국가보안기술연구소세미나 - cfs6.tistory.com

국가보안기술연구소세미나 - cfs6.tistory.com

: : 02 3676-9638 : [email protected] : http://itbankhackers.com 1999.04 1999.09 2000.09 4500 2001.03 ) 2001.03 2001.03 J-test 2002.03 2002.06 2002.07 (HALL) HALL) 2002.11 2003.05 (HALL) job korea , incruit , scout ) 2003.09 2003.10 IT 2003.10 (HALL) www.keystudy.net) & 2003.11 , , , , 2003.11 2003.11 2003.11 2004.10 AutoDesk open 2004.11 Pearson VUE open 2004.12 (HALL) www.solarisschool.com) ) 2005.01 (HALL) www.hackersnews.org ) 2005.02 / 2005.02 8 / 2005.05 , 2006.01 A/S /6 22 8 A/S 2006.03 (HALL) p.t) 2006.04 . 2006.06 , 2006.07 8 h.e.r.e 2006.08 : : 02 3676 9638 : [email protected] : http://itbankhackers.com

- hackerslab Hall of Fam) e - hackerslab - (HALL) securenews) - jcc - ibiz - 2001 - Anonym) izer - - HN-Checkit - HNN-Trace - - - - - , , , - - C.E.O , [ ] - - - - - - - (HALL) ) GUI H/W DCRC MIPv6 , , : : 02 3676 9638 : [email protected] : http://itbankhackers.com Tommy Cho : 1992~1997 carnegie Mellon University(HALL) ) Master of science in Electronic com) m) erce 1997 8 ~1998 12

1999 7 ~ ) NSA(HALL) ) 2001 1 ~2002 1 2002 2 ~6 (HALL) SNRTEC) - (HALL) ) 2002 7 ~2003 6 KTIS (HALL) PC ,PKI ) - - - -INFOsec - - (HALL) ,c) < > - (HALL) =TEC_SEC) TEC_SEC) - (HALL) ) - - - (HALL) NSA) (HALL) ) WAN . LAN 016 - (HALL) ) (HALL) F/W) - IPS , (HALL) ) SK / KT - 1.25 BC BS7799 (HALL) ) - , LG BS7790 - , (HALL) ) . . . - , - , - , / - (HALL) ) : : 02 3676 9638 : [email protected] : http://itbankhackers.com

: (HALL) ) / (HALL) ) / SMS NMS / PM : (HALL) ) NMS , PM Sun training center (HALL) ) SMS/NMS IT Infra m) anagem) ent (HALL) Cisco Router 4000, Switch 2950, Term) inal SMS/NMS Server, NAT Server, IP , ) SMS (HALL) Windows NT, 2000 Server, Solaris Server, NMS Linux Server ) LG NMS Network LG.Philips LCD NMS / / NMS - SK Telecom) : BcN NMS - Sun training center : TCP/IP , ICND , CISSP , , NMS LG Telecom) NMS - : , - : ICND , CISSP , HP - - : - NGN CCNA, CCNP, CCIE, CSA, SCNA, MCSE, CISA, CISSP , , HP, : CCIE, CCNP, CCNA, MCSE, ITIL : : 02 3676 9638 : [email protected] : http://itbankhackers.com : (HALL) ) edhaus ZECA (HALL) ) edhaus AREO MESSAGER (HALL) ) DB IDS

(HALL) )LG : SDS Fasoo.com) - DRM (HALL) UNIX,NT) - UNIX Shell script , LG SI - SI System) Engineer/CDN - CDN , F/W IDS (HALL) ) : - ACEBANK Windows NT - WindowsNT, LINUX - WebMaster Windows NT, Linux - MSSQL+ASP - MySQL+PHP - C/C++, PC , , - ) / / MCSE / NET+/ PC - ITwill MFC - Windows2000+SQL : - MCSA(HALL) Windows2003), MCSE(HALL) Windows2000,Windows2003), MCDBA(HALL) SQL2000), , 2 : : 02 3676 9638 : [email protected] : http://itbankhackers.com - LCD 17 , 4 1 - Sun Enterprise 3500 3 - Sun Fire V20z Server 2 - Sun StorEdge A5200 Array 3 - 2 - Netscreen , - IDS (HALL) ) - (HALL) 2522 , 250x 20 ) - (HALL) 3550 , 2900 10 ) - (HALL) 2 ) - 1 - 1 : : 02 3676 9638 : [email protected]

