Weekly Lab Reports
Week 1
Gathering WHOIS (Lab 1B1)
In this lab, we use the WHOIS tool to gather information about a particular site using its domain name.
DNS Interrogation with Linux (Lab 1B2)
The purpose of using DNS is to get the information of a domain name such as its IP address and domain name aliases.
Linux File System Access Control (Lab 7B1)
In this lab, we examine permissions (read, write, execute) and ownership records for files and directories in the Linux O/S. We also explore the concept of a sticky bit.
Windows O/S Hardening and Local Policy (Lab 3A3)
In this lab, we identify and detect the patches in the Windows O/S that help make the system more secure from vulnerabilities. In addition to Windows O/S's built-in tools, we use the Microsoft Baseline Security Analyzer (MBSA) tool and the Windows NT/2000 Security Scoring tool from Center for Internet Security (CIS).
Week 2
Traffic Analysis Using Linux
(Lab 5B2)
Network traffic can be sniffed to collect information about the network traffic. In this lab, we use Linux tools such as TCPDUMP and analyze traffic generated by PING and LYNX.
Scanning and Enumeration
(Lab 2A)
Scanning and enumeration are processes that identify active computers on a network and their accessible resources that are vulnerable. In this lab, we use scanning tools such as a SuperScan, NetBrute, NMap, LANguard Network Security Scanner. I specifically explain SNMP Enumeration using Windows.
Week 3
Windows Log Analysis
(Lab 5A2)
Windows O/S keeps logs of various events and activities on the computer. In this lab, we use the Microsoft Management Console (MMC) and analyze Event Logs, especially the security logs.
Week 4
NetBus - A Windows Trojan (Lab 3A4)
Trojans and Backdoors are techniques used by an attacker to gain control of a remote machine. In this lab, we use NetBus, a trojan program written for Windows O/S, and perform simple tasks (attacks) on our neighbor's computer.