• Identify, describe, and enumerate the vulnerabilities of different servers.
• Understand and configure dependencies in Kali Linux to prepare for an attack
• Describe the features and functions of different software & frameworks used in cyber security.
• Describe All Next Generation Features including Intrusion Prevention, SSL impersonation, Data Security, advanced enumeration, exploitation, and creating malware
• Perform different types of attacks on different types of servers providing different services
• Configure Basic IDS server
• Implement and manage intrusion policies
• Perform password cracking attacks.
• Perform an initial network discovery, using different tools to identify hosts, applications, and services
• Perform different Server-Side attacks like server-side scripting, LFI, RFI using different exploits
• Perform Client-Side attack using malware drops
• Describe threat defense technologies
• Configure and perform data classification with different techniques
• Installation and configuration of endpoint protection software server.
• Configure and test and manage DLP policies for data in use, data in motion and data in rest.
• Deploying, monitoring, managing & updating security software like antivirus, DLP Policies on multiple systems remotely using agents.
• Analyze the behavior, usage, and implementation procedure for security devices and other data using custom log generation and analysis for SOC operations.
• Describe and explain Threat intelligence
• Understand the working of threat intelligence and analytics using unified dashboards to identify threats and reduce the impact of security incidents.
• Describe the concepts of blockchain fundamentals
• Perform malware analysis
• Perform Web App attacks like SQL injection, Apache tomcat exploit other web services

This course is created to impart knowledge and skills related to security fundamentals, network access, information security, web application security and malware analysis. This course will help candidates prepare to tackle real world cyber security incidents. The following topics are general guidelines to better reflect the contents of the course and for clarity purposes, the guidelines below may change at any time without notice.

• Cyber Security Introduction & Overview
  • Examining Cyber Security concepts and current trends
  • Cyber Security Fields and Components
  • Examining widely used Security Platforms
  • Examining widely used Security Software Licensing
  • Cyber Security Implementation Use Cases
• Cyber Attacks
  • Understanding Kali Linux
  • Understanding Attack Preparation Guidelines
  • Reconnaissance and Foot Printing using various tools
  • Network, host, and services scan & discovery using various tools
  • Enumeration using NMAP
  • Vulnerability Assessment
  • Exploitation using MSF and various other techniques
  • Post Exploitation using various techniques
• Data Security
  • Data Gathering
  • Data Classification
  • Users, Roles & Permission
  • Policy Development
• Splunk
  • Understanding Splunk Architecture
  • Understanding Splunk Use Cases
  • Installing Splunk on Windows
  • Adding Linux Logs to Splunk
  • Adding Windows Logs to Splunk
  • Understanding Splunk Search Head
  • Understanding Splunk Forwarder
  • Understanding Splunk Indexer
  • Understanding Splunk Deployment server
• McAfee ePO
  • Installation of McAfee ePO Server
  • Configuring McAfee ePO Dashboards
  • Product Installation
  • Software & Repository Management
  • System Tree
  • Policy Catalog
  • User Management
  • AAA
  • Active Directory Synchronization
  • DLP
  • Agent-Server Communication
  • Agent Deployment
  • Policy development
  • Pushing Policy and Software using agents
  • Queries & Reports
• Blockchain Fundamentals
  • What is Blockchain
  • Byzantine General Problem
  • Gartner Hype Curve
  • How Blockchain Works
  • Why Blockchain
  • Mining Page
  • Transaction Life Cycle
  • Types of network
  • Cryptography and Hashing
  • Blockchain Vocabulary
  • Block number, Nonce, Hash, Timestamp, Merkle root
  • Transaction, Transaction Fee, Merkle Tree
  • Mining, Block Reward, Soft fork
  • Fork
  • Longest Chain Wins
  • Orphan Bloc
  • Block Hash
  • Test Network, Main Network
  • Double spending attack, Sybil attack, 51%attack
  • Practical Byzantine Fault Tolerance (PBFT)
  • Cryptocurrency: Bitcoin and Ethereum
  • World of Cryptocurrency
  • Bitcoin
  • Smart Contracts
  • Solidity gas overview
  • Types and Applications of Blockchain
  • Types of blockchain
  • Applications of Blockchain
  • Bitcoin core Blockchain
  • Wallets in Blockchain

Cyber Attacks

• Cyber Attacks
  • WordPress Malicious Plugin Upload
  • Brute Force Password Attacks
  • Command Injection
  • Cross Site Request Forgery
  • Local & Remote File Inclusion
  • Exploiting File Upload Vulnerability
  • SQL Injection
  • XSS DOM Based
  • XSS Reflected
  • XSS Stored
  • JS Token manipulation
  • CSP Bypass
  • Apache Tomcat Authenticated Code Upload Execution
  • Apache Struts 2 REST XML RCE
  • Jenkins Groovy Script Console RCE
  • Linux Privilege Escalation
  • Windows AD
  • Windows SMB – Ransomware
  • Windows Kerberos Attack
  • Windows Client
  • Windows Privilege Escalation
  • Lateral Movement                                                          

Cyber Defense: (Demonstration Only)

• Splunk:
  • Installation on Linux
  • Installation on Windows
  • Configuration
  • Add Windows Logs to Splunk
  • Add Linux Logs to Splunk
• McAfee ePO:
  • Installation of McAfee ePO Server
  • Configuring McAfee ePO Dashboards
  • Product Installation
  • Software & Repository Management
  • System Tree
  • Policy Catalog
  • User Management
  • DLP
  • Agent-Server Communication
  • Agent Deployment
  • Policy development
  • Pushing Policy and Software using agents
• Malware Analysis:
  • Deploying IDS Server
  • Vulnerability Assessment
  • Reverse Engineering sample malware

• Minimum batch size required for batch is 10 participants in the this course.
• The RST Forum reserves the right to cancel/postpone the class.
• Course schedule will be provided before commencement of the course.
• Certificate of participation will be awarded to participants with a minimum 90% attendance.
• All attendees are to observe the Copyright Law on intellectual properties such as software and courseware from respective vendors.
• The RST Forum reserves the right to include external participants in the program either for the entire course or individual courses.
• The RST Forum reserves the right to change/alter the sequence of courses. RST FORUM published Book would be given at 50% discounted rate to the forum students.