Material educativo de la mano de la Agencia Europea de Redes y Seguridad de la Información (ENISA)

January 2, 2014
tuxotron
Clases, Seguridad, Hacking

ENISA (European Network and Information Security Agency), desde el 2008 ha ido publicando una serie de ejercicios prácticos para ayudar a aquellos que quieran adquirir los conocimientos de un buen CERT (Computer Emergency Respond Team).

El material está dividido en 29 ejercicios que se corresponden a distintas fases de la respuesta a una incidencia. El material está compuesto por dos documentos: Handbook (documento para el profesor) y el Toolset (documento para el alumno). Además de estos, dispones de varias máquinas virtuales en las que tienes el sistema ya preparado para llevar a cabo las prácticas.

A continuación copio y pego el índice de la web original:

No.	Exercise title	Handbook	Toolset	Virtual Image	Other material supporting the exercise
1	Triage & basic incident handling	Download	Download	Download	Online version of Exercise 1
2	Incident handling procedure testing	Download	Download		Online version of Exercise 2
3	Recruitment of CERT staff	Download	Download		Online version of Exercise 3
4	Developing CERT infrastructure	Download	Download		Online version of Exercise 4
5	Vulnerability handling	Download	Download		Online version of Exercise 5
6	Writing security advisories	Download	Download		Online version of Exercise 6
7	Network forensics	Download	Download		Online version of Exercise 7
8	Establishing external contacts	Download	Download		Online version of Exercise 8
9	Large scale incident handling	Download	Download		Online version of Exercise 9
10	Automation in incident handling	Download	Download		Online version of Exercise 10
11	Incident handling in live role playing	Download	Download		Online version of Exercise 11
12	Cooperation with Law Enforcement agencies	Download	Download		Online version of Exercise 12
13	Incident handling during an attack on Critical Information Infrastructure	Download	Download
14	Proactive incident detection	Download	Download
15	Cost of ICT incident	Download	Download		Download MS Excel workbook, Download workbook in open format
16	Mobile threats incident handling	Download	Download
17	Incident handling in the cloud	Download	Download
18	Advanced Persistent Threat incident handling	Download	Download
19	CERT participation in incident handling related to the Article 13a obligations	Download	Download		Download data_ddos.pcap
20	CERT participation in incident handling related to the Article 4 obligations	Download	Download
21	Assessing and Testing Communication Channels with CERTs and all their stakeholders	Download	Download
22	Social networks used as an attack vector for targeted attacks	Download	Download
23	Honeypots	Download	Download	Download
24	Digital forensics	Download	Download	Download
25	Identification and handling of electronic evidence	Download	Download
26	Identifying and handling cyber-crime traces	Download	Download
27	Presenting, correlating and filtering various feeds	Download	Download	Download Download
28	Incident handling and cooperation during phishing campaign	Download	Download
29	Cooperation in the Area of Cybercrime	Download	Download

Si lo prefieres, desde este enlace (PDF) te puedes descargar los documentos del profesor (handbook) y desde aquí (PDF) los del alumno (toolset) en español para los 12 primeros ejercicios.

Material educativo de la mano de la Agencia Europea de Redes y Seguridad de la Información (ENISA)

Libros

Buscar

Entradas Recientes

Categorías

Enlaces