국가보안기술연구소세미나 - cfs6.tistory.com

국가보안기술연구소세미나 - cfs6.tistory.com

: : 02 3676-9638 : [email protected] : http://itbankhackers.com 1999.04 1999.09 2000.09 4500 2001.03 ) 2001.03 2001.03 J-test 2002.03 2002.06 2002.07 (HALL) HALL) 2002.11 2003.05 (HALL) job korea , incruit , scout ) 2003.09 2003.10 IT 2003.10 (HALL) www.keystudy.net) & 2003.11 , , , , 2003.11 2003.11 2003.11 2004.10 AutoDesk open 2004.11 Pearson VUE open 2004.12 (HALL) www.solarisschool.com) ) 2005.01 (HALL) www.hackersnews.org ) 2005.02 / 2005.02 8 / 2005.05 , 2006.01 A/S /6 22 8 A/S 2006.03 (HALL) p.t) 2006.04 . 2006.06 , 2006.07 8 h.e.r.e 2006.08 : : 02 3676 9638 : [email protected] : http://itbankhackers.com

- hackerslab Hall of Fam) e - hackerslab - (HALL) securenews) - jcc - ibiz - 2001 - Anonym) izer - - HN-Checkit - HNN-Trace - - - - - , , , - - C.E.O , [ ] - - - - - - - (HALL) ) GUI H/W DCRC MIPv6 , , : : 02 3676 9638 : [email protected] : http://itbankhackers.com Tommy Cho : 1992~1997 carnegie Mellon University(HALL) ) Master of science in Electronic com) m) erce 1997 8 ~1998 12

1999 7 ~ ) NSA(HALL) ) 2001 1 ~2002 1 2002 2 ~6 (HALL) SNRTEC) - (HALL) ) 2002 7 ~2003 6 KTIS (HALL) PC ,PKI ) - - - -INFOsec - - (HALL) ,c) < > - (HALL) =TEC_SEC) TEC_SEC) - (HALL) ) - - - (HALL) NSA) (HALL) ) WAN . LAN 016 - (HALL) ) (HALL) F/W) - IPS , (HALL) ) SK / KT - 1.25 BC BS7799 (HALL) ) - , LG BS7790 - , (HALL) ) . . . - , - , - , / - (HALL) ) : : 02 3676 9638 : [email protected] : http://itbankhackers.com

: (HALL) ) / (HALL) ) / SMS NMS / PM : (HALL) ) NMS , PM Sun training center (HALL) ) SMS/NMS IT Infra m) anagem) ent (HALL) Cisco Router 4000, Switch 2950, Term) inal SMS/NMS Server, NAT Server, IP , ) SMS (HALL) Windows NT, 2000 Server, Solaris Server, NMS Linux Server ) LG NMS Network LG.Philips LCD NMS / / NMS - SK Telecom) : BcN NMS - Sun training center : TCP/IP , ICND , CISSP , , NMS LG Telecom) NMS - : , - : ICND , CISSP , HP - - : - NGN CCNA, CCNP, CCIE, CSA, SCNA, MCSE, CISA, CISSP , , HP, : CCIE, CCNP, CCNA, MCSE, ITIL : : 02 3676 9638 : [email protected] : http://itbankhackers.com : (HALL) ) edhaus ZECA (HALL) ) edhaus AREO MESSAGER (HALL) ) DB IDS

(HALL) )LG : SDS Fasoo.com) - DRM (HALL) UNIX,NT) - UNIX Shell script , LG SI - SI System) Engineer/CDN - CDN , F/W IDS (HALL) ) : - ACEBANK Windows NT - WindowsNT, LINUX - WebMaster Windows NT, Linux - MSSQL+ASP - MySQL+PHP - C/C++, PC , , - ) / / MCSE / NET+/ PC - ITwill MFC - Windows2000+SQL : - MCSA(HALL) Windows2003), MCSE(HALL) Windows2000,Windows2003), MCDBA(HALL) SQL2000), , 2 : : 02 3676 9638 : [email protected] : http://itbankhackers.com - LCD 17 , 4 1 - Sun Enterprise 3500 3 - Sun Fire V20z Server 2 - Sun StorEdge A5200 Array 3 - 2 - Netscreen , - IDS (HALL) ) - (HALL) 2522 , 250x 20 ) - (HALL) 3550 , 2900 10 ) - (HALL) 2 ) - 1 - 1 : : 02 3676 9638 : [email protected]

