
Explore security fundamentals across four areas—security layers, operating system fundamentals, network security, and security software—with real-world examples of network attacks, including man-in-the-middle concepts, and authentication for safer online activity.
Explore why Microsoft introduced the MTA security fundamentals, the three paths (IT infrastructure, database, development), and the next steps after passing the exam.
Explore basic security fundamentals through a practical challenge: research a real hack or data breach from any era, identify a unique aspect, and discuss findings from big-name companies.
Explore major data breaches, learn why passwords fail, and understand core security concepts like hashing and encryption to protect accounts.
Explore the four security modules—security principles, physical security, internet security, and wireless security—in this section. Use real world examples to fix your wireless network and improve stability and speed.
Apply the CIA security model to protect confidentiality, integrity, and availability by using encryption, authentication, and access controls, while understanding hashing and common threats like man-in-the-middle and DoS.
Learn core security principles through risk management: identify threats, assess likelihood and severity, and implement a risk management plan to protect assets. Emphasizes the principle of least privilege.
Apply the principle of least privilege by granting access only to what users need and denying by default, with ticketed access requests to justify permissions.
Explore social engineering and security layers; learn how attackers pose as a tech support representative to gain remote access and passwords, and how user education helps prevent it.
Learn core security principles and the theory of man-in-the-middle attacks, with a practical demo on a local area network highlighting mac addresses and arp translation, including safety cautions.
Explore man-in-the-middle attacks by showing how an attacker impersonates a router using mac addresses, arp, and a fake gateway to capture unencrypted traffic.
Explore a man-in-the-middle attack in action using Cain and Abel to sniff a local network, alter MAC addresses, and intercept plain HTTP credentials, highlighting security basics.
Apply defense in depth by layering security across data, host, network, and physical security, then use the Microsoft Baseline Security Analyzer to scan, report, and identify issues like disabled firewall.
Assess physical security for mobile devices by examining threats like key loggers and the role of two-factor authentication, access control, hardware tokens, and encryption.
Explore securing mobile devices through physical safeguards, docking stations, and full hard drive encryption, and learn Microsoft encryption options, CCTV, and privacy tips for Internet Explorer.
Explore internet security basics in Internet Explorer, including ActiveX, Java, and plugins; learn how site advisor tools from Kaspersky and McAfee protect against suspicious websites.
Explore Internet Explorer security zones, adjust privacy and security settings, manage cookies and ActiveX, configure proxy servers, and set default applications to protect browsing.
Protect your privacy and browse securely by using https, adjusting browser settings and plugins, avoiding cracked software, keeping browsers updated, and using trusted security tools and a proper firewall.
Explore wireless security basics, weigh the security tradeoffs between wireless and wired networks, and see how to secure a small office network using an access point, guest networks, and WPA/WPA2.
Configure a real router and access point, focusing on wireless security: from WEP to WPA and WPA2; use WPA2 Enterprise with a RADIUS server.
Explore wireless security fundamentals and troubleshoot networks with the insider tool, surveying nearby access points, optimizing channels (1, 6, 11, 5 ghz), and applying WPA personal security.
Conclude the first section and stress memorization as essential for advancing to more advanced topics. Preview the next section dedicated to operating systems.
Explore operating system security by implementing user authentication, two-factor authentication, and strong password policies, plus encryption and NTFS permissions across six modules.
Learn about three authentication factors—something you know (passwords), something you own (mobile phone, smart card), and something you are (biometrics)—and how two-factor authentication improves security.
Examine how a RADIUS AAA server authenticates, authorizes, and logs for VPNs and WPA to Enterprise wireless, with Windows Small Business Server 2008 and Cisco firewall, plus Kerberos and PKI.
Explore public key infrastructure and certificates, manage, create, and revoke digital certificates, and master symmetric and asymmetric encryption with public and private keys, including signing for verified identity.
Explore how certificates establish secure https connections, distinguish trusted certificate authorities from self-signed ones, and why browsers warn when a certificate cannot be verified.
Explore active directory for managing user accounts and permissions on Windows Server, and learn to reset user passwords and disable accounts on a domain controller.
Explore NTFS and share permissions in Windows 7 and Windows Server 2008, learn how to map network drives, and manage inheritance and minimum access to folders.
Configure NTFS and share permissions on a test folder, map a network drive in Windows seven and Windows eight, and access it with domain credentials.
Learn to add static routes in Windows 7 using the route command and to run as administrator or a different user with shift key. Explore NTFS, permissions, and password policies.
Learn how password policies and complexity requirements protect accounts in Windows 7 and Windows Server 2008, configuring length, age, and history through local security policy and group policy.
Enable auditing object access in the local security policy to log user activity across Windows systems, then push policies via Group Policy Objects to track actions and changes.
Learn how BitLocker full-disk encryption protects laptops with a TPM module and startup keys to prevent data access if a device is lost, and review the hardware requirements.
Explore common malware types: viruses, trojans, spyware, and fake antivirus scams, and learn practical tools and safety practices to protect your Windows 7 system.
Install and tweak Kaspersky antivirus on Windows 7 using a verified 30-day trial, then explore advanced settings like network ports, ssl, and application control, testing on a virtual pc.
Conclude the operating system security module and pivot to network security, inviting learners to explore a more interesting facet of security fundamentals.
Dive into network security in the third module, focusing on firewalls and related devices, with coverage of protocols and virtual private networks.
Understand how a stateful firewall protects your network by inspecting traffic and allowing only responses, and learn port forwarding for servers behind the firewall, including utm devices with ips.
