

    °    GPO Links to Domains, OUs and Sites

    °    Order of Precedence Processing: LSDOU

    °    WMI Filtering

    °    Custom ADM/ADMX Templates

    °    MSI Deployment through Group Policy

    °    Pushing Out Scripts

    °    Software Restriction Policies

    °    Managing Internet Explorer Settings

    °    Replacing the Desktop Interface

    °    Micro-Managing Users' Applications

3. PKI, EFS and BitLocker

    °    Why Must I Have A PKI?

    °    Examples: Smart Cards, VPNs, Wireless, SSL, S/MIME, etc.

    °    How To Install The Windows PKI

    °    Root vs. Subordinate Certification Authorities

    °    Should You Be Your Own Root CA?

    °    Controlling Certificate Enrollment

    °    How To Manage Your PKI

    °    Group Policy Deployment of Certificates

    °    How To Revoke Certificates

    °    Automatic Private Key Backup

    °    Delegation of Authority

    °    Deploying Smart Cards

    °    Smart Card Enrollment Station

    °    Best Practices for Private Keys

    °    Encrypting File System

    °    EFS Insecurity Myths

    °    BitLocker Drive Encryption

    °    TPM and USB BitLocker Options

    °    BitLocker Emergency Recovery

    °    MANAGE-BDE.WSF

    °    Best Practices for EFS and BitLocker

4.  IPSec, Windows Firewall, NPS, VPNs and Wireless

    °    Secure Socket Tunneling Protocol (SSTP)

    °    Isn't IPSec Just For VPNs? No!

    °    IPSec Domain Isolation

    °    How to Create IPSec Policies

    °    Group Policy Management of IPSec

    °    NETSH.EXE

    °    Windows Firewall with Advanced Security

    °    Configuring RADIUS Policies (NPS)

    °    EAP vs. PEAP

    °    PEAP-MS-CHAPv2

    °    Smart Cards for VPN

    °    IPSec + L2TP = RRAS VPNs

    °    L2TP vs. PPTPv2

    °    Host-to-Router VPN Configuration Steps

    °    Router-to-Router VPN Configuration Steps

    °    VPN Best Practices

    °    Securing Wireless Networks

    °    Wi-Fi Protected Access (WPA)

    °    Smart Cards for Wireless

    °    Best Practices for Wireless

5. Securing IIS

    °    FTP Over SSL (FTPS)

    °    IIS Server Hardening

    °    Security Template for IIS

    °    Patch Management

    °    Removing Dangerous Services

    °    Securing WebDAV

    °    Managing Bindings

    °    Hardening TCP/IP

    °    IPSec for IIS Servers

    °    Authentication Options

    °    Kerberos and NTLM for Web Applications

    °    Smart Cards for Web Applications

    °    Minimal HTTP Permissions

    °    Minimal NTFS Permissions

    °    Proper NTFS Auditing

    °    Running Scripts and Binaries on IIS

    °    Web-Based Applications

    °    Worker Process Isolation

    °    HTTP.SYS Filtering

    °    Securing XML Config Files

    °    Securing Logs Hands-Free

    °    Finding Hacking Signatures In Logs

6. PowerShell Scripting

    °    What is PowerShell?

    °    CmdLets

    °    Running Scripts

    °    Namespace Providers

    °    Piping .NET Objects

    °    Parameter Binding

    °    Regular Expressions

    °    Functions and Filters

    °    The .NET Class Library

    °    Using Properties and Methods at the Command Line

    °    Security and Execution Policy

    °    Managing the Event Logs

    °    Accessing COM Objects: WMI, ADSI, ADO, etc.