: http://itbankhackers.com Phase Activity P2P

: : 02 3676 9638 : [email protected] : http://itbankhackers.com . (Gulu) Gulu) 6 ~ 12 (Gulu) 5 , 3 ) 15

(Gulu) , ) (Gulu) ) S/W P2P, (Gulu) ) : : 02 3676 9638 : [email protected] : http://itbankhackers.com (( )

) Windows Server I [ : MCP, MCSE, ] Windows Server 2003 Managing and Maintaining 1 VMWARE Windows Server 2003 Lab 2: User and Computer Accounts and Groups 3: 4: Print 5: 6: Server 7: Server 8: Data Storage 9: Disaster Recovery(Gulu) ) 10: Windows Server Update Services Software Windows Server 2003 Network Infrastructure 1: Client IP Address 2: Dynamic Host Configuration Protocol (Gulu) DHCP) IP Address 3: Client 4: Domain Name System (Gulu) DNS) Host Names 5: Windows Internet Name Service (Gulu) WINS) NetBIOS Names 6: IPSec Certificates(Gulu) ) Network Traffic 7: Routing and Remote Access Routing 8: Network Access , , : : 02 3676 9638 : [email protected] : http://itbankhackers.com (( ) ) Windows Server II [ : MCP, MCSE, ]

Windows Server 2003 Active Directory 1: Active Directory Infrastructure 2: Active Directory Forest Domain 3: Organizational Unit(Gulu) ) 4: User, Group, and Computer Accounts 5: Group Policy 6: Group Policy Software 7: Sites Manage Active Directory 8: Domain Controllers 9: Operations Masters(Gulu) FSMO) 10: Active Directory MCSE 2003 Track certification requirements Exam 70270: Installing, Configuring, and Administering Microsoft Windows XP Professional Exam 70290: Managing and Maintaining a Microsoft Windows Server 2003 Environment Exam 70291: Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure Exam 70293: Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure Exam 70294: Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure Exam 70297: Designing a Microsoft Windows Server 2003 Active Directory and Network Infrastructure Exam 70298: Designing Security for a Microsoft Windows Server 2003 Network : : 02 3676 9638 : [email protected] : http://itbankhackers.com Linux Server I [ : , LPIC] /etc/inittab,/etc/fstab /etc/lilo.conf /etc/rc.d vi /etc/passwd /etc/group /root/.bash_profile useradd,groupadd fdisk, mke2fs, mkfs, mkdosfs fsck, e2fsck mkbootdisk /etc/lilo.conf Network Network Card ifconfig, route /etc/modules.conf,resolv.conf /etc/sysconfig/network 10.

ifcfg-eth0 Telnet SSL+SSH VNC NFS ProFTPD SAMBA IPCHANINS&IPTABLE Proxy Server DHCP Server Shell Scripts Bash Shell , if~fi, while~done, case~esac Shell Disk Backup [at,cron,rsync...] DNS Server APM Server DNS APM : : 02 3676 9638 : [email protected] : http://itbankhackers.com Linux Server II [ : , LPIC] Trouble Shooting PXE /PXE /DHCP / HTTP, FTP, NFS , , , , , , , DAT , DAS(Gulu) Direct Attched Storage), SAN(Gulu) Storage Area Network) , , , syslog/etc/syslog.conf , , , BIOS , , , , TCP xinetd Portmap/NIS/NFS/Apache HTTP/FTP/Sendmail Netfilter IPTables, IPTables , iptables FORWARD NAT ,DMZ , IP , , IDS , IDS , , , , :

: 02 3676 9638 : [email protected] : http://itbankhackers.com UNIX Solaris Server [ : CSA, SCNA] Solaris , , Korn , , , , , , PROM(Gulu) Programmable Read-Only Memory) NVRAM(Gulu) Non-Volatile Random Access Memory) Solaris Management Console RBAC(Gulu) Role Based Access Control) JumpStart (Gulu) sub-net mask) DHCP , DNS NTP IPv6 IPv4 IPv6

