Tutorials

Tutorials

• Mimikatz tutorial: How it hacks Windows passwords, credentials

  In this Mimikatz tutorial, learn about the password and credential dumping program, where you can acquire it and how easy it makes it to compromise system passwords.  Continue Reading

• Managing remote employees: How to secure remote network access

  This SearchSecurity.com mini learning guide is a compilation of tips from our experts on how to secure remote network access. The guide offers best practices for managing remote employees and helping them set up a secure home network, as well as ...  Continue Reading

• NAC protection: Network access control policy, deployment guidelines

  This SearchSecurity.com mini learning guide is composed of a variety of content, all discussing network access protection guidelines, including best practices for creating a network access control policy and NAC deployment.  Continue Reading

• Secure network architecture best practices: DMZ and VLAN security

  This mini learning guide will cover best practices for achieving and maintaining a secure network architecture, discussing several aspects of DMZ security and VLAN security.  Continue Reading

• Endpoint protection advice: Improving NAC with secure endpoints

  This endpoint protection tutorial discuss several aspects of endpoint protection, including how to use endpoint fingerprinting, how to create an endpoint security lifecycle, how to solve problems related to insecure endpoints.  Continue Reading

• IPv6 tutorial: Understanding IPv6 security issues, threats, defenses

  You may not know it, but IPv6 may be the Internet's next superhighway for zero-day attacks. This new guide offers tactics for proactive IPv6 security.  Continue Reading

• XSS cheat sheet: How to prevent XSS attacks and detect exploits

  Cross-site scripting (XSS) attacks are constantly top-of-mind for enterprise security professionals, and for good reason: They can do a great deal of damage. In this XSS cheat sheet guide, security professionals will receive advice on how to prevent...  Continue Reading

• Network security audit guidelines: Inside the importance of audit planning

  In this SearchSecurity.com mini learning guide you will learn the ins and outs of network security audit guidelines, as well as the importance of audit planning, and how to perform and prepare for an audit.  Continue Reading

• Information security tutorials

  SearchSecurity.com's tutorials offer a variety of online information security training courses you can take on your own time at your own pace. They are designed to arm you with the foundational and tactical information you need to deal with the ...  Continue Reading

• XML firewall security guide: Prevent XML vulnerabilities and threats

  This section of the XML Web services Tutorial highlights the functions and capabilities of the XML firewall, how the features of an XML firewall compare to other firewalls, and offers advice on how to prevent XML vulnerabilities and stop XML attacks.  Continue Reading

• Windows 7 security guide: Best practices on security for Windows 7

  Are you preparing for a Windows 7 upgrade? Our latest learning guide reviews the new and improved security features of the new and improved operating system.  Continue Reading

• Web browser security tutorial: Safari, IE, Firefox browser protection

  Newly updated: This Web browser security tutorial identifies the inherent flaws of Internet Explorer and Mozilla Firefox, introduces viable Web browser alternatives and provides tools and tactics to maximize your Web browsing security and browser ...  Continue Reading

• Risk-based audit methodology: How to achieve enterprise security

  Discover how using a risk-based audit methodology can achieve better enterprise security. Learn how to develop an internal IT audit program, implement risk mitigation methods and develop controls and ensure they are effective.  Continue Reading

• IT security policy management: Effective polices to mitigate threats

  In this mini guide, you will gain a better understanding of IT security policy management and learn how to create an effective IT security policy, how to ensure security polices are managed appropriately, best practices for policy implementation and...  Continue Reading

• Securing your wireless network: Preventing wireless security threats

  This mini learning guide helps enterprise information security managers and executives develop a better understanding of wireless network security and learn why investing time and resources in securing your wireless network can help thwart security ...  Continue Reading

• Web application attacks security guide: Preventing attacks and flaws

  This Web application attacks guide explains how Web application attacks occur, identifies Web application attack types, and provides Web application security tools and tactics to protect against them.  Continue Reading

• Mini guide: How to remove and prevent Trojans, malware and spyware

  Organizations need to learn how to implement proper protections and understand best practices for malware defense in order to keep their network environments secure. In this mini guide you will learn how to prevent, remove and stop types of malware ...  Continue Reading

• Endpoint protection best practices manual: Combating issues, problems

  Learn how to employ effective endpoint security controls, technologies and policies, and well as define methods and techniques for a multilayered endpoint defense system.  Continue Reading

• Buffer overflow tutorial: How to find vulnerabilities, prevent attacks

  Buffer overflow exploits and vulnerabilities can lead to serious harm to corporate Web applications, as well as embarrassing and costly data security breaches and system compromises.  Continue Reading

• SQL injection protection: A guide on how to prevent and stop attacks

  In this SQL injection protection guide get advice on how to prevent and stop SQL injection attacks, also learn best practices on how to detect vulnerabilities.  Continue Reading

• Hacker attack techniques and tactics: Understanding hacking strategies

  This guide provides you with a plethora of tips, expert advice and Web resources that offer more in-depth information about hacker techniques and various tactics you can employ to protect your network.  Continue Reading

• HIPAA compliance manual: Training, audit and requirement checklist

  In this HIPAA compliance manual you will recieve advice on how to prepare for a security audit as well as a checklist for HIPAA training, gudielines and requirements.  Continue Reading

• Spyware Protection and Removal Tutorial

  This free spyware protection and removal tutorial is a compilation of free resources that explain what spyware is, how it attacks and most importantly what you can to do to win the war on spyware.  Continue Reading

• Exploring authentication methods: How to develop secure systems

  Use this guide to discover authentication options and learn how to implement, maintain and secure several methods of authentication, such as biometrics, single sign-on (SSO) and smart cards to avoid security breaches and protect sensitive corporate ...  Continue Reading

• Nessus 3 Tutorial: How to use Nessus to identify network vulnerabilities

  Learn how to use Nessus, an inexpensive vulnerability scanner, with our Nessus Tutorial Guide. It not only examines the benefits of this free open source tool, but also walks you through the processes of using it in the enterprise, from installation...  Continue Reading

• PCI DSS Requirement 8: Assign unique user IDs to those with access

  To pass a PCI compliance audit, organizations need to be capable of verifying who is attempting access to an asset. They also must control what employees are permitted to see or modify, and do so based on their organizational role. In this PCI ...  Continue Reading

• PCI DSS Requirement 11: Regularly test security systems and processes

  Craig Norris explains why internal and external network scans are necessary to complete Requirement 11 of the PCI Data Security Standard, one that frequently baffles security professionals.  Continue Reading

• Information Security Governance Guide

  This guide provides an introduction to what information security governance and a security program are, and examines how to deploy security policies within any environment.  Continue Reading

• SOX Compliance for the Security Practitioner

  This collection of resources offers security managers in-depth information to help keep their organization compliant with the Sarbanes-Oxley (SOX) Act. Learn how security practitioners are handling SOX compliance, financial woes, internal controls, ...  Continue Reading