Log In to My PreK-12 Platform
Principles of Computer Security: CompTIA Security+ and Beyond Lab Manual (Exam SY0-601), 1st Edition
ISBN10: 1260470113 | ISBN13: 9781260470116
By Jonathan Weissman
© 2022
Format Options:
Product
ISBN10: 1260470113 | ISBN13: 9781260470116
$60.00
* The estimated amount of time this product will be on the market is based on a number of factors, including faculty input to instructional design and the prior revision cycle and updates to academic research-which typically results in a revision cycle ranging from every two to four years for this product. Pricing subject to change at any time.
Instructor Information
Quick Actions (Only for Validated Instructor Accounts):
Practice the Skills Essential for a Successful Career in Cybersecurity!
This hands-on guide contains more than 90 labs that challenge you to solve real-world problems and help you to master key cybersecurity concepts. Clear, measurable lab results map to exam objectives, offering direct correlation to Principles of Computer Security: CompTIA Security+™ and Beyond, Sixth Edition (Exam SY0-601). For each lab, you will get a complete materials list, step-by-step instructions and scenarios that require you to think critically. Each chapter concludes with Lab Analysis questions and a Key Term quiz. Beyond helping you prepare for the challenging exam, this book teaches and reinforces the hands-on, real-world skills that employers are looking for.
In this lab manual, you’ll gain knowledge and hands-on experience with
- Linux systems administration and security
- Reconnaissance, social engineering, phishing
- Encryption, hashing
- OpenPGP, DNSSEC, TLS, SSH
- Hacking into systems, routers, and switches
- Routing and switching
- Port security, ACLs
- Password cracking
- Cracking WPA2, deauthentication attacks, intercepting wireless traffic
- Snort IDS
- Active Directory, file servers, GPOs
- Malware reverse engineering
- Port scanning
- Packet sniffing, packet crafting, packet spoofing
- SPF, DKIM, and DMARC
- Microsoft Azure, AWS
- SQL injection attacks
- Fileless malware with PowerShell
- Hacking with Metasploit and Armitage
- Computer forensics
- Shodan
- Google hacking
- Policies, ethics, and much more
Introduction
Additional Resources for Teachers
Chapter 1 Introduction and Security Trends
Lab Exercise 1.01: Staying Current with Industry
Lab Exercise 1.02: Cyber Threat Maps
Lab Exercise 1.03: Cybersecurity Survey
Lab Exercise 1.04: Building the Virtual Lab
Lab Analysis
Key Term Quiz
Chapter 2 General Security Concepts
Lab Exercise 2.01: Verizon DBIR
Lab Exercise 2.02: Linux File System Management
Lab Exercise 2.03: Linux Systems Administration
Lab Exercise 2.04: Linux System Security
Lab Analysis
Key Term Quiz
Chapter 3 Operational and Organizational Security
Lab Exercise 3.01: Policies
Lab Exercise 3.02: Training Documentation
Lab Exercise 3.03: Interoperability Agreements
Lab Analysis
Key Term Quiz
Chapter 4 The Role of People in Security
Lab Exercise 4.01: The Social-Engineer Toolkit
Lab Exercise 4.02: Phishing Tests
Lab Exercise 4.03: Reconnaissance Through Open-Source Intelligence
Lab Analysis
Key Term Quiz
Chapter 5 Cryptography
Lab Exercise 5.01: Symmetric Key Encryption
Lab Exercise 5.02: Asymmetric Key Encryption
Lab Exercise 5.03: Hashing
Lab Exercise 5.04: Diffie-Hellman Key Exchange
Lab Analysis
Key Term Quiz
Chapter 6 Applied Cryptography
Lab Exercise 6.01: Apple vs. FBI
Lab Exercise 6.02: Australia’s Assistance and Access Bill
Lab Exercise 6.03: To Serve Man
Lab Exercise 6.04: E-mail Cryptography
Lab Analysis
Key Term Quiz
Chapter 7 Public Key Infrastructure
Lab Exercise 7.01: DNSSEC for Security
Lab Exercise 7.02: DNSSEC for Exploiting
Lab Exercise 7.03: TLS in Action
Lab Analysis
Key Term Quiz
