Future Training Sessions

From ChekMate Security Group

One of the primary goals for ChekMate Technical Focus Group is to have monthly training sessions which are hands-on and allow an open discussion on how to utilize the technical tools available. We welcome ideas from the members on what topics they would like to cover at these training sessions. Please submit your ideas below. You can add your signature to your recommendations by including 3 ~ signs afters. The results would be something like the following: smcnaught.

  • Setting up a centralized syslog server (smcnaught)
  • Setting up and managing Snort/BASE Installation (smcnaught)
  • Recording packet traffic using snort (smcnaught)
  • Using Cacti (Round Robin Database Frontend) to monitor network and system trends (smcnaught)
  • How to properly lock down a Linux environment (smcnaught)
  • Honeypots and Honeynet Forge
  • Usefull Log Auditing/Anatomy of an Attack Forge
  • Home Encryption Solutions Forge
  • PF vs. IPtables - One wall to block them all Forge
  • Overview demonstration of Cain and Abel Pwn
  • Can wireless be secured against WEP cracking? Pwn
  • There are a number of ways to secure a wireless network. I would not recommend using WEP for anything except a basic deterent from getting into a wireless network.
  • I would use some authentication form of EAP (Extended Authentication Protocol) like Cisco LEAP, EAP-FAST, EAP-TLS or PEAP and encryption like TKIP, WPA TKIP or AES to protocol a wireless network.
  • And I would use point to point or client to point VPN tunnels to ensure a properly secure network.
  • Remember: There is no way to prevent a denial of service on a wireless network as wireless networks operate the same as a hub wired network. (smcnaught)


Suggestions from after Snort - Installing, Configuring and Maintaining a Snort Deployment in your Network Environment.

Suggestions from the audience for future events:

  • Niksun
  • The same type of presentation around firewalls
  • Centralized logins
  • Security policy overview
  • Anatomy of a network audit
  • Encryption
  • OSSEC HIDS (Or equivalent)
  • Log Analysis
  • Windows Event Log
  • Metasploit
  • Wargames
  • Forensics
Retrieved from "http://www.chekmate.org//wiki/index.php/Future_Training_Sessions"