CCNP Security SCOR 350-701: Cisco Security Core Technologies

Discover Cisco's updated certifications since February 2020, including new certification numbers, and learn how Cisco, a leading manufacturer of networking devices, delivers security solutions like firewalls and web security.

Cisco's February 2020 updates overhaul CCNA and CCNP tracks, remove CCMA specializations, consolidate paths, and introduce core and concentration exams for streamlined certification.

Learn that Cisco re-certifications now have a three-year validity for all certifications, including CCI and specialist tracks, after earlier varied durations.

Explore the six CCNP certification tracks—enterprise and data center—with wireless modules—and a path to expert level, including datacenter security.

Explore the six CCIE tracks, including enterprise infrastructure and wireless, security, service water, and collaboration, and learn how prerequisites and version 6 exams shape the certification path.

Learn how Cisco certification migrations convert existing CCNA/CCNP/CCI credentials to new status after February 24, 2020, use the migration tool, and understand three-year recertification across tracks.

Pass the core exam and one consultation exam to earn your CCNP certification; the core paper provides foundation knowledge and common concepts, while specialization offers deeper expertise.

Compare physical dedicated lab setups with virtual and simulation tools, including Cisco packages, Genesee options, virtual Internet routing lab licenses, and other simulation tools for routing and switching practice.

Learn how to use GNS3 and EVE-NG to run Cisco virtual images, differentiate L2 and L3 images, and simulate routers, switches, and security devices like Firepower in lab topologies.

Explore GNS3 as an industry simulation tool that replaces costly physical labs with virtual images. Learn about device support, required images, and basic hardware needs.

Install GNS3 on Windows by following official steps, download the all-in-one file from the Genesis website, verify Windows version and virtualization, then launch GNS3.

learn how to add ios images to gns3 using the setup wizard, including sourcing images from Cisco, copying them to your machine, and configuring host bindings, ram, and platform slots.

Explore default topology on iOS routers with initial configurations, using loopback and logical interfaces, subnets, and simulated WAN connections to test routing and filtering in a controlled lab.

Configure a basic iOS default topology by dragging images, saving a new project, and applying initial configs via the command line console, with manual or auto LPC values.

Connect the gns3 topology to your host computer using a microsoft loopback adapter or vmware interfaces. Configure the cloud interfaces, assign ip addresses, and test reachability while checking firewall settings.

Install and license the GNS3 software, download the matching GNS3 VM image, and import it into VMware or VirtualBox. Ensure host bindings and alignment for VM communication and image integration.

Learn how to configure IOSv in GNS3 for layer 2 and layer 3 networks by importing appliance and image files and setting up VM integration.

Set up ASAv in GNS3 by importing the appliance file and the Cisco ASA image. Download the images from Cisco, import them, and boot the VM to simulate the firewall.

Explore GNS3 IOU L2-L3 configuration steps by configuring image licensing via a notepad file, adding and aliasing images in GNS3, and dragging devices to simulate switching environments for Cisco labs.

Explore the EVE-NG virtual platform by downloading and importing the VM, configuring memory and CPUs, then use the UI to build labs with routers, switches, and supported images.

Explain the choice between the free community edition and the professional eve-ng license for advanced labs, how to download the professional image, and how to purchase and apply the license.

Upload IOL and L-3 images into eve-ng, place them in the OPD/lab/addons/bin folder, ensure the license file, then start the lab and verify via console.

Upload SD-WAN images to EVE-NG by connecting to the server, logging in, and transferring images from your local drive into the correct folders with proper naming, using a full license.

Upload and organize preconfigured Viptela images in an EVE-NG lab, renaming folders as needed. Add vmanage and vEdge devices, adjust interfaces and permissions, then start devices for configuration.

Learn how to upload and configure ASA images in EVE-NG, including using FileZilla, copying and renaming files, and booting lab nodes.

Master the process of running Windows operating systems inside a eve-ng topology by uploading ISO or preconfigured images, booting Windows clients or servers, and using VNC for access.

Learn to manage ASA 8.4 images in eve-ng, balancing older images with the new gen s3 a7 image for labs like sport channel and failover.

Demonstrates connecting a Windows PC to an existing network topology, configuring Windows Server as a certificate authority for authentication via certificates, and validating IP-based reachability across interfaces.

Connect a Windows PC to the internet via a management cloud interface to obtain an IP from the subnet, then use remote desktop to access the server and download Firefox.

learn how to deploy csr1000v on eve-ng using seesaw ibis xy image, upload and configure the image, and build a two-csr topology with edge connections to access networks.

Explore the CCNP Security certifications path. Learn how the core exam provides foundation while concentration papers deepen expertise in firewall, web and email security, VPN, and automation.

Master the CCNP security core SCOR 350-701 by passing the core and consultation exams to qualify for the CCL lab schedule and the three certifications.

Explore core security concepts, vulnerabilities, and attacks, then dive into cryptography basics, threat mitigation, and network defense through VPNs, firewalls, cloud security, content protection, and endpoint security.