Chapter 8 Physical Security
Lab Exercise 8.01: Linux Password Recovery
Lab Exercise 8.02: Cisco Router Password Recovery
Lab Exercise 8.03: Cisco Switch Password Recovery
Lab Analysis
Key Term Quiz
Chapter 9 Network Fundamentals
Lab Exercise 9.01: Switch Configuration
Lab Exercise 9.02: Router Configuration
Lab Exercise 9.03: Passwords and SSH
Lab Analysis
Key Term Quiz
Chapter 10 Infrastructure Security
Lab Exercise 10.01: Port Security on Switches
Lab Exercise 10.02: Standard ACLs on Routers
Lab Exercise 10.03: Extended ACLs on Routers
Lab Analysis
Key Term Quiz
Chapter 11 Authentication and Remote Access
Lab Exercise 11.01: Dictionary Attacks on Linux Passwords with John the Ripper
Lab Exercise 11.02: Brute Force Attacks on Linux Passwords with crunch and John the Ripper
Lab Exercise 11.03: Dictionary Attacks and Brute Force Attacks on Windows Passwords with Mimikatz, crunch, and John the Ripper
Lab Exercise 11.04: Rainbow Table Attacks on Windows Passwords with ophcrack
Lab Analysis
Key Term Quiz
Chapter 12 Wireless Security and Mobile Devices
Lab Exercise 12.01: Wireless Network and Device Detection
Lab Exercise 12.02: Monitor Mode Sniffing
Lab Exercise 12.03: Cracking WPA2 Passwords and Deauthenticating Clients with Wifite
Lab Analysis
Key Term Quiz
Chapter 13 Intrusion Detection Systems and Network Security
Lab Exercise 13.01: Installing Ubuntu and Snort
Lab Exercise 13.02: Snort Sniffer Mode
Lab Exercise 13.03: Snort Packet Logger Mode
Lab Exercise 13.04: Snort Network Intrusion Detection System Mode
Lab Analysis
Key Term Quiz
Chapter 14 System Hardening and Baselines
Lab Exercise 14.01: Active Directory Domain Services and Domain Connectivity
Lab Exercise 14.02: Organizational Units and Groups
Lab Exercise 14.03: Users and Other Active Directory Objects
Lab Exercise 14.04: Permissions and Shares
Lab Exercise 14.05: Group Policy Objects
Lab Analysis
Key Term Quiz
Chapter 15 Types of Attacks and Malicious Software
Lab Exercise 15.01: Strings
Lab Exercise 15.02: UPX
Lab Exercise 15.03: PEview and Resource Hacker
Lab Exercise 15.04: VirusTotal
Lab Exercise 15.05: Regshot
Lab Exercise 15.06: Process Monitor
Lab Exercise 15.07: ApateDNS
Lab Analysis
Key Term Quiz
Chapter 16 Security Tools and Techniques
Lab Exercise 16.01: Port Scanning with Nmap
Lab Exercise 16.02: Sockets with netcat (nc) and ncat
Lab Exercise 16.03: Packet Crafting with hping3
Lab Exercise 16.04: Packet Crafting with Scapy
Lab Analysis
Key Term Quiz
Chapter 17 Web Components, E-mail, and Instant Messaging
Lab Exercise 17.01: E-mail Headers
Lab Exercise 17.02: SPF, DKIM, and DMARC
Lab Analysis
Key Term Quiz
Chapter 18 Cloud Computing
Lab Exercise 18.01: Microsoft Azure Training
Lab Exercise 18.02: Exploring Microsoft Azure
Lab Exercise 18.03: AWS Educate and AWS Training and Certification
Lab Exercise 18.04: Exploring AWS
Lab Analysis
Key Term Quiz
Chapter 19 Secure Software Development
Lab Exercise 19.01: Configuring WampServer and DVWA
Lab Exercise 19.02: SQL Injection
Lab Analysis
Key Term Quiz
Chapter 20 Risk Management
Lab Exercise 20.01: PowerShell Script Settings
Lab Exercise 20.02: PowerShell Exploitation
Lab Analysis
Key Term Quiz
Chapter 21 Business Continuity, Disaster Recovery, and Change Management
Lab Exercise 21.01: Business Continuity
Lab Exercise 21.02: Disaster Recovery
Lab Exercise 21.03: Change Management
Lab Analysis
Key Term Quiz
Chapter 22 Incident Response
Lab Exercise 22.01: Incident Response Companies and Stories
Lab Exercise 22.02: Metasploit Framework
Lab Exercise 22.03: Metasploit’s Meterpreter
Lab Exercise 22.04: Armitage
Lab Analysis
Key Term Quiz
Chapter 23 Computer Forensics
Lab Exercise 23.01: Windows Registry Forensics
Lab Exercise 23.02: Digital Evidence in RAM and on the Hard Drive
