CompTIA Cybersecurity Analyst+: Intrusion Detection & Traffic Analysis
Cybersecurity Analyst+
| Intermediate
- 20 Videos | 1h 36m
- Includes Assessment
- Earns a Badge
Discover how IT security analysts must recognized how malicious attacks take place. Explore how to analyze log results allows for the detection of security incidents. This course can be used in preparation for the CompTIA Cybersecurity Analyst (CySA+) Certification Exam CS0-002.
WHAT YOU WILL LEARN
-
discover the key concepts covered in this course
identify suspicious log entries
view a sample Burp Suite report
scan a web app using nikto
deploy Kali Linux as a cloud-based virtual machine
install and configure the Snort IDS tool (mention sinkhole, antivirus heuristics)
create a Snort IDS rule
analyze an ICS traffic capture
capture and analyze HTTP user authentication traffic
playback a captured VoIP call -
upload a PCAP file for analysis
enter a WPA password in WireShark to decrypt wireless traffic
use hashing to detect file changes through steganography
monitor, block, and configure notifications for devices on a Wi-Fi network using the eero app
use third-party tool to encrypt sensitive files
use aircrack-ng in Kali Linux to crack protected Wi-Fi networks
use Kismet to detect Wi-Fi networks
use Nessus to audit Amazon Web Services (AWS)
use Nessus to scan LAN hosts for malware
summarize the key concepts covered in this course
IN THIS COURSE
-
1.Course Overview2m 30sUP NEXT
-
2.Sample Log Entry Analysis4m 36s
-
3.Burp Suite Reports5m 18s
-
4.Nikto Web App Scanning5m 10s
-
5.Kali Linux Cloud Deployment4m 43s
-
6.Snort Installation3m 2s
-
7.Snort Rules9m 47s
-
8.Industrial Control System Network Traffic5m 25s
-
9.HTTP Authentication Traffic2m 54s
-
10.VoIP Traffic Analysis2m 39s
-
11.Online Network Traffic Analysis3m 24s
-
12.IEEE 802.11 WPA Traffic3m 22s
-
13.Steganography and Hashing4m 9s
-
14.Wi-Fi Connected Devices2m 59s
-
15.Third-party File Encryption2m 56s
-
16.Aircrack-ng8m 1s
-
17.Kismet3m 40s
-
18.Cloud Vulnerability Scanning5m 54s