List of references for Volume II - Network Security! sections 1-7

Lesson 2. Introduction to the Instructor!

Websites:
Nathan’s Twitter #GotoNathan
https://twitter.com/gotonathan
Nathan’s Cyber Security Blog
https://www.stationx.net/nathan-house/

Lesson 10. The Home Router

Websites:
Common default IP addresses for routers

Well-known ports

Database of default router passwords

Your IP address

Lesson 11. External Vulnerability Scanning - Shodan, Qualys & Nmap

Websites:
Shodan - search engine for Internet-connected devices.
https://www.shodan.io
Internet Vulnerability Profiling
https://www.grc.com/shieldsup
Port Scan Test

TCP Port Scan with Nmap

Hacked Router Check
http://www.techmonkeys.co.uk/hackcheck/index.php
Qualys FreeScan – Online vulnerability scanner

Software:
Putty - SSH for Windows
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

Lesson 12. Internal Vulnerability Scanning - MBSA, Nmap, Nessus, Fing & Superscan & OpenVAS

Websites:
Qualys FreeScan – Online vulnerability scanner

Software:
Nmap Download
https://nmap.org/download.html
Superscan
http://www.mcafee.com/uk/downloads/free-tools/superscan.aspx
Fing Android

Fing IOS

Microsoft Baseline Security Analyzer (MBSA)
https://www.microsoft.com/en-us/download/details.aspx?id=7558
OpenVAS
http://www.openvas.org/about.html
Metasploitable 2
https://sourceforge.net/projects/metasploitable/files/Metasploitable2/
Nessus professional

Nessus Home

Lesson 13. Open Source Custom Router Firmware

Websites:
List of router firmware projects

Example of how to flash a netgear

LibreCMC Supported Hardware
https://gogs.librecmc.org/libreCMC/libreCMC/wiki/Supported-Hardware
DD-WRT Supported hardware
https://www.dd-wrt.com/site/support/router-database
smallnetbuilder.com - Compare router performance
http://www.smallnetbuilder.com/tools/charts/router/view
flashrouters.com
https://www.flashrouters.com/routers
Example of Tor of DD-WRT
https://dd-wrt.com/wiki/index.php/Tor_on_R7000
Example of OpenVPN of DD-WRT
https://www.privateinternetaccess.com/pages/client-support/dd-wrt-openvpn
Software:
OpenWRT
https://openwrt.org/
LibreCMC
https://librecmc.org/
DD-WRT
http://www.dd-wrt.com/site/index
DD-WRT fireware for R7000
Downloads | MyOpenRouter
Tomato firmware
Tomato Firmware | Polarcloud.com
Hardware
R7000 Nighthawk Router
https://www.amazon.co.uk/R7000-100UKS-Nighthawk-Wireless-Beamforming-Downstream/dp/B00HDK4GAK

Lesson 15. Firewalls – Host-based, network-based and virtual Part 1

Websites:
DPI example traffic

Reverse shell cheat sheet
http://pentestmonkey.net/cheat-sheet/shells/reverse-shell-cheat-sheet

Lesson 16. Firewalls – Host-based, network-based and virtual Part 2

Websites:
Wikipedia - Stateful Packet Inspection

**Lesson 17. Windows - Host Based Firewalls - Windows Firewall Control (WFC)

Websites:
howtogeek - how to block an application

Software:
Windows firewall control
http://www.binisoft.org/wfc.php

**Lesson 19. Windows - Host Based Firewalls - Third Party

Websites:
AV firewall example kaspersky
https://support.kaspersky.com/9581
Suggestion for rules to apply on windows
http://hardenwindows7forsecurity.com/Harden%20Windows%207%20Home%20Premium%2064bit%20-%20Standalone.html
Software:
Comodo

Comodo geekbuddy removal

Tinywall
http://tinywall.pados.hu/
Privacyware firewall
https://www.privacyware.com/personal_firewall.html

Lesson 20. Linux - Host Based Firewalls - iptables

Websites:
IPTables: Personal Firewall to protect my laptop

Personal firewall for my laptop using iptables

The definitive guide to iptables
https://www.frozentux.net/iptables-tutorial/iptables-tutorial.html

Lesson 21. Linux - Host Based Firewalls - UFW, gufw & nftables

Websites:
How to setup a firewall with ufw on an Ubuntu and Debian

Software:
The Uncomplicated Firewall (ufw)
https://wiki.ubuntu.com/UncomplicatedFirewall
Shorewall
http://www.shorewall.net/Introduction.html
Gufw - graphical front-end to UFW
http://gufw.org/
linux-firewal - Application firewall
http://www.linux-firewall.org/
nftables
http://www.netfilter.org/projects/nftables/
Documents
iptables-frontends.txt
https://udemy-assets-on-demand2.udemy.com/2016-05-13_13-32-59-358a46619b4fffd29344a0c5acf706a3/f2e8c895-09aa-4636-9943-d4cffc892485.txt?nva=20160926005936&filename=iptables-frontends.txt&download=True&token=06be76e7fca0f2c457cf5

Lesson 22. Mac OS X - Host based Firewalls - Application Firewall & PF

Websites:
Apples application firewall page

Wikipedia - PF Firewall

Pf Firewall Tutorial
https://calomel.org/pf_config.html
Using pf on OS X Mountain Lion

Documents:
OS X PF Manual
http://murusfirewall.com/Documentation/OS%20X%20PF%20Manual.pdf

Lesson 23. Mac OS X - Host based Firewalls - pflist, Icefloor & Murus

Software:
pflist
http://www.hanynet.com/pflists/index.html
Icefloor
http://www.hanynet.com/icefloor/
Murus
http://www.murusfirewall.com/
Vallum
http://vallumfirewall.com/

Lesson 24. Mac OS X - Host based Firewalls - Little Snitch

Software:
Littlesnitch

Lesson 25. Network based firewalls - Routers - DD-WRT

Websites:
Openwrt firewall
https://wiki.openwrt.org/doc/uci/firewall
DD-WRT firewall
https://www.dd-wrt.com/wiki/index.php/Firewall
DD-WRT Firewall config example
https://www.dd-wrt.com/wiki/index.php/FirewallExample
DD-WRT iptables commands example
https://www.dd-wrt.com/wiki/index.php/Iptables_command
DD-WRT Firewall Builder
https://www.dd-wrt.com/wiki/index.php/Firewall_Builder
Software:
Firewall Builder
http://www.fwbuilder.org/

Lesson 26. Network based firewalls - Hardware
Hardware:
PC Engines - small, low power servers for network security
http://www.pcengines.ch/index.htm
pcengines.ch APU
http://www.pcengines.ch/apu.htm
Novena

Lesson 27. Network based firewalls - PFsence, Smoothwall and Vyos
Software:
pfsense.org
https://www.pfsense.org/getting-started/
opnsense.org
https://opnsense.org/about/about-opnsense/
smoothwall.org
http://www.smoothwall.org/
vyos.net
http://wiki.vyos.net/wiki/Main_Page
Hardware:
pfsense hardware
https://www.pfsense.org/hardware/

Lesson 29. Network Attacks and Network Isolation - Introduction and IOT

Websites:
theguardian.com - IOT and US surveillance
https://www.theguardian.com/technology/2016/feb/09/internet-of-things-smart-home-devices-government-surveillance-james-clapper

Lesson 30. Network Attacks and Network Isolation - Arp Spoofing and Switches

Websites:
irongeek.com - A Quick Intro to Sniffers
http://www.irongeek.com/i.php?page=security/AQuickIntrotoSniffers

**Lesson 31. Effective Network Isolation Part 2

Websites:
tecmint.com - Using arpwatch
http://www.tecmint.com/monitor-ethernet-activity-in-linux/
Cisco port sec
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/port_sec.html
Cisco - DHCP Snooping
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/snoodhcp.html
Wikipedia - 802.1AE - IEEE MAC Security standard (MACSec)
https://en.wikipedia.org/wiki/IEEE_802.1AE
Wikipedia - 802. 1X (“EAP over LAN” or EAPOL) – Port based Network Access Control (PNAC)
https://en.wikipedia.org/wiki/IEEE_802.1X
Software:
Netcut
http://www.arcai.com/netcut/
xwarp
http://www.xarp.net/#download
Sniffdet
http://sniffdet.sourceforge.net/
Videos:
Quick VLAN setup in PFSense
https://www.youtube.com/watch?v=uF13fqQvGCs

Lesson 35. Wi-Fi Weaknesses - WPA, WPA2, TKIP and CCMP
Software:
Church of Wifi WPA-PSK Lookup Tables
https://www.renderlab.net/projects/WPA-tables/
Report:
Report - Breaking wep and wpa
http://dl.aircrack-ng.org/breakingwepandwpa.pdf

Lesson 36. Wi-Fi Weaknesses - Wi-Fi Protected Setup WPS, Evil Twin and Rouge AP
Reports:
Brute forcing Wi-Fi Protected Setup
https://sviehb.files.wordpress.com/2011/12/viehboeck_wps.pdf
Wi-Fi security – WEP, WPA and WPA2
http://www.hsc.fr/ressources/articles/hakin9_wifi/hakin9_wifi_EN.pdf
Hardware:
wifipineapple.com - wireless auditing platform
https://www.wifipineapple.com/
NSAs Nightstand wireless exploitation tool
https://nsa.gov1.info/dni/nsa-ant-catalog/wireless-lan/index.html
Videos:
DD-WRT Tutorial - How to create a separate public guest network that works!
https://www.youtube.com/watch?v=43rM6OI_Y4w

Lesson 37. Wi-Fi Security Testing

Websites:
List of USB wirless card for Kali
http://www.cyberprogrammers.net/2015/09/best-usb-wireless-adapterscards.html
Hardware:
Alfa AWUS036NHA - Wireless B/G/N USB Adaptor - 802.11n
https://www.amazon.com/Alfa-AWUS036NHA-Wireless-Adaptor-Compatible/dp/B004Y6MIXS
Another list of Kali USB wireless adapters
http://www.wirelesshack.org/top-kali-linux-compatible-usb-adapters-dongles-2015.html
Software:
aircrack-ng
http://tools.kali.org/wireless-attacks/aircrack-ng
cowpatty
http://tools.kali.org/wireless-attacks/cowpatty
reaver
http://tools.kali.org/wireless-attacks/reaver
fern wifi cracker
http://tools.kali.org/wireless-attacks/fern-wifi-cracker
oswa live CD
http://securitystartshere.org/page-training-oswa-assistant-download.htm

Lesson 38. Wireless Security - Secure Configuration and Network Isolation

Websites:
Examples of wireless isolation option
http://www.howtogeek.com/179089/lock-down-your-wi-fi-network-with-your-routers-wireless-isolation-option/

Lesson 39. Wireless security - RF Isolation and Reduction

Websites:
Bluetooth factsheet
https://www.nsa.gov/what-we-do/information-assurance/
NIST - Guide to Bluetooth Security
http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-121r1.pdf
Hardware:
Example Shielding
https://www.yshield.com/pdf/YSHIELD-EN-Catalog.pdf
Example Faraday Bag
https://www.amazon.com/s/ref=nb_sb_noss_2?url=search-alias%3Dmobile&field-keywords=Faraday+Bag

Lesson 40. Wireless security - Who is on my Wi-Fi Network?
Software:
whoisonmywifi.com
http://whoisonmywifi.com/
WI-FI Inspector
https://www.xirrus.com/free-tools/
wifi network monitor
http://securityxploded.com/wifi-network-monitor.php
Wireless Network Watcher
http://www.nirsoft.net/utils/wireless_network_watcher.html
glasswire.com firewall
https://www.glasswire.com/
Fing Android
https://play.google.com/store/apps/details?id=com.overlook.android.fing&hl=en_GB
Fing IOS
https://itunes.apple.com/gb/app/fing-network-scanner/id430921107?mt=8
airodump-ng
http://www.aircrack-ng.org/doku.php?id=airodump-ng

Lesson 42. Syslog

Websites:
List of syslog servers/viewers
http://www.syslog.org/logged/tools/
Linux - Using a central log server to monitor your devices
https://www.marcus-povey.co.uk/2013/05/15/using-a-central-log-server-to-monitor-your-devices/
Linux - How To Set Up A Debian Linux Syslog Server
http://www.aboutdebian.com/syslog.htm
Linux - Setting up a Centralized RSYSLOG Server Monitoring
https://www.howtoforge.com/centralized-rsyslog-server-monitoring
Windows - Become Really Paranoid By Monitoring Your Network’s Comings & Goings With WallWatcher & DD-WRT
http://www.makeuseof.com/tag/paranoid-monitoring-networks-comings-goings-wallwatcher-ddwrt/
Windows - How to Configure Your Router for Network Wide URL Logging
http://www.howtogeek.com/68886/how-to-configure-your-router-for-network-wide-url-logging/
Windows - How to Remotely Collect Server Events Using Syslog
http://www.howtogeek.com/107069/how-to-remotely-collect-server-events-using-syslog/
Software:
Syslog RFC5424
https://tools.ietf.org/html/rfc5424
Syslog for windows
https://sourceforge.net/projects/syslog-win32/
Linux - A gui log analyzer
http://loganalyzer.adiscon.com/
Windows - Wallwatcher
http://www.wallwatcher1.com/
Windows - Link logger
http://www.linklogger.com/screenshots.htm
Windows - syslog watcher
https://www.snmpsoft.com/syslog-watcher/
Windows - PRTG free syslog server
https://www.paessler.com/free_syslog_server
Windows - kiwi syslog server
http://www.solarwinds.com/kiwi-syslog-server
Windows - winsyslog server
http://www.winsyslog.com/

Lesson 43. Network Monitoring - Wireshark, tcpdump, tshark, iptables Part 1

Websites:
wireshark.org
https://www.wireshark.org/

Lesson 44. Network Monitoring - Wireshark, tcpdump, tshark, iptables Part 2

Websites:
tcpdump cheat sheet
http://packetlife.net/media/library/12/tcpdump.pdf

Lesson 45. Wireshark - Finding malware and hackers - Part 1

Websites:
Wireshark Display Filters
https://wiki.wireshark.org/DisplayFilters
Wireshark Cheetsheet
http://packetlife.net/media/library/13/Wireshark_Display_Filters.pdf

Lesson 47. Network Monitoring - Wincap, NST, Netminer and NetWorx

Websites:
5 Killer Tricks to Get the Most Out of Wireshark
http://www.howtogeek.com/106191/5-killer-tricks-to-get-the-most-out-of-wireshark/
Software:
Wincap
https://www.winpcap.org/install/default.htm
Network Security Toolkit live operating system
https://sourceforge.net/projects/nst/
NetworkMiner

NetWorx
https://www.softperfect.com/products/networx/

1 Like