Cyber Security Courses Online

About

The objective of this course is to provide a quick but in-depth review of the topics required to pass the Certified Information Systems Security Professional (CISSP) exam.

Contents

• Physical and Environmental Security
• Information Security and Risk Management
• Access Control Systems
• Cryptography
• Security Architecture and Design
• Business Continuity and Disaster Recovery Planning
• Telecommunications and Network Security
• Application Security
• Operations Security
• Legal, Regulations, Compliance and Investigations

About

Our rapidly increasing technology including a global network has allowed educators the opportunity to create, communicate, and store information in incredible ways. Students have access to instant information. Classes can learn with peers who live on the other side of the globe. School systems can store and access information on students, staff, and operational issues with ease.

In addition, many schools/districts are being rewarded grants that allow for the purchase of technology tools to which they otherwise would never have had financial access. Entire districts are being set up with laptops, LCD projectors, and other tech tools including staff training and mentoring for Classrooms for the Future grants. Here is a link that provides information on Classrooms for the Future

Unfortunately, with all of this wonderful technology available, there are several security concerns that arise. It is our duty as school staff members and parents to work together to keep our children safe while using these technology tools. Here is an incomplete list of security issues brought on by technology integration:

1. Students/staff downloading unauthorized software with viruses
2. Students, staff, or outsiders hacking into confidential information
3. Staff/students accessing, distributing, and/or downloading illegal material via the school network
4. Hardware being stolen or damaged
5. Students/staff using technology communication tools to bully/harass/intimidate/etc. others
6. Denial of Service (DOS) attacks from outsiders or insiders
7. Students/staff displaying or sharing passwords

Because of these issues listed above (and more), there is a need to train our staff and students in the area of security awareness. There are important steps for all members of an organization to take in order to keep our school community and network system safe. 

Course Content

• Introduction
• Teacher Information
  • Internet Safety
    • For your students
    • For yourself
  • Hardware Security/Safety
• Student Information
  • Safe at School
  • Cell Phone Safety
  • Preventing Cyberbullying
  • Preventing Sexting
  • Preventing Grooming

About

A penetration test, colloquially known as a pen test, pentest or ethical hacking, is an authorized simulated cyberattack on a computer system, performed to evaluate the security of the system; this is not to be confused with a vulnerability assessment. The test is performed to identify both weaknesses (also referred to as vulnerabilities), including the potential for unauthorized parties to gain access to the system's features and data, as well as strengths, enabling a full risk assessment to be completed.

Content

• History
• Tools
  • Specialized OS distributions
  • Software frameworks
• Penetration testing phases
  • Vulnerabilities
  • Payload

About

The Metasploit Project is a computer security project that provides information about security vulnerabilities and aids in penetration testing and IDS signature development. It is owned by Boston, Massachusetts-based security company Rapid7.

Its best-known sub-project is the open-source Metasploit Framework, a tool for developing and executing exploit code against a remote target machine. Other important sub-projects include the Opcode Database, shellcode archive and related research.

The Metasploit Project includes anti-forensic and evasion tools, some of which are built into the Metasploit Framework. Metasploit is pre-installed in the Kali Linux operating system.

Content

• Features of the Metasploit framework
• Metasploit tools
• Metasploit environment
• Metasploit capabilities for Web Application Security

About

This course gives students a benchmark comprehension of regular network safety dangers, weaknesses, and threats. A review of how essential digital assaults are built and applied to genuine frameworks is likewise included. Models incorporate basic Unix kernel hacks, Internet worms, and Trojan in programming utilities. Organization assaults, for example, distributed denial of service (DDOS) and botnet-assaults are likewise depicted and shown utilizing examples from the recent many years.

Natural scientific models are laid out, for example, the confidentiality/integrity/availability (CIA) security danger framework, and models are utilized to represent how these various sorts of threats can corrupt genuine resources. The course likewise incorporates a prologue to essential network safety hazard investigation, with a review of how danger resource grids can be utilized to focus on danger choices. Dangers, weaknesses, and assaults are inspected and planned with regards to framework security designing procedures.

Content

• Definitions
• Prevalence
• Cyberwarfare and cyberterrorism
• Factors
  • Spectacularity factor
  • Vulnerability factor
• Professional hackers to cyberterrorists
• Types of attack
  • Syntactic attacks
    • Viruses
    • Worms
    • Trojan horses

About

Malware Analysis is the study of the functionality, origin, and potential impact of malware samples. A study or process of determining the functionality, origin, and potential impact of a given malware sample such as a virus, worm, trojan horse, rootkit, or backdoor. Malware or malicious software is any computer software intended to harm the host operating system or to steal sensitive data from users, organizations, or companies. Malware may include software that gathers user information without permission.

Content

• The work environment for malware analysis
• Metadata related to malware
• Malware Integration with an existing system
• Learn IDA Pro and X64dbg
• Malicious features
• Coding / encryption algorithms
• Coding and hook injection
• Use of forensic memory

About

Both Java and .NET development environments provide powerful means for security development, but developers should know how to apply the various architecture- and coding-level programming techniques in order to implement the desired security functionality and avoid vulnerabilities.

Providing hands-on knowledge, the course contains numerous exercises on how to use various APIs and tools to prevent untrusted code from performing privileged actions, protect resources through strong authentication and authorization, provide secured remote procedure calls, handle sessions, introduce different implementations for certain functionality, and many more.