: http://itbankhackers.com Phase Activity P2P

: : 02 3676 9638 : [email protected] : http://itbankhackers.com . (Gulu) Gulu) 6 ~ 12 (Gulu) 5 , 3 ) 15

(Gulu) , ) (Gulu) ) S/W P2P, (Gulu) ) : : 02 3676 9638 : [email protected] : http://itbankhackers.com (( )

) Windows Server I [ : MCP, MCSE, ] Windows Server 2003 Managing and Maintaining 1 VMWARE Windows Server 2003 Lab 2: User and Computer Accounts and Groups 3: 4: Print 5: 6: Server 7: Server 8: Data Storage 9: Disaster Recovery(Gulu) ) 10: Windows Server Update Services Software Windows Server 2003 Network Infrastructure 1: Client IP Address 2: Dynamic Host Configuration Protocol (Gulu) DHCP) IP Address 3: Client 4: Domain Name System (Gulu) DNS) Host Names 5: Windows Internet Name Service (Gulu) WINS) NetBIOS Names 6: IPSec Certificates(Gulu) ) Network Traffic 7: Routing and Remote Access Routing 8: Network Access , , : : 02 3676 9638 : [email protected] : http://itbankhackers.com (( ) ) Windows Server II [ : MCP, MCSE, ]

Windows Server 2003 Active Directory 1: Active Directory Infrastructure 2: Active Directory Forest Domain 3: Organizational Unit(Gulu) ) 4: User, Group, and Computer Accounts 5: Group Policy 6: Group Policy Software 7: Sites Manage Active Directory 8: Domain Controllers 9: Operations Masters(Gulu) FSMO) 10: Active Directory MCSE 2003 Track certification requirements Exam 70270: Installing, Configuring, and Administering Microsoft Windows XP Professional Exam 70290: Managing and Maintaining a Microsoft Windows Server 2003 Environment Exam 70291: Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure Exam 70293: Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure Exam 70294: Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure Exam 70297: Designing a Microsoft Windows Server 2003 Active Directory and Network Infrastructure Exam 70298: Designing Security for a Microsoft Windows Server 2003 Network : : 02 3676 9638 : [email protected] : http://itbankhackers.com Linux Server I [ : , LPIC] /etc/inittab,/etc/fstab /etc/lilo.conf /etc/rc.d vi /etc/passwd /etc/group /root/.bash_profile useradd,groupadd fdisk, mke2fs, mkfs, mkdosfs fsck, e2fsck mkbootdisk /etc/lilo.conf Network Network Card ifconfig, route /etc/modules.conf,resolv.conf /etc/sysconfig/network 10.

ifcfg-eth0 Telnet SSL+SSH VNC NFS ProFTPD SAMBA IPCHANINS&IPTABLE Proxy Server DHCP Server Shell Scripts Bash Shell , if~fi, while~done, case~esac Shell Disk Backup [at,cron,rsync...] DNS Server APM Server DNS APM : : 02 3676 9638 : [email protected] : http://itbankhackers.com Linux Server II [ : , LPIC] Trouble Shooting PXE /PXE /DHCP / HTTP, FTP, NFS , , , , , , , DAT , DAS(Gulu) Direct Attched Storage), SAN(Gulu) Storage Area Network) , , , syslog/etc/syslog.conf , , , BIOS , , , , TCP xinetd Portmap/NIS/NFS/Apache HTTP/FTP/Sendmail Netfilter IPTables, IPTables , iptables FORWARD NAT ,DMZ , IP , , IDS , IDS , , , , :

: 02 3676 9638 : [email protected] : http://itbankhackers.com UNIX Solaris Server [ : CSA, SCNA] Solaris , , Korn , , , , , , PROM(Gulu) Programmable Read-Only Memory) NVRAM(Gulu) Non-Volatile Random Access Memory) Solaris Management Console RBAC(Gulu) Role Based Access Control) JumpStart (Gulu) sub-net mask) DHCP , DNS NTP IPv6 IPv4 IPv6

