Overview
Learning Outcomes:
In this module, you will complete the following exercises:
- Exercise 1 – Endpoint Protection
- Exercise 2 - Boot Integrity
- Exercise 3 - Database
- Exercise 4 - Application Security
- Exercise 5 - Hardening
- Exercise 6 - Sandboxing
After completing this module, you should be able to:
- Use Windows Defender.
- Use an online antimalware scanner.
- Verify and adjust Windows Defender Firewall.
- Use hashing.
- Create an IIS blacklist.
- Using Nmap.
- Work with Windows Sandbox.
After completing this module, you should have further knowledge of:
- Antivirus and antimalware
- Endpoint Detection and Response (EDR)
- Host Intrusion Prevention System (HIPS) and Host Intrusion Detection System (HIDS)
- Data Loss Prevention (DLP)
- Next Generation Firewall (NGFW)
- Unified Extensible Firmware Interface (UEFI)
- Self-encrypting drive (SED)
- Measured Boot and Attestation
- Tokenization
- Salting
- Secure coding practices
- Secure cookies
- Hypertext Transfer Protocol (HTTP) headers.
- Static code analysis
Exam Objectives:
The following exam objective is covered in this lab:
3.2 Given a scenario, implement host or application security solutions.
- End point protection
- Boot integrity
- Database
- Application security
- Hardening
- Self-encrypting drive (SED)/full disk encryption (FDE)
- Hardware root of trust
- Trusted Platform Module (TPM)
- Sandboxing
Note: Our main focus is to cover the practical, hands-on aspects of the exam objectives. We recommend referring to course material or a search engine to research theoretical topics in more detail.