Hacking network infrastructure

Routing protocols form the core functions of all IP networks. Their proper operation ensures the correct and uninterrupted traffic flow. The course consists of alternating hands-on and lecture sessions. This course is valid to all those who are interested to learn to protect network infrastructure.

All participants must have a working knowledge and hands-on experience on BGP, OSPF, IPv6 and multicast. This course is not an introduction/basic level course to any of the aforementioned technologies.

The practise environment is based on Cisco IOS and Kali Linux and therefore fluent Cisco IOS -experience and basic Linux skills are highly recommended.

Lectures in Finnish, materials in English

Introduction to hacking
• Hacking in general
• Goals of hacking the infrastructure
• Hacking challenges
• Infrastructure protection mechanisms
• Cracking MD5

Hacking BGP
• Purpose of BGP
• BGP connectivity options
• Routing policy tools in BGP
• BGP modes of operatios• BGP vulnerabilities
• Attack vectors and tools
• BGP defences: Router hardening, Authentication, BGP TTL check, route filtering, Route Flap Dampening
• Exercises: Traffic attractors, directors, prefix-lists

Hacking OSPF
• Link-state routing
• OSPF basics
• OSPF strengths and vulnerabilities
• Attack vectors and tools
• OSPF defences: Router hardening, authentication, using IPSec in OSPFv3
• Exercise: OSPF neighborship formation, LSA-advertising Hacking IPv6
• IPv6 basics
• IPv6 key issues: addressing and LAN operations
• ICMPv6 weakness analysis
• ICMPv6 attack vectors and tools
• ICMPv6 defences
• Exercises: THC-toolkit in Kali/Linux

Multicast: technology and security issues
• Multicast basics, functional elements
• Multicast in LAN, IGMP and MLD
• Multicast in routed environments, PIM-SM, PIM-SSM'
• Multicast security
• Optional exercises

Näytä lisää Sulje
Mika Ilvesmäki
Mika Ilvesmäki kouluttava konsultti Tämä sähköpostiosoite on suojattu spamboteilta. Tarvitset JavaScript-tuen nähdäksesi sen.

Käytännön ja teorian yhteen sitova kouluttaja. Ydinosaaminen: L2/L3 –tekniikat ja Cisco- ympäristöt.
Opiskelut: TkT