Threats, Attacks, and Vulnerabilities for CompTIA Security+

By Christopher Rees
IT Security is one of the fastest growing areas in IT, and qualified, well-trained IT security and cyber-security professionals are in high-demand. This course covers domain one of the CompTIA Security+ certification exam.
Start FREE course
Course info
Rating
(148)
Level
Beginner
Updated
Oct 24, 2017
Duration
3h 22m
Table of contents
Analyzing Indicators of Compromise & Determining Malware Types
Module Intro 3m Indicators of Compromise (IOC) 2m Viruses 3m Cryptomalware and Ransomware 3m Trojans 4m Rootkits 1m Keyloggers 1m Adware 3m Spyware 2m Botnets 3m Logic Bomb 1m Backdoors 2m Module Review 1m
Comparing & Contrasting Attacks Types
Module Intro 1m Social Engineering 2m Social Engineering Attacks 3m Vishing 1m Tailgaiting 2m Impersonation 1m Dumpster Diving 1m Shoulder Surfing 3m Hoaxes 2m Watering Hole Attack 2m Authority and Intimidation 2m Consensus and Social Proof 1m Familiarity and Liking 1m Trust 1m Scarcity and Urgency 1m DDoS 2m Replay Attacks 1m Man in the Middle Attack 1m Buffer Overflow Attack 1m SQL Injection Attack 1m LDAP Injection Attack 1m XML Injection Attack 1m Cross Site Scription (XSS) and Cross Site Request Forgery (XSRF) 5m Privilege Escalation 2m ARP Poisoning 1m Smurf Attack (Amplification) 3m DNS Poisoning 1m Zero Day 2m Pass the Hash 2m Clickjacking 2m Session Hijacking 1m Typo Squatting and URL Hijacking 2m Shimming 1m Refactoring 1m IP/MAC Spoofing 1m Replay Attacks (Wireless) 2m IV Attack 3m Rogue Access Points 3m WPS Attacks 3m Bluejacking and Bluesnarfing 3m NFC Attacks 2m Radio Frequency Identification (RFID) 1m Dissociation 1m Password, Brute Force, and Dictionary Attacks 3m Birthday Attack 3m Rainbow Tables 2m Collision Attack 1m Downgrade Attack 1m Known Plain Text / Ciphertext 1m Weak Implementations and Module Review 2m
Exploring Threat Actor Types and Attributes
Module Review and Threat Actor Types 2m Script Kiddies 1m Hacktivists 1m Organized Crime 1m Nation States/APT 1m Insiders 1m Competitors 1m Threat Actor Attributes 1m Use of Open Source Intelligence (OSINT) 3m Module Review 1m
Defining the Penetration Testing Process
Module Overview 1m Penetration Testing 1m Steps of a Penetration Test 2m Types of Reconnaissance Including Active and Passive 3m Pivoting 2m Initial Exploitation 2m Persistence 1m Escalation of Privilege 1m Methods of Privilege Escalation 2m Black Box, White Box, and Grey Box Testing 1m Pen Testing vs. Vulnerability Scanning 2m Red vs. Blue Teams 2m Module Review 1m
Defining the Vulnerability Scanning Process
Module Overview 1m Vulnerability Scanning 1m Passively Test Security Controls 1m Identify Vulnerability and Lack of Security Controls 2m Identify Common Misconfigurations 2m Intrusive vs. Non-intrusive 1m Credentialed vs. Non-credentialed 2m False Positive 1m Things to Remember 2m Module Review 1m
Impacts Associated with Types of Vulnerabilities
Module Overview 1m Impact Assessment 1m Race Conditions 2m Time of Check and Time of Check to Time of Use 1m Support/Lifecycle Vulnerabilities 4m Impact of Vulnerabilities 2m Secure Coding Concepts 4m Misconfiguration/Weak Configuration 1m Default Configuration 1m Resource Exhaustion 2m Untrained Users 2m Shared Accounts (Improperly Configured) 1m Vulnerable Business Processes 2m Weak Cipher Suites and Implementations 2m Memory Leaks 2m Integer Overflow 1m Pointer Dereference 1m DLL Injection 2m System Sprawl/Undocumented Assets 1m Architecture/Design Weaknesses 2m New Threats/Zero Days 2m Improper Certificate and Key Management 1m Module Review 1m
Description
Course info
Rating
(148)
Level
Beginner
Updated
Oct 24, 2017
Duration
3h 22m
Description

This course covers domain one of the CompTIA Security+ certification exam. In this course, Threats, Attacks, and Vulnerabilities for CompTIA Security+, you'll learn about the various types of threats and attacks every company faces. First, you'll learn the ins and outs of Malware, ransom-ware, viruses, Trojans, rootkits, social engineering attacks, application vulnerabilities, and DDoS attacks. Next, you'll also learn the characteristics of the various types of threat actors, the skills they have and the tools they use. Finally, you'll learn about penetration testing and vulnerability scanning and how they're used to help tighten security and mitigate potential breaches. By the end of this course, you'll have a solid understanding of the various threats you're likely to face and what tools are available to mitigate these threats.

About the author
Christopher Rees
About the author

Chris is a lifelong learner and professional information technologist, trainer and IT Manager. Married with 3 children, Chris is interested in martial arts, working out, spending time with family and friends and being creative whenever possible.

More from the author
Security Management: A Case Study
Advanced
1h 7m
Jun 2, 2020
Law, Ethics, and Security Compliance Management
Intermediate
2h 8m
Mar 18, 2020
Security Leadership through Effective Communication
Advanced
1h 14m
Dec 24, 2019
More courses by Christopher Rees

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT