SystemExperts ^TM teaches courses at leading conferences around the world. As a convenience to conference attendees and as a resource for anyone interested in learning about a particular topic, we regularly make the course slides available on our web site. Typically, our courses blend leading edge technical understanding with practicality born from making security work in real business environments. Our ongoing consulting work enables us to enrich the courses with interesting real world examples.

Our courses and our consultants who teach them consistently receive the highest student evaluations. Look for us the next time you are planning to attend a conference.

802.11b Practical Wireless Issues:
Concepts, Administration, and Security
Table of Contents

The course focuses on the fundamental security and usage issues that we all must come to grips with in purchasing, setting up, and using wireless IP services. Whether you like it or not, wireless services are popping up everywhere. As time goes on, more of your personal and corporate data communications will be done over various types of wireless devices. We're faced with a proliferation of business and technical choices concerning security, hardware, software, protocols, and administration.

In this course we will cover a number of topics that affect you in managing and using wireless services. Some of the topics will be demonstrated live using popular wireless devices.

Network Security Profiles:
A Collection Of Stuff Hackers Know About You
Table of Contents

The course focuses primarily on tools and techniques that exploit many of the common TCP/IP based protocols (such as WWW, SSL, DNS, ICMP, and SNMP) which underlie virtually all of the Internet applications, including Web technologies, network management, and remote file systems. Some topics are addressed at a detailed technical level. This course concentrates on examples drawn from public domain tools because these tools are widely available and commonly used by hackers (and are available for you to use for free!).

Hardening Windows 2000

This tutorial is based on the "Hardening Windows 2000" document that SystemExperts released in early 2001. It covers the steps necessary to harden Windows 2000 systems.

Practical Intrusion Detection Tips and
What Hackers Have Up Their Sleeves Now

Intrusion detection has been one of the most hyped technologies of the recent past. Yet, few organizations have succeeded in deploying it. As hackers have continued to advance their craft, the problem can�t be that IDS isn�t needed. Look at both sides of the attack coin: hacker attacks and detection. With practical advice distilled from working with dozens of major companies, this session focuses on the practical measures you can take to detect and recover from today�s attacks. It also covers the preparative actions you should take to prepare before an attack occurs.

IDS

What can intrusion detection do for you? Intrusion detection systems are designed to alert network managers to the presence of unusual or possibly hostile events within the network. Once you've found traces of a hacker, what should you do? What kind of tools can you deploy to determine what happened, how they got in, and how to keep them out? This course provides a highly technical overview of the state of intrusion detection software and the types of products that are available, as well as the basic principles to apply for building your own intrusion detection alarms. Methods of recording events during an intrusion are also covered.

Wardialing

This presentation explores the tools and techniques commonly used by hackers, identifies ways to recognize the signatures such tools leave behind, and gives practical measures available to reduce the exposure of your corporate resources to a wardialing attack.

Extranet Security

While extranets link suppliers, customers, data sources, financial organizations and frequently, competitors, the abysmal state of extranet security is one of the best kept dirty secrets. This presentation offers advice with helping companies to connect with business partners without putting themselves at risk.

Real World Intrusion Detection

As e-commerce and extranet applications introduce riskier Internet protocols, sysadmins need intrusion detection techniques in order to distribute security countermeasures on increasingly open networks. This talk cuts through the hype to the real world considerations for intrusion detection deployment and operation.