Observe a real firewall and utm in action, with ips attack detection and a practical dashboard. Configure guest networks, deny by default, and enforce internet access rules.
Explore network security fundamentals by analyzing a real-world attack via firewall logs, intrusion prevention system signatures, and drop or allow decisions against SSH and ICMP brute-force attempts.
Test a firewall's antivirus module with the ikar-e virus simulator to verify it blocks threats before they reach a PC, and note its limitations and logs.
Configure network access protection using the NPS server, learn how NAP implements authentication, authorization, and accounting for VPN users with active directory accounts, and compare health policies and two-factor options.
Explore VLANs as a practical network isolation method by using a switch to assign ports to separate departments, enabling isolated communication and preparing for DMZ concepts.
Explore the DMZ concept and network isolation, using firewall rules to separate web services from the LAN, while allowing controlled communications via a stateful firewall.
Explore a real world DMZ deployment with a zone housing web, mail, and Active Directory services; learn how DMZs and VLANs isolate from LAN and are tested with ping.
IPsec is an umbrella of protocols that creates secure site-to-site or client-site VPNs with encryption and authentication, with licensing considerations and a packedlife.net resource for learning.
Examine how IPsec protocols such as IKE and ESP work, including phase one and phase two, to secure site-to-site VPN and protect integrity and authentication.
Explore how dns translates names to ip addresses, the role of a dns server, and why dnssec provides authentication to prevent spoofed responses, using wireshark for practice.
Learn to use Wireshark to capture and inspect network traffic, apply simple filters to view IP, DNS, ICMP, and HTTP messages in clear text for troubleshooting.
Explore network security topics covered in this module and introduce the final section on security software, tying together discussions beyond MTA with practical software considerations.
Explore security software as the final module of the MTA security fundamentals course, covering three sections and focusing on client email and server protection.
Explore client protection as the starting point of cyber protection. Compare Microsoft Security Essentials to antivirus options, and review offline files with encryption and user account control.
Learn how user account control (UAC) protects Windows systems by prompting before changes, explore its four main options, and review its evolution from Vista to Windows 7.
Explore how to protect your email server with cloud-based and on-prem protection. Learn to apply virus and spam filtering and external services like Mimecast.
Recognize phishing emails that imitate trusted brands like Visa, PayPal, eBay, Amazon, and Tesco, and verify links to protect Microsoft Exchange. Be cautious—never click suspicious links.
Explore server protection in MTA security fundamentals, covering separation of services, hardening, updates, DNS, domain controller protocols, and baseline security analyzer for exam readiness.
Explore how IPsec secures site-to-site vpn tunnels using esp with ikev2 and isakmp, compare transport and tunnel modes, and highlight secure key exchange with pfs and elliptic curve groups.
Compare site-to-site and remote access VPN tunnels, and outline hashing for data integrity alongside encryption with AES as a symmetric algorithm and public/private key pairs for asymmetric encryption.
Explore real-world security concepts in the Microsoft MTA security fundamentals: 98-367 course, focusing on identifying technology, software, and devices rather than configurations.
Create and link group policy objects (GPOs) in an OU to enforce user configurations for security. Explore administrative templates and network settings, and differences between enable, disable, and prohibit policies.
Learn to enable a vpn server on a small office router, set up a local user and vpn pool, and compare vpn server versus pass-through with ipsec on Cisco devices.
Discover remote support tools for connecting to devices, including TeamViewer for firewall traversal and VNC with server and viewer setup and password authentication in a local area network.
This lecture compares remote access vpn options, highlighting that pptp should be avoided, and recommending ipsec with ike and ssl vpn, including clientless ssl and openvpn profiles for secure access.
Learn how SHA1 collisions enable tampering with documents, as Google’s analysis shows two PDFs sharing the same hash, and explore the implications of hash collisions.
Boost wireless performance by optimizing router placement, avoiding congested channels, and using a network scanner to select optimal channels. Prefer 5 GHz for reliability and verify device compatibility.
Perform ethical hacking demonstrations by using hping3 to simulate ICMP and UDP denial of service, including random source IP addresses, on a Windows 10 VM, and analyze traffic with Wireshark.
Wherever there is a network, wired or wireless; there are threats.
Security is undeniably one of the most important components to every company's network: viruses, encryption, spam, permissions, wireless, passwords, firewalls, policies...
Microsoft Technology Associate (MTA) is a recommended entry point into IT certification. Pass just one exam and you’ll earn a certification!
This training will show you a detailed example and explanation of a man-in-the-middle attack including sniffing of passwords!
You will also learn:
·Fundamentals of Security Layers
·How to remove viruses and spyware
·Windows Operating System Security
·Network Security (firewalls, UTM, VPNs)
·Security Software Solutions
·Wireless security
·Troubleshooting tools and tips
·Quizzes to help you pass the exam
The course is perfect for anyone who seeks to learn the security fundamentals.
Contents and Overview
In over 5 hours of content including more than 60 lectures this course covers the basics of Microsoft Security Fundamentals. Each chapter closes with a quiz to make sure you can practice exam questions and test your knowledge before moving to the next section.
We start from scratch discussing Security Layers, RADIUS Server, how to manage users and passwords in Windows Server and Network Access Protection.
There is a section dedicated to Security Software where you will understand how to protect a Client, Email and Server.
Stand out from the crowd, learn security fundamentals and pass the MTA exam.
Join now!
Microsoft retied this exam some time ago, however, all the concepts are still valid and worth checking!