Author
Mike Chapple
Released
11/22/2017We are a CompTIA Partner. As such, we are able to offer CompTIA exam vouchers at a 10% discount. For more information on how to obtain this discount, please download these PDF instructions.
- Comparing viruses, worms, and Trojans
- Backdoors and logic bombs
- Understanding the attacker
- Attack types: from denial of service to brute force attacks
- Preventing insider threats
- Wireless attacks
- Understanding cross-site scripting
- Preventing SQL injection
- Social engineering
- Scanning for vulnerabilities
- Penetration testing
- Assessing the impact of vulnerabilities
Skill Level Beginner
Duration
Views
- [Mike] Hi, I'm Mike Chapple, and I'd like to welcome you to our CompTIA Security+ Threats, Attacks, and Vulnerabilities course. The CompTIA Security+ certification is one of the most popular entry level certifications for information security professionals. Earning the Security+ certification requires passing an exam covering six different domains of information security. This course covers one of those domains, threats, attacks, and vulnerabilities.
This domain accounts for 21% of the questions on the real test and this course is part of a seven course series designed to prepare you for the Security+ exam. In this course, we'll be focusing on different types of malware and how you can protect your systems against software-based threats, networking attacks that jeopardize the confidentiality, integrity, and availability of your information and systems, social engineering techniques that attackers use to fool your employees into undermining your organization's security controls, application attacks that attempt to defeat web application security, and ways that you can detect threats and vulnerabilities in your environment and mitigate their effects.
The information you learn in this course will help you pass the Security+ exam and also provide a critical foundation for your career in information security. In addition to the information I cover in this course, I encourage you to visit my website at certmike.com and join my free Security+ study group. I'll send you exam tips, practice test questions, and reminders to help keep you on track with your test preparation. All right, let's get rolling.
-
Introduction
-
Welcome1m 47s
-
-
1. Malware
-
Looking at advanced malware4m 25s
-
Advanced persistent threats3m 40s
-
2. Understanding Attackers
-
Cybersecurity adversaries4m 11s
-
Threat intelligence2m 37s
-
-
3. Understanding Attack Types
-
Denial of service attacks4m 25s
-
Eavesdropping attacks4m 5s
-
Network attacks6m 19s
-
Network address spoofing3m 25s
-
Password attacks8m 22s
-
Watering hole attacks3m 6s
-
-
4. Wireless Attacks
-
Wireless eavesdropping4m 36s
-
WPA and WPS attacks3m 30s
-
Propagation attacks3m 42s
-
Disassociation attacks2m 41s
-
RFID security2m 56s
-
-
5. Application Attacks
-
Application security4m 16s
-
Preventing SQL injection5m 7s
-
Clickjacking1m 53s
-
Overflow attacks3m 25s
-
Session hijacking3m 50s
-
Malicious add-ons2m 26s
-
Code execution attacks3m 2s
-
Driver manipulation2m 45s
-
Error and exception handling3m 52s
-
-
6. Social Engineering Attacks
-
Social engineering5m 31s
-
Impersonation attacks4m 45s
-
Physical social engineering2m 27s
-
-
7. Vulnerability Scanning and Penetration Testing
-
Security assessment tools5m 50s
-
Scanning for vulnerabilities5m 35s
-
Assessing threats3m 14s
-
Threat assessment techniques2m 41s
-
Penetration testing3m 56s
-
-
8. Impact of Vulnerabilities
-
Vendor vulnerabilities4m 21s
-
Memory vulnerabilities4m 9s
-
-
Conclusion
-
Next steps42s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Welcome