Understand the basics of network security, including assets to protect, threats, and vulnerabilities. Learn how countermeasures safeguard assets against weaknesses, malicious code, and phishing threats.

Learn how confidentiality protects data through encryption and ciphertext in transit. Explore how integrity uses hashing to detect tampering and how availability defends against denial-of-service attacks to keep networks up.

Identify the three threat types: physical, internal, and external, and outline mitigations with physical security, access controls, backups, data loss prevention, firewalls, and intrusion detection systems.

Classify assets by type—information, software, and hardware—and assign value-based prioritization, replacement cost, and lifetime to guide confidentiality levels and owner, custodian, and end-user responsibilities.

Classify and apply countermeasures across administrative, physical, and technical controls to reduce risk, including security policies, trainings, audits, background verifications, NAC, firewalls, and guest access restrictions.

Identify and classify vulnerabilities in networks and systems, recognizing weaknesses in protocols, software, or design that attackers exploit to breach security.

Explore design principles for network security, including policies, defense in depth, firewalls, and antivirus. Emphasize network segmentation, least privileges, separation of duties, and auditing for accountability.

Explore the motivations behind network attacks, including financial gain from online banking and credit card data, service disruption for competitors, and geopolitical cyber operations between nations.

Learn how social engineering attacks manipulate people to reveal confidential information, including watching what you type, phishing emails, fake security calls, credential theft, and lost USB devices that introduce malware.

Phishing attacks use email phishing, dns record manipulation to redirect users to fake banking sites, and phone-based scams to collect credentials from nontechnical users.

Educate end users with security policies, training, and simulations to prevent social engineering and phishing. Verify identities and avoid sharing personal or financial information; deploy antivirus, firewalls, and email filters.

Explore denial of service attacks that overwhelm resources with continuous invalid traffic, denying legitimate users access, and examine IP spoofing, TCP three-way handshake exploitation, and ICMP overflow floods.

Explain how a DDoS floods a victim from multiple sources via a botnet of compromised computers, reducing availability.

Learn spoofing attacks where an attacker fakes device or user identity to redirect traffic in a man-in-the-middle interception. Explore false DHCP, DNS, and application spoofing across LAN and internet.

Configure ACLs on the open interface to drop private IP source traffic and prevent spoofing. Use reverse forwarding check, port security, DCP snooping, and IPsec to mitigate spoofing.

Explore how man-in-the-middle attacks intercept communications by spoofing as a web server, using spoofed packets such as ip or dhcp, and how dynamic ip inspection defends against these threats.

Understand password attacks including guessing, brute force, and keyloggers, and learn how attackers compromise passwords to gain access to devices, networks, and accounts.

Implement strong password policies to mitigate password attacks by enforcing 10+ character length, complex passwords, non-reuse across systems, and multi-factor authentication, while avoiding plaintext storage and promoting one-time passwords.

Examine reflector attacks by showing how spoofed victim IPs trigger a flood of requests, redirecting replies to the victim and causing denial of service.

Explore amplification attacks as a distributed denial of service method where a single attacker uses multiple devices to spoof a victim's IP and flood DNS servers.

Understand reconnaissance attacks that gather network information, identify devices, operating systems, services, and IP addresses using tools like Nmap and packet sniffers to plan future attacks.

Mitigate reconnaissance attacks by deploying border firewalls, detecting network sweeps, and enforcing two-factor authentication and digital certificates; encrypt traffic to deter sniffing and detect sniffers.

Explore how malicious code hides in downloaded files and attachments to deploy viruses, infect data and hard drives, and spread across networks by needing a host.

Discover how worms operate as self-contained programs that scan networks, identify targets, and inject code to compromise devices without needing a host.

Explains how trojan horses masquerade as legitimate software or updates, delivering malicious code that runs in the background to infect computers and networks.

Understand how hackers gain unauthorized access to networks and stay undetected to steal data for financial gain. Recognize why targets like defense, manufacturing, and finance are sought to minimize detection.

Identify script kiddies as beginner attackers who rely on free online hacking tools to try to access networks, highlighting their lack of hands-on scripting expertise.

Explore darknet malware services that offer fake tools and support for subnet attacks, guiding you to define targets, select data interests, and connect to use the tools.

Learn how authentication verifies user identities, authorization restricts access to resources, and accounting tracks actions, with examples of device administration and network access controlling remote logins and guest access.

Enable Cisco telemetry services to monitor network activity, generate alerts and reports, detect unusual traffic and device issues, synchronize time with NDP, and log and export traffic statistics to collectors.

A firewall is a system that manages and inspects traffic between internal LANs and the Internet, applying policies to allow or deny access.

Identify and prevent intrusions with ips by monitoring network traffic, detecting abnormal or malicious packets, and blocking or dropping threats while logging and alerting administrators.

Explore how virtual private networks connect multiple customer sites over a transport network using provider edge devices, with point-to-point and point-to-multipoint topologies, over internet or private links, to reduce costs.

Next generation firewalls extend beyond stateless filtering, adding dynamic traffic filtering, identity-based access control, and application visibility with an intrusion prevention system.