We’re very excited to release our CompTIA Network+ training series, which gives you all the skills and training necessary to pass the Network+ certification exam (N10-004) as well as become a solid network professional.  Our CompTIA Network+ training is the perfect compliment to our very popular CompTIA A+ series.

In fact, we offer both our CompTIA A+ and Network+ training as a combo package with big savings.  As always, we include MeasureUp’s award winning exam prep software with each of our training titles.

If you need training to comply with the DoD 8570.1 directives, our A+, Network+, Security+ and CISSP training covers the material you need to pass each of those exams.

Check out the content covered in our Network+ training series, which has 20 videos and over 10 hours of expert instruction! (more…)

Network security has been, and will continue to be, a hot topic among information technology professionals.  As a systems or network administrator, you should not only be aware of the need to keep a close eye on security, you should be actively engaged in it every day.  In addition to the tools listed below, you should also be looking at specialized training like Cisco CCNA Security training, Windows or Linux/Unix Security Training.

New vulnerabilities are discovered every day that could allow an attacker to penetrate your infrastructure.  Company data, company secrets, account information, financial data and more is at risk if your network is compromised. 

Here are 10 hacking tools that you should be aware of and use on a regular basis to help you see what the hackers see, and to keep your networks more secure.

Packet Sniffers

1. WireShark (http://www.wireshark.org)

Wireshark is perhaps one of the most widely used (and free) network monitoring / packet sniffing tools out there.  When you download and install, it will also install the WinPcap application.  Once your familiar with WireShark, you’ll be able to sniff your corporate network, trace conversations, identify insecure passwords, etc (especially using additional software like Cain & Abel).

This tools runs on Windows, Linux and Mac systems

2. Kismet (http://www.kismetwireless.net)

Kismet is a very powerful wireless sniffer, often used for “wardriving” (driving or walking around, searching for wireless networks to connect to).  A lot of features in this application including the ability to identity non-beaconing networks (networks that aren’t broadcasting their SSID).  Always a good idea to see how secure (or insecure) your wireless networks are if you have them within your company.  Wireless networks are one of the larger security holes in many networks (and home networks).

This tools runs on Windows, Linux and Mac systems

3. Cain & Abel (http://www.oxid.it/cain.html)

One of the most popular “password recovery” tools for Windows operating systems is definitely one you should be familiar with.  Insecure (i.e. weak) passwords offer little to no defense against a fairly knowledgeable hacker.  If they can can physical access to your network (including attaching to wireless networks) chances are they can sniff the network traffic and crack insecure passwords in a matter of seconds to minutes.  Routinely check your network for the existence of weak passwords using a tool like Cain & Abel to identify user’s who need to strengthen their passwords.

This tools runs on Windows, Linux and Mac systems

4. Metasploit (http://www.metasploit.com)

This tool is geared more toward people who do penetration testing (pen testing), patch installation verification, regression testing, etc.  It’s a framework that allows you to develop tools to test and launch exploits against your system to verify patches, defenses, etc., are working correctly.  A little more learning curve here, but if you really want to take your skills to the next level, this is one tool you should add to your skillset.

This tools runs on Windows, Linux and Mac systems

5. Hping2 (http://www.hping.org)

TCP/IP packet injection and manipulation is again a skill that is a little higher on the food chain, but something you should become familiar with.  Using this tool you can send partial ping packets, IP fragmentation, etc., to test firewalls, discover firewall rulesets, remote OS fingerprinting and more.

This tools runs on Windows, Linux and Mac systems

6. Nikto (http://www.cirt.net/nikto2)

If your organization maintains web servers, or you have a hosted solution that you want to ensure is up to snuff, a tool like Nikto might very well fit the bill.  It is a web scanner that can scan for thousands of potential vulnerabilities, and best of all it’s free and open source.

From the cirt.net website: Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).

This tools runs on Windows, Linux and Mac systems

7. Nmap (http://nmap.org)

Nmap is a network mapping tool that can be used by security administrators to scan and test their networks for unidentified servers, hosts with vulnerabilities and/or unnecessarily open ports, etc.  Nmap is a popular tool among security administrators and hackers alike, and has been featured in such Hollywood movies as the Matrix: Reloaded and Die Hard 4: Live free or Die Hard.

This tools runs on Windows, Linux and Mac systems

8. Nessus (http://www.nessus.org)

Nessus is one of the most powerful network scanners available, and most serious security administrators tool of choice.  They have moved from offering a free version to a commercial version, which is potential cost prohibitive to some administrators.  However when you factor in the cost of remediating a hack to your network or infrastructure, potential loss of data, critical systems, and/or reputation it’s a small price to pay.

This tools runs on Windows, Linux and Mac systems

9. Snort (http://www.snort.org)

Snort is an Intrusion Detection System / Intrusion Prevention System (IDS/IPS) that is widely used by security administrators to detect intrusions into their networks. It combines the benefits of signature, protocol and anomaly based inspection and is one the most widely deployed IDS/IPS technology worldwide.  There are a few pre-requisites for installing and running Snort, including Libpcap, PCRE, Libnet and Barnyard.

This tools runs on Windows, Linux and Mac systems

10. Retina (http://www.eeye.com/html/Products/Retina/index.html)

A commercially available network and security scanner from the folks at eEye Digital Security, Retina is a full-featured network monitoring application.  While not free nor open-source, it’s a popular tool used by many corporate and government security administrators.  Retina can also report on compliance with many corporate policies including SOX, HIPAA, GLBA, PCI and others.

Palaestra Training is pleased to announce that we have a new trainer joining the company.  Koren Archibald, a Cisco Certified Instructor and Cisco Security expert will be bringing her vast knowledge and expert training skills to our Cisco CCNA: Security video training series scheduled for release in mid-May 2009.

Koren has been training and consulting in the most dynamic environments for over 10 years. She has worked and trained people across a wide spectrum of industries including government, commercial, secure, and extremely large network infrastructures. Koren is also a Microsoft Certified Trainer and consultant with a remarkable ability to convey information clearly and creatively in a technical environment.

She is the president of Wise Technical Innovations in Norfolk, Virginia and her company specializes in the following:

• Creating Cisco secure environments
• System Center Configuration Manager 2007
• SMS
• Project Server 2007 deployments in multi-site environments.

She is well-known for providing tailored solutions that are a perfect blend of training and consulting and Palaestra Training is excited to be able to provide that perfect blend of technical expertise and engaging presentation skills to our students and customers.

Other certifications Koren holds:

• Cisco Certified Systems Instructor #30837
• Cisco CCNA
• Cisco CCNP
• Microsoft MCSE on 2003, 2000 and NT 4.0
• Microsoft Certified Trainer (MCT)
• MCTS Windows Server 2008 Active Directory & Applications Infrastructure
• MCTS Windows Server 2008 Network Infrastructure & Windows Vista
• MCTS Microsoft Office Project 2007
• IT Project+
• Network +

Information Security is a concern for every company, no matter how big or how small. 

Knowing what information typically is traversing your company’s network is critical to knowing when something out of the ordinary occurs. 

Monitoring your network enables you to be aware of many things including degradation or fluctuations in performance, overall network health and stability, and security.

When it comes to network monitoring tools, there are many choices ranging from free to commercial, open-source to proprietary. The range of functionality they provide also varies from packet capturing tools to full-blown network monitoring applications that can show the health of all devices on your network in real-time.

(more…)