Lab Exercise 23.03: Steganography
Lab Exercise 23.04: Imaging, Recovering Deleted Files, File Signatures, and Analyzing Images
Lab Analysis
Key Term Quiz
Chapter 24 Legal Issues and Ethics
Lab Exercise 24.01: ACM Ethics
Lab Exercise 24.02: USENIX Ethics
Lab Exercise 24.03: Ethical Scenarios
Lab Exercise 24.04: Copyright
Lab Exercise 24.05: Creative Commons
Lab Exercise 24.06: FSF and GNU
Lab Analysis
Key Term Quiz
Chapter 25 Privacy
Lab Exercise 25.01: Shodan
Lab Exercise 25.02: Insecam
Lab Exercise 25.03: Google Hacking
Lab Analysis
Key Term Quiz
Index
Additional Resources for Teachers
Chapter 1 Introduction and Security Trends
Lab Exercise 1.01: Staying Current with Industry
Lab Exercise 1.02: Cyber Threat Maps
Lab Exercise 1.03: Cybersecurity Survey
Lab Exercise 1.04: Building the Virtual Lab
Lab Analysis
Key Term Quiz
Chapter 2 General Security Concepts
Lab Exercise 2.01: Verizon DBIR
Lab Exercise 2.02: Linux File System Management
Lab Exercise 2.03: Linux Systems Administration
Lab Exercise 2.04: Linux System Security
Lab Analysis
Key Term Quiz
Chapter 3 Operational and Organizational Security
Lab Exercise 3.01: Policies
Lab Exercise 3.02: Training Documentation
Lab Exercise 3.03: Interoperability Agreements
Lab Analysis
Key Term Quiz
Chapter 4 The Role of People in Security
Lab Exercise 4.01: The Social-Engineer Toolkit
Lab Exercise 4.02: Phishing Tests
Lab Exercise 4.03: Reconnaissance Through Open-Source Intelligence
Lab Analysis
Key Term Quiz
Chapter 5 Cryptography
Lab Exercise 5.01: Symmetric Key Encryption
Lab Exercise 5.02: Asymmetric Key Encryption
Lab Exercise 5.03: Hashing
Lab Exercise 5.04: Diffie-Hellman Key Exchange
Lab Analysis
Key Term Quiz
Chapter 6 Applied Cryptography
Lab Exercise 6.01: Apple vs. FBI
Lab Exercise 6.02: Australia’s Assistance and Access Bill
Lab Exercise 6.03: To Serve Man
Lab Exercise 6.04: E-mail Cryptography
Lab Analysis
Key Term Quiz
Chapter 7 Public Key Infrastructure
Lab Exercise 7.01: DNSSEC for Security
Lab Exercise 7.02: DNSSEC for Exploiting
Lab Exercise 7.03: TLS in Action
Lab Analysis
Key Term Quiz
Chapter 8 Physical Security
Lab Exercise 8.01: Linux Password Recovery
Lab Exercise 8.02: Cisco Router Password Recovery
Lab Exercise 8.03: Cisco Switch Password Recovery
Lab Analysis
Key Term Quiz
Chapter 9 Network Fundamentals
Lab Exercise 9.01: Switch Configuration
Lab Exercise 9.02: Router Configuration
Lab Exercise 9.03: Passwords and SSH
Lab Analysis
Key Term Quiz
Chapter 10 Infrastructure Security
Lab Exercise 10.01: Port Security on Switches
Lab Exercise 10.02: Standard ACLs on Routers
Lab Exercise 10.03: Extended ACLs on Routers
Lab Analysis
Key Term Quiz
Chapter 11 Authentication and Remote Access
Lab Exercise 11.01: Dictionary Attacks on Linux Passwords with John the Ripper
Lab Exercise 11.02: Brute Force Attacks on Linux Passwords with crunch and John the Ripper
Lab Exercise 11.03: Dictionary Attacks and Brute Force Attacks on Windows Passwords with Mimikatz, crunch, and John the Ripper
Lab Exercise 11.04: Rainbow Table Attacks on Windows Passwords with ophcrack
Lab Analysis
Key Term Quiz
Chapter 12 Wireless Security and Mobile Devices
Lab Exercise 12.01: Wireless Network and Device Detection
Lab Exercise 12.02: Monitor Mode Sniffing
Lab Exercise 12.03: Cracking WPA2 Passwords and Deauthenticating Clients with Wifite
Lab Analysis
Key Term Quiz
Chapter 13 Intrusion Detection Systems and Network Security
Lab Exercise 13.01: Installing Ubuntu and Snort
Lab Exercise 13.02: Snort Sniffer Mode
Lab Exercise 13.03: Snort Packet Logger Mode
Lab Exercise 13.04: Snort Network Intrusion Detection System Mode
Lab Analysis
Key Term Quiz
Chapter 14 System Hardening and Baselines
Lab Exercise 14.01: Active Directory Domain Services and Domain Connectivity
