"Internet Security - Weaknesses and Targets" gives a detailed introduction on problems concerning Internet and Intranet security. After starting with some remarks on risk analysis and computer crimes, security weaknesses and targets are discussed in detail. Besides, more introductions are provided on: human factor and technical failures, attacks on accounts and passwords, attacks on Internet protocol, misuse of design and programming errors, weaknesses in common operating systems, targets in the WWW, and viruses. The lecture concludes with the discussion on possibilities to detect attacks and intrusions and ethical issuses are introduced as well.
| Internet Security - An Overview | 01:02:48 | |
|---|---|---|
| A First Example: Staatstrojaner | 00:12:12 | |
| Nowaday's Internet | 00:08:52 | |
| Risks | 00:08:07 | |
| Changing Nature of the Threats | 00:08:35 | |
| Complexity of Internet | 00:05:49 | |
| Most Common Attacks | 00:08:26 | |
| General Risks of Interconnected IT-Systems | 00:07:29 | |
| Course Content | 00:03:18 |
| First Understanding of Internet and WWW | 01:27:34 | |
|---|---|---|
| Introduction | 00:09:42 | |
| Classification of Computer Networks | 00:10:33 | |
| Internet and Internet Protocols | 00:19:31 | |
| TCP/IP Protocol Stack | 00:16:14 | |
| WWW - World Wide Web | 00:11:52 | |
| WWW-Browser and WWW-Server | 00:19:35 |
| Risk Analysis | 01:20:00 | |
|---|---|---|
| Introduction | 00:05:20 | |
| Risks in Internetworking IT-Systems | 00:17:05 | |
| Risk Definition | 00:11:24 | |
| Evaluation of Risks | 00:27:46 | |
| Basic Risks of Internet | 00:18:25 |
| Potential Attackers | 00:24:09 | |
|---|---|---|
| Potential Attackers | 00:24:09 |
| Hackers and Viruses | 01:11:50 | |
|---|---|---|
| First Generation of Hackers | 00:13:56 | |
| Viruses, Worms, Trojan Horses | 00:14:11 | |
| Well-Known Security Incidents in History | 00:43:43 |
| Human Factor and Technical Failures | 00:42:44 | |
|---|---|---|
| Technical Failures | 00:13:18 | |
| Defective Design | 00:11:24 | |
| Social Hacking | 00:10:28 | |
| Most Typical Break-in Methods | 00:07:34 |
| Reconnaissance | 00:23:16 | |
|---|---|---|
| Introduction | 00:16:13 | |
| Web Recon | 00:07:03 |
| OS Fingerprinting | 00:26:05 | |
|---|---|---|
| Introduction | 00:07:09 | |
| TCP Stack Fingerprinting | 00:11:27 | |
| Passive Fingerprinting | 00:07:29 |
| Attacks on Accounts and Passwords | 00:54:02 | |
|---|---|---|
| Introduction | 00:15:24 | |
| Password Cracking | 00:22:02 | |
| Password Sniffing | 00:13:01 | |
| Protection Against Password Theft | 00:03:35 |
| Weaknesses of Internet Protocols 1/2 | 01:16:33 | |
|---|---|---|
| Introduction | 00:14:32 | |
| ARP-Attacks | 00:15:08 | |
| IP Address Spoofing | 00:22:08 | |
| Internet-Routing-Attacks | 00:09:48 | |
| IP-Fragmentation Attacks | 00:14:57 |
| Weaknesses of Internet Protocols 2/2 | 01:18:35 | |
|---|---|---|
| Introduction | 00:08:18 | |
| Attack Scenarios | 00:12:15 | |
| TCP-Sequence Number Attack | 00:21:50 | |
| Attacks on TLS/SSL | 00:12:35 | |
| DNS-Attacks | 00:10:43 | |
| FTP-Attacks | 00:12:54 |
| Design and Programming Errors | 00:30:15 | |
|---|---|---|
| Introduction | 00:02:04 | |
| Buffer Overflow | 00:15:58 | |
| Insufficient Input Validation | 00:06:21 | |
| Race Conditions | 00:05:52 |
| Weaknesses of Unix / Linux - Attacks and Exploits | 01:11:39 | |
|---|---|---|
| Introduction | 00:13:31 | |
| Password Attacks in Unix | 00:14:34 | |
| Network and Application Attacks | 00:19:12 | |
| DNS/ Bind Vulnerabilities | 00:05:40 | |
| Strategies to Protect Unix-Systems | 00:18:42 |
| Weaknesses of MS Windows and MacOS X - Attacks and Exploits | 01:30:14 | |
|---|---|---|
| Introduction | 00:14:47 | |
| SMB Relay Attack | 00:10:43 | |
| UPnP Attack | 00:20:20 | |
| MS Windows Server | 00:18:50 | |
| Weaknesses in Kerberos Protocol | 00:13:03 | |
| Weaknesses in MAC OS X | 00:12:31 |
| Weaknesses in the World Wide Web 1/2 | 01:11:31 | |
|---|---|---|
| Introduction | 00:10:21 | |
| Spying Out Personal Data | 00:16:01 | |
| Java | 00:17:57 | |
| JavaScript | 00:10:34 | |
| ActiveX | 00:16:38 |
| Weaknesses in the World Wide Web 2/2 | 01:09:15 | |
|---|---|---|
| Introduction | 00:06:40 | |
| CGI-Attacks | 00:11:35 | |
| SQL-Injection | 00:11:33 | |
| Cross-Site-Scripting | 00:13:22 | |
| Cross-Site Request Forgery | 00:08:40 | |
| WS-Security Standard | 00:12:39 | |
| WS-Trust Standard | 00:04:46 |
| Wireless Security | 01:22:08 | |
|---|---|---|
| Wireless-Lan | 00:22:23 | |
| Basic WLAN Security Methods | 00:13:19 | |
| WLAN Security with IEEE 802.1x | 00:08:55 | |
| Extended WLANSecurity | 00:13:38 | |
| WLAN Security in Practice | 00:05:43 | |
| Cellular Phone Technologies | 00:16:15 | |
| Summary | 00:01:55 |
| Detection of Attacks and Intrusions | 01:19:40 | |
|---|---|---|
| Introduction | 00:11:40 | |
| Anomalies and Attack Signatures | 00:24:18 | |
| Host-based IDS | 00:11:55 | |
| Intrusion Response | 00:15:16 | |
| Existing Solutions | 00:16:31 |
| Internet Security - Law and Ethics | 01:05:38 | |
|---|---|---|
| Introduction | 00:09:34 | |
| Legal Systems | 00:14:31 | |
| Case Studies | 00:15:00 | |
| Ethical Issues | 00:12:50 | |
| Code of Ethics | 00:09:03 | |
| Recently Discovered Insights | 00:04:40 |
