CompTIA Security+

This course will teach you the fundamental principles of installing and configuring cybersecurity controls and participating in incident response and risk mitigation.

Study of the course can also help to build the prerequisites to study more advanced IT security qualifications, including CompTIA Cybersecurity Analyst (CSA)+, CompTIA Advanced Security Practitioner (CASP), and ISC's CISSP (Certified Information Systems Security Professional).

On course completion, you will be able to:

• Identify network attack strategies and defenses.
• Understand the principles of organizational security and the elements of effective security policies.
• Know the technologies and uses of cryptographic standards and products.
• Identify network- and host-based security technologies and practices.
• Describe how wireless and remote access security is enforced.
• Describe the standards and products used to enforce security on web and communications technologies.
• Identify strategies for ensuring business continuity, fault tolerance, and disaster recovery.
• Summarize application and coding vulnerabilities and identify development and deployment methods designed to mitigate them.

Module 1 / Threats, Attacks, and Vulnerabilities

Indicators of Compromise

• Why is Security Important?
• Security Policy
• Threat Actor Types
• The Kill Chain
• Social Engineering
• Phishing
• Malware Types
• Trojans and Spyware
• Open Source Intelligence

Labs:

• VM Orientation

Critical Security Controls

• Security Control Types
• Defense in Depth
• Frameworks and Compliance
• Vulnerability Assessments and Pentests
• Security Assessment Techniques
• Pen Testing Concepts
• Vulnerability Scanning Concepts
• Exploit Frameworks

Lab:

• Using Vulnerability Assessment Tools

Security Posture Assessment Tools

• Topology Discovery
• Service Discovery
• Packet Capture & Packet Capture Tools
• Remote Access Trojans
• Honeypots and Honeynets

• Using Network Scanning Tools 1
• Using Network Scanning Tools 2
• Using Steganography Tools

Incident Response

• Incident Response Procedures
• Preparation Phase
• Identification Phase
• Containment Phase
• Eradication and Recovery Phases

Module 2 / Identity and Access Management

Cryptography

• Uses of Cryptography
• Cryptographic Terminology and Ciphers
• Cryptographic Products
• Hashing Algorithms
• Symmetric Algorithms
• Asymmetric Algorithms
• Diffie-Hellman and Elliptic Curve
• Transport Encryption
• Cryptographic Attacks

• Implementing Public Key Infrastructure

Public Key Infrastructure

• PKI Standards
• Digital Certificates
• Certificate Authorities
• Types of Certificate
• Implementing PKI
• Storing and Distributing Keys
• Key Status and Revocation
• PKI Trust Models
• PGP / GPG

• Deploying Certificates and Implementing Key Recovery

Identification and Authentication

• Access Control Systems
• Identification
• Authentication
• LAN Manager / NTL
• Kerberos
• PAP, CHAP, and MS-CHAP
• Password Attacks
• Token-based Authentication
• Biometric Authentication
• Common Access Card

• Using Password Cracking Tools

Identity and Access Services

• Authorization
• Directory Services
• RADIUS and TACACS+
• Federation and Trusts
• Federated Identity Protocols

Account Management

• Formal Access Control Models
• Account Types
• Windows Active Directory
• Creating and Managing Accounts
• Account Policy Enforcement
• Credential Management Policies
• Account Restrictions
• Accounting and Auditing

• Using Accoun