Lab Exercise 14.02: Organizational Units and Groups
Lab Exercise 14.03: Users and Other Active Directory Objects
Lab Exercise 14.04: Permissions and Shares
Lab Exercise 14.05: Group Policy Objects
Lab Analysis
Key Term Quiz
Chapter 15 Types of Attacks and Malicious Software
Lab Exercise 15.01: Strings
Lab Exercise 15.02: UPX
Lab Exercise 15.03: PEview and Resource Hacker
Lab Exercise 15.04: VirusTotal
Lab Exercise 15.05: Regshot
Lab Exercise 15.06: Process Monitor
Lab Exercise 15.07: ApateDNS
Lab Analysis
Key Term Quiz
Chapter 16 Security Tools and Techniques
Lab Exercise 16.01: Port Scanning with Nmap
Lab Exercise 16.02: Sockets with netcat (nc) and ncat
Lab Exercise 16.03: Packet Crafting with hping3
Lab Exercise 16.04: Packet Crafting with Scapy
Lab Analysis
Key Term Quiz
Chapter 17 Web Components, E-mail, and Instant Messaging
Lab Exercise 17.01: E-mail Headers
Lab Exercise 17.02: SPF, DKIM, and DMARC
Lab Analysis
Key Term Quiz
Chapter 18 Cloud Computing
Lab Exercise 18.01: Microsoft Azure Training
Lab Exercise 18.02: Exploring Microsoft Azure
Lab Exercise 18.03: AWS Educate and AWS Training and Certification
Lab Exercise 18.04: Exploring AWS
Lab Analysis
Key Term Quiz
Chapter 19 Secure Software Development
Lab Exercise 19.01: Configuring WampServer and DVWA
Lab Exercise 19.02: SQL Injection
Lab Analysis
Key Term Quiz
Chapter 20 Risk Management
Lab Exercise 20.01: PowerShell Script Settings
Lab Exercise 20.02: PowerShell Exploitation
Lab Analysis
Key Term Quiz
Chapter 21 Business Continuity, Disaster Recovery, and Change Management
Lab Exercise 21.01: Business Continuity
Lab Exercise 21.02: Disaster Recovery
Lab Exercise 21.03: Change Management
Lab Analysis
Key Term Quiz
Chapter 22 Incident Response
Lab Exercise 22.01: Incident Response Companies and Stories
Lab Exercise 22.02: Metasploit Framework
Lab Exercise 22.03: Metasploit’s Meterpreter
Lab Exercise 22.04: Armitage
Lab Analysis
Key Term Quiz
Chapter 23 Computer Forensics
Lab Exercise 23.01: Windows Registry Forensics
Lab Exercise 23.02: Digital Evidence in RAM and on the Hard Drive
Lab Exercise 23.03: Steganography
Lab Exercise 23.04: Imaging, Recovering Deleted Files, File Signatures, and Analyzing Images
Lab Analysis
Key Term Quiz
Chapter 24 Legal Issues and Ethics
Lab Exercise 24.01: ACM Ethics
Lab Exercise 24.02: USENIX Ethics
Lab Exercise 24.03: Ethical Scenarios
Lab Exercise 24.04: Copyright
Lab Exercise 24.05: Creative Commons
Lab Exercise 24.06: FSF and GNU
Lab Analysis
Key Term Quiz
Chapter 25 Privacy
Lab Exercise 25.01: Shodan
Lab Exercise 25.02: Insecam
Lab Exercise 25.03: Google Hacking
Lab Analysis
Key Term Quiz
Index
About the Author
Jonathan Weissman
Jonathan S. Weissman, CompTIA A+, CompTIA Network+, CompTIA Security+, CompTIA Server+, CompTIA Linux+, CCNP, CCNA, CEH, CHFI, is a senior lecturer at Rochester Institute of Technology as well as an associate professor and Networking and Cybersecurity program coordinator at Finger Lakes Community College. He is the recipient of ten teaching awards and honors. He is the co-author of Mike Meyers’ CompTIA Network+ Guide to Managing and Troubleshooting Networks Lab Manual, Fifth Edition and Principles of Computer Security: CompTIA Security+ and Beyond Lab Manual (Exam SY0-601), and is the technical editor for many other books. Weissman regularly appears on TV news and talk radio, and in articles, as a networking and cybersecurity expert. Additionally, he presents at conferences and in webinars, runs workshops, and appears in podcasts. He has a master’s degree in Computer Science from Brooklyn College and holds 44 industry certifications. @CSCPROF on Twitter.
Need support? We're here to help - Get real-world support and resources every step of the way.
