|
Size: 1109
Comment:
|
Size: 1798
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 4: | Line 4: |
| == CPTR 427 Network Security Class == | = CPTR 427 Network Security Class Wiki = Before you get too involved with looking at what we plan to do this semester, you need to look at '''what you should already know'''. Take a look at [[NetworkSecurity/Prerequisites]]. Below is a list of areas we will look at in NetworkSecurity * [[NetworkSecurity/Lab]] * [[NetworkSecurity/Tools]] * [[NetworkSecurity/Hacking]] * [[NetworkSecurity/Encryption]] * In the past we have used [[NetworkSecurity/WebScarab|Web scarab]] |
| Line 8: | Line 18: |
| == Using WebScarab with WebGoat == | == Books Used in this Class == |
| Line 10: | Line 20: |
| 1. Start up WebScarab. It may be in basic mode. a. If it is, Go to Tools->Use Full Interface. a. Restart WebScarab. 1. Fire up IE and go to Tools->Internet Options->Connections->LAN settings. 1. Check Use proxy server and set address to localhost port 8008. 1. Click OK and OK. 1. On WebScarab go to Proxy->Manual Edit. Check Intercept Requests. Select GET and POST (using the CTRL key to select both). 1. In IE go to http://localhost./WebGoat/attack. (notice the dot after localhost, it is required to apply proxy settings on localhost.) WebScarab should already start intercepting. The lessons should work after that. I was able to do a command injection following the steps in the solution. I have now put the proxy settings back to the way they were and shut down WebGoat (for security reasons, not sure if that was necessary but I did it.) |
'''Required Books''' * [[http://www.snort.org/assets/125/snort_manual-2_8_5_1.pdf|Snort Manual]] (Free) * Hacking Exposed 6th Ed. ISBN:978-0-07-161374-3 * Each student will be responsible for presenting a chapter from this book. * Each student will be responsible for demonstrating an attack related to the chapter they present. * The Code Book: The Science of Secrecy from Ancient Egypt to Quantum Cryptography ISBN: 0385495323 * Each student must read this New York Times Best Seller. * Cryptography will be studied in conjunction with the assigned chapters. * Cryptography and Network Security 4th Ed. ISBN: 0-13-187316-4 * The theory of cryptography (Symmetric, Public-key, Key-management, Hash and MAC) are covered from this book * Applications of theory are partially covered from this book (Kerberos, X.509, IPSec) * Dr. A will do all the lecturing on these topics. * Labs will be given from handouts and rely on internet and suggested resources. Topics will be divided between * |
| Line 20: | Line 37: |
| = Often Discussed Topics = | '''Recommended Books''' * Snort IDS and IPS Toolkit ISBN-10: 1-59749-099-7 |
CPTR 427 Network Security Class Wiki
Before you get too involved with looking at what we plan to do this semester, you need to look at what you should already know. Take a look at NetworkSecurity/Prerequisites.
Below is a list of areas we will look at in NetworkSecurity
In the past we have used Web scarab
Books Used in this Class
Required Books
Snort Manual (Free)
Hacking Exposed 6th Ed. 978-0-07-161374-3
- Each student will be responsible for presenting a chapter from this book.
- Each student will be responsible for demonstrating an attack related to the chapter they present.
- The Code Book: The Science of Secrecy from Ancient Egypt to Quantum Cryptography ISBN: 0385495323
- Each student must read this New York Times Best Seller.
- Cryptography will be studied in conjunction with the assigned chapters.
- Cryptography and Network Security 4th Ed. ISBN: 0-13-187316-4
- The theory of cryptography (Symmetric, Public-key, Key-management, Hash and MAC) are covered from this book
- Applications of theory are partially covered from this book (Kerberos, X.509, IPSec)
- Dr. A will do all the lecturing on these topics.
- Labs will be given from handouts and rely on internet and suggested resources. Topics will be divided between
Recommended Books
- Snort IDS and IPS Toolkit ISBN-10: 1-59749-099-7