1. Describe how "social engineering" can be used to compromise security
2. Define the CIA triad
3. Identify and plan to manage risks in common situations
4. Define a threat tree and threat matrix and explain how they are used
5. Define an attack tree, explain how boolean and continuous node values are used in attack trees, and demonstrate how an attack tree can be used to determine vulnerabilities
6. Explain why it is important for network engineers to understand cyber attack strategies.
7. List and summarize the stages of network attack methodology
8. Identify the information an attacker might collect during network reconnaissance
9. Describe at least two "low tech" ways of performing reconnaissance on a target
10. Perform a WHOIS query and extract the IP address of a DNS server
11. List at least three publicly available tools used for gathering information on targets
12. Define port scanning and describe the process used to determine whether a port is open
13. Define a proxy server
14. Define IP spoofing, ingress filtering, and session hijacking
15. Define a Denial of Service attack and explain the difference between a DoS and DDoS attack
16. State the relationship between DoS attacks and geopolitical events
17. List at least two vulnerability attacks used in DoS attacks
18. Define SYN flooding and explain how it can be protected against
19. Describe what happens during a standard DDoS attack
20. Explain how DNS poisoning can be used in phishing attacks
21. Describe how URLs can be obfuscated to make a phishing attack more likely to succeed
22. List at least two tools used to assess vulnerabilities in networks
23. Summarize the typical goals of post-exploitation activity
24. Describe the strategies attackers use to maintain access to a compromised system
25. Define trojans, viruses, worms, and blended threats
26. List the typical objectives of trojan creators
27. Define rootkits
28. Give examples of common uses of Netcat
29. Define wrappers
30. Summarize common data exfiltration methods
31. Summarize how attackers can remove evidence of system compromise in Windows and Unix systems

Week 1 - Introduction to Network Security

Week 2 - How Networks are Attacked - Part I

Week 3 - How Networks are Attacked - Part II

Week 4 - How Networks are Attacked - Part III

Week 5 - Final Exam