Most importantly, the course explains the most frequent and severe programming flaws typically committed by programmers. General web-based vulnerabilities are demonstrated through presenting the relevant attacks, while the recommended coding techniques and mitigation methods are explained in the context of both development platforms. Besides the typical security-relevant Java and .NET bugs, the introduced security vulnerabilities cover both language-specific issues and problems stemming from the runtime environments one should be aware of. All vulnerabilities and the relevant attacks are demonstrated through easy-to-understand exercises, followed by the recommended coding guidelines and the possible mitigation techniques.

Participants attending this course will

• Understand basic concepts of security, IT security and secure coding
• Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
• Have a practical understanding of cryptography
• Learn to use various security features of the Java development environment
• Learn to use various security features of the .NET development environment
• Get information about some recent vulnerabilities in .NET and ASP.NET
• Learn about typical coding mistakes and how to avoid them
• Get information about some recent vulnerabilities in the Java framework
• Get sources and further readings on secure coding practices

About

Security and Maintenance is a component of Windows in charge of monitoring and displaying alerts about various security- and performance-related metrics It is a Microsoft Windows component. It is also a part of Windows XP,

Content

• Introduction to Windows security feature
• Identity and Access Management
• Administration of device accessibility
• Tips with Microsoft Security Logs
• Monitoring of activities and report generation

About

Cloud computing security is broad set of policies, technologies, applications, and controls utilized to protect virtualized IP, data, applications, services, and the associated infrastructure of cloud computing/

Content

• Introduction to cloud-based technology
• Virtualized network in Azure cloud computing network
• On-site and hosted solutions
• SaaS, PaaS, and IaaS. 
• Cloud computing vulnerabilities
• The work environment in Microsoft Azure.

About

Digital security is various ways of protecting computer's internet account and files from intrusion by an outside user

Content

• Overview of cybersecurity
• Cybersecurity effective planning and architecture

About

Many institutions and businesses invest large sums of money to create and ensure a secure computer system for all its stakeholders. Outlays of monies bring together hardware, software, policies, procedures, physical parameters, and training to construct a fortress of protection for its data, network, and, ultimately, its mission. Without the sense and assumption of a secure computer network, revenues would be lost, data compromised, and secrets unfolded.

But every system relies on the identification and authentication of the user. The system would not have been built if not for the intention of users to access and use the system, whatever that system may offer to the users. Almost always is a user accessing the system from a remote area away from the system’s administrators. They need to have a way to identify each user and authenticate that the user’s digital identity matches the physical user sitting in front of the computer or server is mandatory. Add to this drama that the user is human. This very nature is what may bring down and create the weakest link in the strongest fortress. As Schneier (2000) stated, "Think of security… as a chain. The security of the entire system is only as strong as the weakest link." That weakest link is many times the user of the system; unlike the human in the food chain, where a man takes a prominent stand, in the access and security of computer networks, the human is many times the weak prey or entry point to what is secure with the assumption that the right users are identified and authenticated.

Course Content

• Introduction
• Username/Password Combinations for Identification & Authentication
• How Can Passwords be Uncovered
• Securing Passwords with Secure Practices
• Password Tips for BlackBerry Users
• Password Management Tips for iPad & iPhone
• Password Protection Feature in Firefox Web Browser
• Facebook and Passwords
• Microsoft Online Safety Password Advice
• Enabling Firmware Password Protection in MAC OS X
• How to Protect Unattended Computer
• Better Password Practices
• Teaching Students Better Password Practices

About

As society becomes more dependent upon the technology of computers in this information age, the more vulnerable humans seem to be to cyberthreats. So much time, energy and resources are expended on fighting these cyberthreats that it would be wise to first understand what type(s) of threats have, do or potentially could exist.

Understanding threat(s) and the potentiality of attack on one's computer system should be one (and maybe the first) step in an attempt at warding off the damage and danger that could happen to you, the user. However, one must also be cognizant of the fact that some threats are beyond the everyday user's, and even the expert's, ability to prevent.

The attacks can happen without notice and without one's knowledge, but knowing how some of these attacks could take place, one maybe able to limit one's chances of being a statistic in the cyberworld. Don't be an uninformed target -- be ready and aware of the danger -- then undertake to implement security systems that maybe able to ward against such treats.

Course Content

• DOS: Denial-of-Service
• Protecting your computer
• Protecting Against Hardware Loss, Hardware Damage and System Failure
• Worms
• Viruses
• Social Engineering
  • Phishing
  • Spear Phishing
• Botnets
• Man-in-the-middle

About

The term hack has several related meanings in the technology and computer science fields. It may refer to a clever or quick fix to a computer program problem, or to what may be perceived to be a clumsy or inelegant (but usually relatively quick) solution to a problem. The term is also used to refer to a modification of a program or device to give the user access to features that were otherwise unavailable.

Course Content

• Introduction
• Microsoft Windows
• Novell
  • Novell Windows NT Hacks
    • Gain C: Access
    • Gain Program Access on C:
    • Using PowerPoint to run applications
    • Using Notepad run applications
    • Getting Access to invisible drives
    • Getting Passwords
  • Advanced Novell Hacking