Juan Miguel Cano

October 9, 2023

Ops-Reading-Notes

This is my ops reading notes

Ops 102: Intro to Computer Operations

• Case Study: China’s Spy Chip
• Build a Computer
• What is the BIOS
• Installing Ubuntu Linux
• Installing Virtualbox with Linux Terminal
• SOHO Networking
• Network Connectivity
• Virtualization of Windows OS
• Command Line Interface

Ops 201: Foundations of Computer Operations

• Metocognative Map
• Dev Tools
• Issue tracking system
• Troubleshooting Techniques
• Windows Command Line Tools
• Windows Security Center
• OS Upgrade and Remote Access
• System Log analysis,Registry,ControlPanel
• Workstation Deployment SOP
• Imaging,Backup, and Recovery
• Data Restoration, Startup Repair, and Secure Disposal
• Virtualizing a Router with pfSense
• Importance of Virtualization in the Amazon EC2 Cloud
• Malware Remediation Tools and Techniques

November 27, 2023

Ops 301: Networking and Systems Administration

• Readings: Network Traffic Analysis with Wireshark
• Network scanning with NMAP
• Network Segmentation
• Routing
• VPN Tunnel
• Network Address Translation
• Web Server Deployment
• RADIUS Authentication
• Command Line Interface
• VPC
• Windows Server
• Domain Controller
• Active Directory
• Group Policy

January 08, 2024

Ops 401: Cybersecurity Engineering

Module 1 Governance, Risk, and Compliance (GRC)

• Growth Mindset
• Strategic Policy & Development
• Cloud Security Principles and Framework
• Cyber Risk Analysis
• Systems Hardening with CIS Standards
• Encryption

Module 2 Data Security

• Data File Encryption and Hashing
• Protecting Data at Rest
• Data Loss Prevention and Data Classification
• Public Key & Infrastructure
• Advanced Event Logging

Module 3 Security Operations

• Foundational SIEM Operations
• Log Analysis with Splunk
• Reconstructing a Cloud Attack Using Log Data
• Intrusion Detection & Prevention Systems IDS/IPS
• Brute Force Attacks

Module 4 Cloud Security

• Cloud Identity and Access Management (IAM) with AWS
• Cloud Network Security
• Cloud Logging and Monitoring
• Cloud Detective Controls, Guard Duty

Module 5 Midterm Project

Module 6 Threat Modeling and Analysis

• Remote Code Execution
• Persistence
• Log Clearing
• Modeling and Web Application
• []

Module 7 Threat Hunting

• Malware Detection with YARA Rules
• Maleware Traffic Analysis with WireShark
• Threat Hunting with Security Onion
• Threat Hunting with Zeek, RITA
• Forensic Investigations with Autopsy

Module 8 Web Application Security

• Web Vulnerability Scanning with Nmap
• XSS with w3af, DVWA
• Automated AppSec with OWASP ZAP
• Attacking Juice Shop with Burp Suite
• SQLi with Burp Suite, Web Goat
• Vulnerability Scanning with Nessus

Module 9 Penetration Testing

• Reconnaissance with Maltego
• Pass the Hash with Mimikatz
• Traffic Sniffing with Ettercap
• Exploitation with Metasploit
• Pentest Practice 1 of 2
• Pentest Practice 2 of 2

Module 10 Final Project