.

Network Security from whre to start

<<

hackers420

Newbie
Newbie

Posts: 3

Joined: Fri Sep 05, 2008 11:25 am

Post Thu Sep 11, 2008 8:48 am

Network Security from whre to start

hi
I want to start work on network security im confused from where to start. Wht is the requirements for it
plzz tell me the complete guide. Help would be appreciated
<<

jakx

Newbie
Newbie

Posts: 14

Joined: Mon Aug 11, 2008 9:20 am

Post Thu Sep 11, 2008 8:57 am

Re: Network Security from whre to start

Find out what you like to do. that is a very broad question. For a solid foundation I would learn how TCP/IP works and learn a few programming languages such as python and perl.
<<

diodime

Newbie
Newbie

Posts: 4

Joined: Sat Sep 13, 2008 9:51 am

Post Sat Sep 13, 2008 10:34 am

Re: Network Security from whre to start

Hi jakx,
why you suggest python and perl?
What characteristics make them better for network security?
Diodime
P.S. I never used python and perl but I'm not a network security man ;).
<<

KrisTeason

User avatar

Hero Member
Hero Member

Posts: 515

Joined: Sat Sep 08, 2007 7:48 pm

Location: /dev/null

Post Sat Sep 13, 2008 10:13 pm

Re: Network Security from whre to start

My guess as to why he said python and perl is because they're both commonly used scripting languages used by security professionals. Looking through files in BackTrack you'll notice that alot of tools on there are perl or python files.
eCPPT (Silver/Gold), eWPT, GSEC, GISP, GCIH, OSCP, OSWP
<<

unicityd

User avatar

Full Member
Full Member

Posts: 170

Joined: Wed Sep 03, 2008 5:33 pm

Post Sun Sep 14, 2008 1:05 am

Re: Network Security from whre to start

Perl and Python are available on most Unix systems and are very useful for writing tools and automating tasks.  One reason they are so popular is that they don't take a long time to learn (for the basics) and you can write simple tools with a minimal amount of code.

I did application security testing in my last job and I used Perl to write several network protocol fuzzers.  Using Perl, I was able to write the tools more quickly and with less code than I would have been able to in C/C++ or Java.
BS in IT, CISSP, MS in IS Management (in progress)
<<

hackers420

Newbie
Newbie

Posts: 3

Joined: Fri Sep 05, 2008 11:25 am

Post Mon Sep 15, 2008 12:46 am

Re: Network Security from whre to start

shouid i learn Perl or Python language.
Actually working on network security task is assigned to me. so im confused
<<

unicityd

User avatar

Full Member
Full Member

Posts: 170

Joined: Wed Sep 03, 2008 5:33 pm

Post Mon Sep 15, 2008 1:41 am

Re: Network Security from whre to start

Learning Perl and/or Python is important for your long term skill set.  If you've got security responsibilities right now, I'd skip the programming until you're up to speed in some other areas.

First, learn TCP/IP if you haven't already.  I recommend W. Richard Stevens TCP/IP Illustrated volume I.  Some of the stuff on Ethernet is dated, but the book is wonderful.

After that, explore the areas of network security that are most applicable to your responsibilities.  I'll suggest several books to start, but supplement your book reading with experimentation and online research.  A topic that is interesting to you may only get a half a page of coverage in a book, but there are probably more in depth articles available--use Google.

For IDS, install Snort on a test machine.  Read Network Intrusion Detection by Stephen Northcutt.  The book is several years old so you'll want to supplement it with the Snort documentation. 

For penetration testing and applied security concepts, read Hacking Exposed and play with some of the tools in a test environment (don't scan/probe/attack any system without permission.)  Other posters may recommend Counter Hack Reloaded instead; I've heard good things about it, but I haven't read it yet.  Either book should be fine.  Also, install Nmap and read the Nmap documentation.  Make sure you understand the different scanning modes and OS detection.

For perimeter security, read Inside Network Perimeter Security by Stephen Northcutt.  Try to get your hands on a router that you can practice configuring (if you don't have significant experience already).

For Windows-specific information, reading Hacking Exposed Windows.  Also, Google and read "A L0phtCrack Technical Rant".  Make sure you understand the difference between LM and NTLM and how to turn off LM hashes--Google is your friend.  Experiment with the tools in a test environment.

For Unix-specific information, I'm hard-pressed to make a recommendation.  I enjoyed Practical Unix and Internet Security by Gene Spafford, but my copy is from 1996.  There is a 2003 edition, but I have not looked at it. There are other Linux-specific books available that may be more helpful to you.

I apologize that some of the books I recommend are a little old; my recent reading has tended to focus rather deeply on narrow areas rather than on general material.

Best of luck to you.
BS in IT, CISSP, MS in IS Management (in progress)

Return to Tutorials

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software