: : 02 3676 9638 : [email protected] : http://itbankhackers.com CISCO CCNA Intro #642-801[ - Introduction to Computer Networking Concepts - Physical Layer Cabling and Device - Data Link Layer Fundamentals : Ethernet LANs - The TCP/IP OSI Networking Models - Fundamentals of IP - IP Addressing and Subnetting - [LAB] IP Subnetting - Advanced TCP/IP Topics [ VLSM & CIDR ] - [LAB] IP - Fundamentals of TCP and UDP - - [LAB] ICMP, TCP, UDP - Internet Protocol v6 IP - IPv6 - [LAB] IPv6 Protocol - Router Interface Connection - Operating Cisco Routers - Basic Router Configuration and Operation - Cisco Router IOS Mode - Cisco Router IOS Basic Command - Static Route Concepts and configuration - Default Routing Stob Network - RIP v1 and v2 Dynamic Router Configuration : CCNA] - IGRP & EIGRP Operation & Configuration - OSPF Concepts & Configuration - IP Access Control List Security - Standard Access-list & Extended Access-list - Public IP Address & Private IP Address - Routing & NAT - Cisco Router NAT - Operating Cisco LAN Switches - Cisco LAN Switching Basics - Virtual LANs and Trunking - Configuring Cisco 2950 LAN Switches - Cisco - CSVM - Spanning Tree Protocol - Virtual LANs and Trunking - VTP (Gulu) Virtual Trunk Protocol) - Fundamentals of WAN - Remote Access Technologies

- Point-to-Point Leased Line Implementation - ISDN Dial-on-Demand Routing - Router Simulator ISDN - Frame Relay - Frame Relay Switch Router : : 02 3676 9638 : [email protected] : http://itbankhackers.com CISCO CCNP BSCI & BCMSN [ : CCNP] Building Scalable Cisco Internetworks (BSCI) Implement EIGRP operations. - EIGRP (Gulu) DUAL) - EIGRP Routing (Gulu) Stub Routing, Authentication, ) - EIGRP Routing Implement multiarea OSPF operations. - Multiarea OSPF - Multiple OSPF Routing (Gulu) Stub, NSSA, Authentication, ) - Multiarea OSPF Routing Describe integrated IS-IS. - Integrated IS-IS - Integrated IS-IS Implement Cisco IOS routing features. - IGP IP Routing Redistribution (Gulu) Route-maps, default routes, ) - Route Filtering (Gulu) distribute-lists passive interfaces) - DHCP (Gulu) Server, Client, IP Helper address, ) Implement BGP for enterprise ISP connectivity - BGP - Non-transit AS BGP - BGP Path Selection (Gulu) Local Preference, AS Path, Weight MED ) Implement multicast forwarding. - IP Multicast (Gulu) Layer-3 to Layer-2 mapping, IGMP, .). - IP Multicast routing (Gulu) PIM Sparse-Dense Mode) Implement IPv6. - IPv6 Addressing - IPv4 IPv6 - IPv6 Addressing OSPF Routing Building Converged Cisco Multilayer Switched Networks (BCMSN)Implement VLANs. Hierarchical network VLAN - VLAN (Gulu) Native, Default, Static Access) - VLAN Trunking

- VTP - VLAN Hierarchical network STP(Spanning Tree Protocols) - STP (Gulu) RSTP, PVRST, MISTP) - RSTP(Gulu) RVRST) MISTP - STP (Gulu) BPDU Guard, BPDU Filtering, Root Guard) - UDLD Loop Guard - STP - PAgP LACP Link Aggregation Implement Inter-VLAN routing. - Inter-VLAN Routing (Gulu) SVI Routed ports) - CEF - InterVLAN Routing Implement gateway redundancy technologies. - Gateway Redundancy Protocol (Gulu) HSRP, VRRP, GLBP) - HSRP, VRRP, GLBP - High Availability Describe and configure wireless client access. - WLAN Topology - Network Unification Mobility Flatform Client (Gulu) CCX, LWAPP) - Wireless Client (Gulu) ADU) Switched Network Security - Layer 2 Network (Gulu) MAC Flooding, Rogue Devices, VLAN Hopping, DHCP Spoofing, .) - Port Security, 802.1x, VACLs, Private VLANs, DHCP Snooping, ADI - Catalyst Switch (Gulu) IOS-based) security (Gulu) Port Security, 802.1x, VACLs, Private VLANs, DHCP Snooping, ADI) Configure support for voice. - Campus Network Voice - Voice VLAN Trust Boundaries - Basic IP phone (Gulu) Voice VLAN, Trust CoS , Voice AutoQoS) : : 02 3676 9638 : [email protected] : http://itbankhackers.com CISCO CCNP ISCW & ONT [ : CCNP] Implementing Secure Converged Wide Area Networks (ISCW) Implement basic teleworker services. - Cable (Gulu) HFC) - xDSL ADSL (Gulu) i.e., PPPoE or PPPoA). - Teleworker Implement Frame-Mode MPLS. - Frame-Mode MPLS (Gulu) e.g.. Packet-base MPLS VPNs) - Frame-Mode MPLS Implement a site-to-site IPSec VPN

