Topics:

Lesson 1: Primer and Reaffirming our Knowledge

• ESX Networking Components
• Virtual Ethernet Adapters and How They Work
• Virtual Switches and How They Work
• VLANs in VMWare Infrastructure
• NIC Teaming, Failover Configurations
• Layer 2 Security Features & File System Structure
• Managing the Virtual Network with "VirtualCenter"
• Kernel, Processes, Account, and Groups
• Linux and UNIX Permissions
• Trust Relationships, Logs, and Auditing

Lesson 2: Penetration Testing 101

• What is a Penetration Test and the benefits?
• What is the Cost of a Hack?
• Current Issues and the Evolving Threat
• Pen Testing Methodology, Types of Tests, Website Review
• Common Management Errors

Lesson 3: Routing and the Security Design of VMware

• Security of Routing Data
• How traffic is routed between Virtual Machines on ESX hosts
• Security Design of the VMware Infrastructure 3 Architecture
• VMware Infrastructure Architecture and Security Features

Lesson 4: Information Gathering, Scanning, and Enumeration

• What information does the hacker gather?
• Methods of Obtaining Information
• Footprinting Defined, Google Hacking
• Introduction to Port Scanning & Tools
• Enumeration Overview

Lesson 5: DMZ Virtualization

• Virtualized DMZ Networks
• Three Typical Virtualized DMZ Configurations
• Best Practices for Achieving a Secure Virtualized DMZ Deployment

Lesson 6: Remote DataStore Security

• Mask and Zone SAN Resources
• Fiber Channel, Attacking Fiber Channel
• Securing iSCSI, iFCP, and FCIP over IP networks

Lesson 7: Penetration Testing and the Tools of the Trade

• Vulnerabilities in Network Services & Assessment Scanners
• Windows Password Cracking, Disabling Auditing
• Alternate Data Streams, Encrypted Tunnels
• Port Monitoring Software, Rootkits, Metasploit, Fuzzers SaintExploit, Core Impact, Wireshark
• Penetration Testing Tool Comparison
• ARP Cache Poisoning, Hash Algorithm

Lesson 8: Hardening your ESX Server

• Hardening Your ESX Server, ESX, ESXi Best Practices
• Configuring the ESX/ESXi Host
• VirtualCenter, Client Components
• The Basics of SAN Security, Part 1, Increasing Security Concerns
• Security Domains, Switch-to-Switch Domain
• Data Integrity and Security
• Security Management, Part 2
• Fibre Channel Security Management
• Authentication and Authorization
• Configuration Management
• SAN Access, SAN Security Benefits
• Controller-based Mapping, WWN Privileged Access
• Redundancy, Management
• Distributing Malware, Malware Capabilities
• Netcat
• Executable Wrappers
• Avoiding Detection
• BPMTK
• What is SQL Injection?
• Why SQL Injection?
• Attacking Database Servers