: : 02 3676 9638 : [email protected] : http://itbankhackers.com CISCO CCNA Intro #642-801[ - Introduction to Computer Networking Concepts - Physical Layer Cabling and Device - Data Link Layer Fundamentals : Ethernet LANs - The TCP/IP OSI Networking Models - Fundamentals of IP - IP Addressing and Subnetting - [LAB] IP Subnetting - Advanced TCP/IP Topics [ VLSM & CIDR ] - [LAB] IP - Fundamentals of TCP and UDP - - [LAB] ICMP, TCP, UDP - Internet Protocol v6 IP - IPv6 - [LAB] IPv6 Protocol - Router Interface Connection - Operating Cisco Routers - Basic Router Configuration and Operation - Cisco Router IOS Mode - Cisco Router IOS Basic Command - Static Route Concepts and configuration - Default Routing Stob Network - RIP v1 and v2 Dynamic Router Configuration : CCNA] - IGRP & EIGRP Operation & Configuration - OSPF Concepts & Configuration - IP Access Control List Security - Standard Access-list & Extended Access-list - Public IP Address & Private IP Address - Routing & NAT - Cisco Router NAT - Operating Cisco LAN Switches - Cisco LAN Switching Basics - Virtual LANs and Trunking - Configuring Cisco 2950 LAN Switches - Cisco - CSVM - Spanning Tree Protocol - Virtual LANs and Trunking - VTP (Gulu) Virtual Trunk Protocol) - Fundamentals of WAN - Remote Access Technologies

- Point-to-Point Leased Line Implementation - ISDN Dial-on-Demand Routing - Router Simulator ISDN - Frame Relay - Frame Relay Switch Router : : 02 3676 9638 : [email protected] : http://itbankhackers.com CISCO CCNP BSCI & BCMSN [ : CCNP] Building Scalable Cisco Internetworks (BSCI) Implement EIGRP operations. - EIGRP (Gulu) DUAL) - EIGRP Routing (Gulu) Stub Routing, Authentication, ) - EIGRP Routing Implement multiarea OSPF operations. - Multiarea OSPF - Multiple OSPF Routing (Gulu) Stub, NSSA, Authentication, ) - Multiarea OSPF Routing Describe integrated IS-IS. - Integrated IS-IS - Integrated IS-IS Implement Cisco IOS routing features. - IGP IP Routing Redistribution (Gulu) Route-maps, default routes, ) - Route Filtering (Gulu) distribute-lists passive interfaces) - DHCP (Gulu) Server, Client, IP Helper address, ) Implement BGP for enterprise ISP connectivity - BGP - Non-transit AS BGP - BGP Path Selection (Gulu) Local Preference, AS Path, Weight MED ) Implement multicast forwarding. - IP Multicast (Gulu) Layer-3 to Layer-2 mapping, IGMP, .). - IP Multicast routing (Gulu) PIM Sparse-Dense Mode) Implement IPv6. - IPv6 Addressing - IPv4 IPv6 - IPv6 Addressing OSPF Routing Building Converged Cisco Multilayer Switched Networks (BCMSN)Implement VLANs. Hierarchical network VLAN - VLAN (Gulu) Native, Default, Static Access) - VLAN Trunking

- VTP - VLAN Hierarchical network STP(Spanning Tree Protocols) - STP (Gulu) RSTP, PVRST, MISTP) - RSTP(Gulu) RVRST) MISTP - STP (Gulu) BPDU Guard, BPDU Filtering, Root Guard) - UDLD Loop Guard - STP - PAgP LACP Link Aggregation Implement Inter-VLAN routing. - Inter-VLAN Routing (Gulu) SVI Routed ports) - CEF - InterVLAN Routing Implement gateway redundancy technologies. - Gateway Redundancy Protocol (Gulu) HSRP, VRRP, GLBP) - HSRP, VRRP, GLBP - High Availability Describe and configure wireless client access. - WLAN Topology - Network Unification Mobility Flatform Client (Gulu) CCX, LWAPP) - Wireless Client (Gulu) ADU) Switched Network Security - Layer 2 Network (Gulu) MAC Flooding, Rogue Devices, VLAN Hopping, DHCP Spoofing, .) - Port Security, 802.1x, VACLs, Private VLANs, DHCP Snooping, ADI - Catalyst Switch (Gulu) IOS-based) security (Gulu) Port Security, 802.1x, VACLs, Private VLANs, DHCP Snooping, ADI) Configure support for voice. - Campus Network Voice - Voice VLAN Trust Boundaries - Basic IP phone (Gulu) Voice VLAN, Trust CoS , Voice AutoQoS) : : 02 3676 9638 : [email protected] : http://itbankhackers.com CISCO CCNP ISCW & ONT [ : CCNP] Implementing Secure Converged Wide Area Networks (ISCW) Implement basic teleworker services. - Cable (Gulu) HFC) - xDSL ADSL (Gulu) i.e., PPPoE or PPPoA). - Teleworker Implement Frame-Mode MPLS. - Frame-Mode MPLS (Gulu) e.g.. Packet-base MPLS VPNs) - Frame-Mode MPLS Implement a site-to-site IPSec VPN