- IPSec VPN GRE Tunnel - SDM Site-to-Site IPSec VPN/GRE Tunnel (Gulu) Preshared key) - IPSec/GRE Tunnel (Gulu) IOS CLI Mode) - VPN Backup Interface - SDM Cisco Easy VPN Solution Describe network security strategies. - Network (Gulu) Reconnaissance, Access, and Denial of Service ..) - Worm, Virus Trojan Horse - Application-layer (Gulu) Management Protocol) Implement Cisco Device Hardening - Auto Secure/One-Step Lockdown (Gulu) CLI and SDM) - Cisco Router AAA - ACL - IOS (Gulu) SSH, SNMP, SYSLOG, NTP, Role-Base CLI ) Implement Cisco IOS firewall. - Cisco IOS Firewall (Gulu) Stateful Firewall, CBAC ) - SDM Cisco IOS Firewall - Cisco IOS Firewall (Gulu) IOS CLI, SDM Monitor) Describe and configure Cisco IOS IPS. - IDS IPS (Gulu) IDS/IPS signatures, IPS Alarms ) - SDM Cisco IOS IPS Optimizing Converged Cisco Networks (ONT) Describe Cisco VoIP implementations. - VoIP Network (Gulu) packetization, bandwidth considerations, CAC, ) - Enterprise Network Voice (Gulu) Gatekeepers, Gateways, IP PBX ) Describe QoS considerations. - Converged Network QoS (Gulu) Bandwidth, delay, loss, ) - QoS (Gulu) QoS Policy, QoS Models ) Describe DiffServ QoS implementations. - Classification marking ? (Gulu) CoS, ToS, IP Precedence, DSCP, ) - Classification NBAR - (Gulu) FIFO, PQ, WRR, WRED, ) - Traffic policing traffic shaping ? (Gulu) traffic conditioners) - Control Plane Policing - WAN (Gulu) Payload/Header Compression, MLP with interleaving ) - QoS Pre-Classify Implement AutoQoS. - AutoQoS - SDM QoS - Troubleshoot AutoQoS (Gulu) . MQC). Implement WLAN security and management. - Cisco Client AP Wireless - Wireless (Gulu) . WLSE WCS) - WCS (Gulu) . login, add/review controller/AP status, security, import/review maps) - WLAN QoS

: : 02 3676 9638 : [email protected] : http://itbankhackers.com NETWORK SECURITY [ : , CISA, CISSP] TCP/IP & Network Routing The TCP/IP & OSI Network Models Operating Cisco Routers Static Route Cencepts and Configuration Intruduction to Dynamic Routing Protocols RIP v1 and v2 Dynamic Router Configuration OSPF & EIGRP Concepts and Configuration Firewall Secure Policy DNS/ DHCP/FTP/Telnet/ Spam Mail Virus Network Analyzer Network Traffic

Unix L4 IDS Firewall ESM Firewall Cache Server / : : 02 3676 9638 : [email protected] : http://itbankhackers.com SYSTEM & APP SECURITY [ , , / : , CISA, CISSP]

APP( ) TCP/IP , / ACL , RBAC , BSM / , / , ,p2p : : 02 3676 9638 : [email protected] : http://itbankhackers.com Forensic [ : , CISA, CISSP] 01 / 02 / , IDS 03 / 04 05 /Spoofing/Hijacking / 06 DOS DDOS/ 07 /

01 ? 02 03 04 05 01 02 03 04 05 06 01 02 03 04 01 02 03 04 Honeypot/Honeynet 01 02 03 04 / : : 02 3676 9638 : [email protected] : http://itbankhackers.com 2 [ : , CISA, CISSP] 1 - / , - - + - + - + + / /XSS / /

