Network Security and Vulnerability Exploitation

2.

Defensive Network Security Architecture

2.1.

Defense in Depth Strategy

2.1.1.

Layered Security Model

2.1.2.

Security Controls Classification

2.1.3.

Preventive Controls

2.1.4.

Detective Controls

2.1.5.

Corrective Controls

2.2.

Network Segmentation and Isolation

2.2.1.

Network Segmentation Principles

2.2.2.

Micro-segmentation

2.2.3.

Zero Trust Architecture

2.2.4.

Demilitarized Zone Design

2.2.4.1.

Single-Homed DMZ

2.2.4.2.

2.2.4.3.

Three-Legged DMZ

2.2.5.

2.2.5.1.

VLAN Configuration

2.2.5.2.

2.2.5.3.

Inter-VLAN Routing

2.2.5.4.

2.2.6.

Network Access Control

2.2.6.1.

802.1X Authentication

2.2.6.2.

MAC Address Filtering

2.2.6.3.

2.2.7.

Air Gap Networks

2.2.7.1.

Physical Isolation

2.2.7.2.

Logical Isolation

2.2.7.3.

Use Cases and Limitations

2.3.

Firewall Technologies

2.3.1.

2.3.1.1.

Packet Filtering Firewalls

2.3.1.2.

Stateful Inspection Firewalls

2.3.1.3.

Proxy Firewalls

2.3.1.4.

Next-Generation Firewalls

2.3.2.

Firewall Deployment Models

2.3.2.1.

Network Firewalls

2.3.2.2.

Host-based Firewalls

2.3.2.3.

Cloud Firewalls

2.3.3.

Firewall Rule Management

2.3.3.1.

2.3.3.2.

Rule Optimization

2.3.3.3.

2.3.4.

Web Application Firewalls

2.3.4.1.

WAF Deployment Modes

2.3.4.2.

OWASP Top 10 Protection

2.3.4.3.

Custom Rule Development

2.4.

Intrusion Detection and Prevention

2.4.1.

IDS/IPS Architecture

2.4.1.1.

Network-based Systems

2.4.1.2.

Host-based Systems

2.4.1.3.

Hybrid Deployments

2.4.2.

Detection Methods

2.4.2.1.

Signature-based Detection

2.4.2.2.

Anomaly-based Detection

2.4.2.3.

Behavioral Analysis

2.4.2.4.

Machine Learning Approaches

2.4.3.

IDS/IPS Deployment

2.4.3.1.

Inline vs Out-of-band

2.4.3.2.

Sensor Placement

2.4.3.3.

High Availability

2.4.4.

Alert Management

2.4.4.1.

Alert Correlation

2.4.4.2.

False Positive Reduction

2.4.4.3.

Incident Escalation

2.5.

Virtual Private Networks

2.5.1.

2.5.1.1.

Site-to-Site VPNs

2.5.1.2.

Remote Access VPNs

2.5.1.3.

Client-to-Site VPNs

2.5.2.

2.5.2.1.

2.5.2.1.1.

Authentication Header

2.5.2.1.2.

Encapsulating Security Payload

2.5.2.1.3.

Internet Key Exchange

2.5.2.2.

2.5.2.3.

2.5.2.4.

2.5.3.

VPN Security Considerations

2.5.3.1.

Encryption Algorithms

2.5.3.2.

2.5.3.3.

Authentication Methods

2.6.

Security Monitoring and Analytics

2.6.1.

Security Information and Event Management

2.6.1.1.

2.6.1.2.

Event Correlation

2.6.1.3.

Real-time Monitoring

2.6.1.4.

Compliance Reporting

2.6.2.

Security Orchestration and Automated Response

2.6.2.1.

Playbook Development

2.6.2.2.

Automated Incident Response

2.6.2.3.

Integration Capabilities

2.6.3.

Threat Intelligence Platforms

2.6.3.1.

Intelligence Sources

2.6.3.2.

Indicator Management

2.6.3.3.

Previous

1. Foundations of Network Security

Go to top

Next

3. Cryptography in Network Security