- IPSec VPN GRE Tunnel - SDM Site-to-Site IPSec VPN/GRE Tunnel (Gulu) Preshared key) - IPSec/GRE Tunnel (Gulu) IOS CLI Mode) - VPN Backup Interface - SDM Cisco Easy VPN Solution Describe network security strategies. - Network (Gulu) Reconnaissance, Access, and Denial of Service ..) - Worm, Virus Trojan Horse - Application-layer (Gulu) Management Protocol) Implement Cisco Device Hardening - Auto Secure/One-Step Lockdown (Gulu) CLI and SDM) - Cisco Router AAA - ACL - IOS (Gulu) SSH, SNMP, SYSLOG, NTP, Role-Base CLI ) Implement Cisco IOS firewall. - Cisco IOS Firewall (Gulu) Stateful Firewall, CBAC ) - SDM Cisco IOS Firewall - Cisco IOS Firewall (Gulu) IOS CLI, SDM Monitor) Describe and configure Cisco IOS IPS. - IDS IPS (Gulu) IDS/IPS signatures, IPS Alarms ) - SDM Cisco IOS IPS Optimizing Converged Cisco Networks (ONT) Describe Cisco VoIP implementations. - VoIP Network (Gulu) packetization, bandwidth considerations, CAC, ) - Enterprise Network Voice (Gulu) Gatekeepers, Gateways, IP PBX ) Describe QoS considerations. - Converged Network QoS (Gulu) Bandwidth, delay, loss, ) - QoS (Gulu) QoS Policy, QoS Models ) Describe DiffServ QoS implementations. - Classification marking ? (Gulu) CoS, ToS, IP Precedence, DSCP, ) - Classification NBAR - (Gulu) FIFO, PQ, WRR, WRED, ) - Traffic policing traffic shaping ? (Gulu) traffic conditioners) - Control Plane Policing - WAN (Gulu) Payload/Header Compression, MLP with interleaving ) - QoS Pre-Classify Implement AutoQoS. - AutoQoS - SDM QoS - Troubleshoot AutoQoS (Gulu) . MQC). Implement WLAN security and management. - Cisco Client AP Wireless - Wireless (Gulu) . WLSE WCS) - WCS (Gulu) . login, add/review controller/AP status, security, import/review maps) - WLAN QoS

: : 02 3676 9638 : [email protected] : http://itbankhackers.com NETWORK SECURITY [ : , CISA, CISSP] TCP/IP & Network Routing The TCP/IP & OSI Network Models Operating Cisco Routers Static Route Cencepts and Configuration Intruduction to Dynamic Routing Protocols RIP v1 and v2 Dynamic Router Configuration OSPF & EIGRP Concepts and Configuration Firewall Secure Policy DNS/ DHCP/FTP/Telnet/ Spam Mail Virus Network Analyzer Network Traffic

Unix L4 IDS Firewall ESM Firewall Cache Server / : : 02 3676 9638 : [email protected] : http://itbankhackers.com SYSTEM & APP SECURITY [ , , / : , CISA, CISSP]

APP( ) TCP/IP , / ACL , RBAC , BSM / , / , ,p2p : : 02 3676 9638 : [email protected] : http://itbankhackers.com Forensic [ : , CISA, CISSP] 01 / 02 / , IDS 03 / 04 05 /Spoofing/Hijacking / 06 DOS DDOS/ 07 /

01 ? 02 03 04 05 01 02 03 04 05 06 01 02 03 04 01 02 03 04 Honeypot/Honeynet 01 02 03 04 / : : 02 3676 9638 : [email protected] : http://itbankhackers.com 2 [ : , CISA, CISSP] 1 - / , - - + - + - + + / /XSS / /

1 / / / DNS / 0- ' ' ! , , (Gulu) Crasher) P.T(Gulu) ) , , , M.I.T.M ' ' DoS/DDoS/DRDoS : : 02 3676 9638 : [email protected] : http://itbankhackers.com 2 [ : , CISA, CISSP] (Gulu) Social Engineering)