1 / / / DNS / 0- ' ' ! , , (Gulu) Crasher) P.T(Gulu) ) , , , M.I.T.M ' ' DoS/DDoS/DRDoS : : 02 3676 9638 : [email protected] : http://itbankhackers.com 2 [ : , CISA, CISSP] (Gulu) Social Engineering)

(Gulu) 5 ) SQL (Gulu) DB ) (Gulu) ) SH2 - - - - - - - - MS com) pile - url m) apping - 1, 2 - scanning directory listing + 1 - web application analysis + 1 - google dork advanced search - google dork(HALL) ) + 3 11 method cmd cmd . asp + 20 IIS - privilege escalation + 4 / - privilege escalation + 3 (Gulu) Pilfering) (Gulu) exploits) sqlquery.asp SQL + 18 stored procedures + 2 sql sql - . sql - GUI + 12 : : 02 3676 9638 : [email protected] : http://itbankhackers.com

2 [ : , CISA, CISSP] - include(Gulu) ) display - test.php browsing - include(Gulu) ) display - test.php source -include(Gulu) ) defense + 7 + 11 + 26 GET/POST URLs - URL IDS attack - IDS attack - Network IDSs IDS attack - Host-Based IDSs + 25 - + 2 Backdoor attack - + 4 Backdoor attack - par 5 SH3 - OS DDoS DRDoS SH4 - * (HALL) PT) . * 01~13 : : 02 3676 9638 : [email protected] : http://itbankhackers.com

Recently Viewed Presentations

  • Linkage Analysis: An Application of the Likelihood Ratio Test

    Linkage Analysis: An Application of the Likelihood Ratio Test

    Linkage Analysis: An Application of the Likelihood Ratio Test by Debbie Goldwasser STAT600 November 8,2004 Topics for Discussion Mendel's Contribution to the Understanding the Distribution of Genetic Material in Genetic Crosses What is the Goal of Linkage Analysis?
  • www2.cortland.edu

    www2.cortland.edu

    Three Steps of Notice and Focus*. STEP 1: Repeatedly ask yourself, "What do you notice?" (Cite details, and generate an extended and unordered list. Slow down and look carefully.)
  • EE HomePage.com Powerpoint Symbol Collection Logic Elements boolean

    EE HomePage.com Powerpoint Symbol Collection Logic Elements boolean

    SR Latch R Q QB S SR Latch SR NAND Latch S R Action 0 0 Keep state 0 1 Q=0 QB=1 1 0 Q=1 QB=0 1 1 Q=0 QB=0 SB RB Action 0 0 Q=1 QB=1 0 1 Q=1...
  • 2000 Prentice Hall Objectives  Setting the Price Adapting

    2000 Prentice Hall Objectives Setting the Price Adapting

    Objectives Setting the Price Adapting the Price Initiating & Responding to Price Changes Price - Quality Strategies Pricing Methods Markup Pricing Target Return Pricing Perceived Value Pricing Value Pricing Going-Rate Pricing Sealed-Bid Pricing Some important pricing definitions Utility: The attribute...
  • Beyond Trauma, Towards Resiliency: Theory & Practice Presenters

    Beyond Trauma, Towards Resiliency: Theory & Practice Presenters

    Gain knowledge of the neurobiology of trauma and its impact for neuro-sequential programming. Learn how to implement an array of practices that yield outcomes of resilience for survivors. ... Clinical observations have also suggested that .
  • La diagnostica strumentale nel paziente disfagico

    La diagnostica strumentale nel paziente disfagico

    Valutazione dell'anatomia (ed eventuali patologie) delle VADS. Valutazione dei segni indiretti di disfagia (ristagno salivare entità e sede, atti deglutitori spontanei ) Seni piriformi. Vestibolo laringeo. Base linguale. epiglottide. aritenoidi. corde vocali. False corde. palato molle. Parete posteriore . del...
  • Clashes and Collisions - an introduction to your poetry cluster.

    Clashes and Collisions - an introduction to your poetry cluster.

    The Prelude - Stealing the boat . Objectives: To reap on the Romanticism movement and its place in the poem. To explore the poem The Prelude focusing on how Wordsworth has used poetic devices to portray the theme of power...
  • Chapter 35 Lesson 1 Providing first Aid

    Chapter 35 Lesson 1 Providing first Aid

    Administering first aid until the proper authority arrives on the scene can mean the difference of life and death Priorities in an Emergency The first five minutes of an emergency situation are the most critical It is important to remain...