Professional Documents
Culture Documents
OWP 20160620 Network Security Overview
OWP 20160620 Network Security Overview
OWP 20160620 Network Security Overview
This is a beginner's workshop to give some handson experience of a "hacker" as well as practical
network security and server security at beginners level. No network administrator qualification is
required. The material is currently used for beginner undergraduate course with 13-16 meetings @
2-3 hours each. It is also available as e-learning module on moodle server.
In general, this workshop will be divided into two major objectives, namely, (1) handson experience
how hacker works, and (2) obtain a practical overview on how to secure servers from cyber attacks.
Ubuntu Server is used as an example. To confine the attack in a safe environment, the participant
will be guided to set up a penetration lab equipped with a simple telnet server, SquirrelMail,
webmail, samba server and most importantly Damn Vulnerable Web App (DVWA). Footprinting
technique is performed using common applications like nmap, whois, dig, or vulnerability scan
using the Grabber. Sniffing uses wireshark and tcpdump. WiFi penetration techniques uses
combination of reaver, airmon-ng, airodump-ng, aireplay, aircrack-ng. Password attack will be
attempted using the hydra and ophcrack. Finally, to break a database, nmap and sqlmap will be
used.
Once the participants introduced to some attack methods in the Internet, it would be easier to
appreciate why we need to do security. 20 server tips will be practiced. It is followed by firewall
configuration using iptables for some scenarios. Practical e-mail postfix server is done using using
MailScanner. For secure remote login and file transfer, the participant will get some experience to
install ssh, how to run a command remotely using ssh, forwarding X display via ssh, and also secure
copy. Virtual Private Network (VPN) can simply be built using pptp server, if time permits we may
also use more complex openvpn. To secure web appication, the participants will get some handson
on Apache web application firewall ModSecurity. To perform host security, tripwire and dd will be
used. Finally, installation and operational Intrusion Detection System using snort will be performed.
Equipments:
• Local Area Network
• WiFi Access Point
• Ubuntu Server (can be run on VirtualBox)
• Laptop
• USB with kali linux operating system
• or CDROM with kali linux operating system
e-Learning Module:
• http://cyberlearning.web.id/moodle/course/view.php?id=115 (moodle e-learning open source
on network securty {id}).
Resources on hacking:
Mostly is written in Wiki and in Indonesian Language {id}