(Gulu) 5 ) SQL (Gulu) DB ) (Gulu) ) SH2 - - - - - - - - MS com) pile - url m) apping - 1, 2 - scanning directory listing + 1 - web application analysis + 1 - google dork advanced search - google dork(HALL) ) + 3 11 method cmd cmd . asp + 20 IIS - privilege escalation + 4 / - privilege escalation + 3 (Gulu) Pilfering) (Gulu) exploits) sqlquery.asp SQL + 18 stored procedures + 2 sql sql - . sql - GUI + 12 : : 02 3676 9638 : [email protected] : http://itbankhackers.com

2 [ : , CISA, CISSP] - include(Gulu) ) display - test.php browsing - include(Gulu) ) display - test.php source -include(Gulu) ) defense + 7 + 11 + 26 GET/POST URLs - URL IDS attack - IDS attack - Network IDSs IDS attack - Host-Based IDSs + 25 - + 2 Backdoor attack - + 4 Backdoor attack - par 5 SH3 - OS DDoS DRDoS SH4 - * (HALL) PT) . * 01~13 : : 02 3676 9638 : [email protected] : http://itbankhackers.com

Recently Viewed Presentations

  • Strategic Planning for YOUR Gator Club: Conception through ...

    Strategic Planning for YOUR Gator Club: Conception through ...

    Identify negative stereotypes for clues on how to improve (even positive stereotypes, these are still expectations people come in with). Understand your business from the consumer perspective in order to enhance their experience (no matter what the expectation or stereotype...
  • Abcdefghijklmnopqrstuvwxyz BCDEFGHIJKLMNOPQRSTUVWXYZ ...

    Abcdefghijklmnopqrstuvwxyz BCDEFGHIJKLMNOPQRSTUVWXYZ ...

    Assignments. Readings, weekly. From Social and Economic Networks, by Jackson. Research papers, one per week. Reaction papers, weekly. Class presentations. Two problem sets (?) Final projects, end of term
  • DPIs  A Reviewers Perspective Presented by: HSC Unrestricted

    DPIs A Reviewers Perspective Presented by: HSC Unrestricted

    Plant Funds/CCMS. 1.7. 2.6. 2.6. 6.9. 72 . ... Apply your training and knowledge by carefully creating and tracking DPIs for your department. Apply your training and knowledge by helping others in your Department. Get a show of hands for...
  • CHAPTER 7 STRATEGY AND TECHNOLOGY 2015 Cengage Learning.

    CHAPTER 7 STRATEGY AND TECHNOLOGY 2015 Cengage Learning.

    Revolutionize the structure of the industry. Dramatically alter the nature of competition. Require companies to adopt new strategies for survival. Occur in an industry when: Established technology is approaching or is at its natural limit. New disruptive technology has entered...
  • Who are you? 1 Jorge Mario Bergoglio A

    Who are you? 1 Jorge Mario Bergoglio A

    Jorge Mario Bergoglio is better known as Pope Francis, spiritual leader of the Roman Catholic Church. ... (Photo: Footballers Ellen White and Steph Houghton holding the FA WSL trophy) * Lemn Sissay A TV gardener? ... 14_Office Theme 15_Office Theme...
  • Learning area overview Australian Curriculum: Work Studies

    Learning area overview Australian Curriculum: Work Studies

    capabilities that support students to be successful learners ― literacy, numeracy, information and communication technology (ICT) capability, and critical and creative thinking. capabilities that develop ways of being, behaving and learning to live with others ― personal and social capability,...
  • AP Language and Composition - TARAFINNIGAN.COM

    AP Language and Composition - TARAFINNIGAN.COM

    Sonnets Italian/Petrarchan Sonnet Shakespearean/English Sonnet *All sonnets have 14 lines Italian/Petrarchan Sonnet: Consists of an octave (8 lines) and a sestet (6 lines) Rhyme scheme for the octave (also known as an octet) is abba abba Rhyme scheme for the...
  • METHODS IN BEHAVIORAL RESEARCH - ubalt.edu

    METHODS IN BEHAVIORAL RESEARCH - ubalt.edu

    Title: METHODS IN BEHAVIORAL RESEARCH Author: Kimberly Foreman Last modified by: mahalakshmi.r Created Date: 1/22/2006 4:31:47 AM Document presentation format