Preface

• Who this book is for
• What this book covers
• Download the color images
• Conventions used
• Get in touch
• Share your thoughts

1. Part 1: Protecting the Network – Technologies, Protocols, Vulnerabilities, and Tools

2. Chapter 1: Data Centers and the Enterprise Network Architecture and its Components FREE CHAPTER

• Exploring networks and data flows
• The data center, core, and user networks
• Switching (L2) and routing (L3) topologies
• The network perimeter
• The data, control, and management planes
• SDN and NFV
• Cloud connectivity
• Type of attacks and where they are implemented
• Summary
• Questions

3. Chapter 2: Network Protocol Structures and Operations

• Data network protocols and data structures
• Layer 2 protocols – STP, VLANs, and security methods
• Layer 3 protocols – IP and ARP
• Routers and routing protocols
• Layer 4 protocols – UDP, TCP, and QUIC
• Encapsulation and tunneling
• Summary
• Questions

4. Chapter 3: Security Protocols and Their Implementation

• Security pillars – confidentiality, integrity, and availability
• Encryption basics and protocols
• Public key infrastructure and certificate authorities
• Authentication basics and protocols
• Authorization and access protocols
• Hash functions and message digests
• IPSec and key management protocols
• SSL/TLS and proxies
• Network security components – RADIUS/TACACS+, FWs, IDS/IPSs, NAC, and WAFs
• Summary
• Questions

5. Chapter 4: Using Network Security Tools, Scripts, and Code

• Commercial, open source, and Linux-based tools
• Information gathering and packet analysis tools
• Vulnerability analysis tools
• Exploitation tools
• Stress testing tools
• Network forensics tools
• Summary
• Questions

6. Chapter 5: Finding Protocol Vulnerabilities

• Black box, white box, and gray box testing
• Black box and fuzzing
• Common vulnerabilities
• Fuzzing tools
• Crash analysis – what to do when we find a bug
• Summary
• Questions

7. Part 2: Network, Network Devices, and Traffic Analysis-Based Attacks

8. Chapter 6: Finding Network-Based Attacks

• Planning a network-based attack
• Active and passive attacks
• Reconnaissance and information gathering
• Network-based DoS/DDoS attacks and flooding
• L2-based attacks
• L3- and ARP-based attacks
• Summary
• Questions

9. Chapter 7: Detecting Device-Based Attacks

• Network devices' structure and components
• Attacks on the management plane and how to defend against them
• Attacks on the control plane and how to defend against them
• Attacks on the data plane and how to defend against them
• Attacks on system resources
• Summary
• Questions

10. Chapter 8: Network Traffic Analysis and Eavesdropping

• Packet analysis tools – Wireshark, TCPdump, and others
• Python/Pyshark for deep network analysis
• Advanced packet dissection with LUA
• ARP spoofing, session hijacking, and data hijacking tools, scripts, and techniques
• Packet generation and replaying tools
• Summary
• Questions

11. Chapter 9: Using Behavior Analysis and Anomaly Detection

• Collection and monitoring methods
• Establishing a baseline
• Typical suspicious patterns
• Summary
• Questions

12. Part 3: Network Protocols – How to Attack and How to Protect

13. Chapter 10: Discovering LAN, IP, and TCP/UDP-Based Attacks

• Layer 2 attacks – how to generate them and how to protect against them
• ICMP-based attacks, ping scans, the ping of death, and L3 DDoS
• Layer 4 TCP and UDP attacks
• TCP sequence attacks and session hijacking attacks
• Summary
• Questions

14. Chapter 11: Implementing Wireless Network Security

• Wireless standards, protocols, and encryption standards
• Sniffing wireless networks
• Packet injection
• Discovering hidden SSIDs
• Compromising open authentication wireless networks
• WLAN encryptions and their corresponding flaws and attacks
• Network jamming – DOS/DDOS wireless network attacks
• Evil twin attack – honeypots
• Person-in-the-Middle (PITM) attacks
• Implementing a secure wireless architecture
• Summary
• Questions

15. Chapter 12: Attacking Routing Protocols

• IGP standard protocols – the behaviors RIP (brief), OSPF, and IS-IS
• Falsification, overclaiming, and disclaiming
• DDOS, mistreating, and attacks on the control plane
• Routing table poisoning and attacks on the management plane
• Traffic generation and attacks on the data plane
• How to configure your routers to protect
• BGP – protocol and operation
• BGP hijacking
• BGP mitigation
• Summary
• Questions

16. Chapter 13: DNS Security

• The DNS protocol, behavior, and data structure
• DNS attack discovery – tools and analysis
• Attacks on DNS resources – DNS flooding, NX records, and subdomains
• Attacks on a service – domain spoofing and hijacking, or cache poisoning
• Using DNS to bypass network controls – DNS tunneling
• DNS protection
• Summary
• Questions

17. Chapter 14: Securing Web and Email Services

• HTTP and HTTP2 protocol behavior, data structure, and analysis
• HTTPS protocol behavior, data structure, and analysis
• Web vulnerabilities and exploitation
• Email protocols and loopholes
• Countermeasures and defense
• Summary
• Questions

18. Chapter 15: Enterprise Applications Security – Databases and Filesystems

• Microsoft network protocols – NetBIOS, SMB, and LDAP operations, vulnerabilities, and exploitation
• Database network protocols – TDS and SQLNet operations
• Attacking SQL databases
• Countermeasures to protect network protocols and databases
• Summary
• Questions

19. Chapter 16: IP Telephony and Collaboration Services Security

• IP telephony – protocols and operations
• IP telephony penetration testing lab setup
• IP telephony penetration testing methodology
• IP telephony security and best practices
• Summary
• Questions

20. Assessments

• Chapter 2
• Chapter 3
• Chapter 4
• Chapter 5
• Chapter 6
• Chapter 7
• Chapter 8
• Chapter 9
• Chapter 10
• Chapter 11
• Chapter 12
• Chapter 13
• Chapter 14
• Chapter 15
• Chapter 16

21. Index

• Why subscribe?

22. Other Books You May Enjoy

• Packt is searching for authors like you
• Share your thoughts
• Download a Free PDF copy of this book