# APRICOT 2018 Security Workshop 2018.02.19-23 ## Daily Schedule | | | | --------- | ------------- | | Session 1 | 09:30 - 11:00 | | Tea | 11:00 - 11:30 | | Session 2 | 11:30 - 13:00 | | Lunch | 13:00 - 14:30 | | Session 3 | 14:30 - 16:00 | | Tea | 16:00 - 16:30 | | Session 4 | 16:30 - 18:00 | | | | ## Instructors | | | | | | ----------- | ---------------------- | --------------------------------------------------------- | ---------- | | **cristel** | Cristel Pelsser | [Uni Strasbourg](https://clarinet.u-strasbg.fr/~pelsser/) | France | | **moin** | Muhammad Moinur Rahman | DZCRD Networks Ltd | Bangladesh | | **maz** | Yoshinobu Matzusaki | [Internet Initiative Japan](http://www.iij.ad.jp) | Japan | | **Bhumika** | Bhumika Sapkota | Classic Tech Pvt Ltd | Nepal | ## Agenda | | | | | | :--------------- | :------------------------------------ | :--------------- | :----------------------------------------------------------- | | **Day 1** | **Topic** | **Inst** | **Presentations** | | | | | | | Session 0 | Intro | maz | | | | - facilities, admin, agenda and so on | | | | Session 1 | Assets & Threat Models | cristel | [Assets, Threats, Pragmatics](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/1-1-1.AssetsThreats.pdf) | | | - what assets are we protecting? | | | | | - from what kinds of attackers? | | | | | Threat Pragmatics | | | | | Social Engineering | | | | Session 2 | recap | maz | [IP protocols](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/ipv6-recap.pdf) | | Session 3 | Cryptography | maz | [Crypto Overview](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/crypto-hash.pdf) | | | - symmetric encryption | | [hello-win.dat](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/hello-win.dat) [hello-unix.dat](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/hello-unix.dat) | | | - asymmetric encryption | | | | | - digital signatures | | | | | - hash functions | | | | Session 4 | Cryptography Applications / PGP | moin | | | | - gpg | | [PGP](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/pgp.pdf) | | | - PGP Lab | moin | [PGP Lab](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/gpg4win.pdf) | | | | | | | **Day 2** | **Topic** | **Inst** | **Presentations** | | | | | | | Session 1 | Wireshark | cristel | [wireshark](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/2-2-1.Wireshark.pdf) | | | - wireshark lab | cristel | [wireshark lab](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/2-2-2.WiresharkExerciseData.zip) | | Session 2 | Cryptography Applications | | | | | - VPNs, IPsec, TLS | | [VPN IPsec TLS](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/vpn-tls.pdf) | | Session 3 | Cryptography Applications | | | | | - ssh | maz | [SSH](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/ssh.pdf) | | | - ssh lab | maz | [VM configurations](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/workshop-setup.pdf) | | Session 4 | Cryptography Applications | (if time allows) | | | | - l2tp/ipsec lab | maz | [IPSEC VPN](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/lab-ipsec.pdf) | | | | | | | **Day 3** | **Topic** | **Inst** | **Presentations** | | | | | | | Session 1 | Network Infrastructure | | | | | - overview | cristel | [rtrs-switches](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/3-1-1.rtrs-switches.pdf) | | | - data plane | cristel | [Filtering at border](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/3-1-2.Filtering-at-border.pdf) | | | - Logging and Monitoring | Bhumika | [Logging Monitoring](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/logging-monitoring.pdf) | | Session 2 | anomaly and firewalls | moin | | | | - anomaly | | [3-2-1 anomaly](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/anomaly.pdf) | | | - fierwalls | | [3-2-2 firewalls](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/firewalls.pdf) | | Session 3&4 | BGP Route Filtering | maz | [routing](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/lab-routing.pdf) | | | | | | | **Day 4** | **Topic** | **Inst** | **Presentations** | | | | | | | Session 1 | Securing Your Network | Bhumika | [SecuringYourNetwork.pdf](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/SecuringYourNetwork.pdf) | | | IDS | moin | | | | - IDS pragmatics - snort | | [4-2-1.snort](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/4-2-1.snort.pdf) | | | - IDS pragmatics - snort-lab | | [4-2-2.snort-lab](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/4-2-2.snort-lab.pdf) \| [4-2-3.snort_lab_answer](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/4-2-3.snort_lab_answer.rtf) | | Session 2 | Virus, Mail and Browsing | | | | | - Anti-virus | moin | [4-4-1 Anti-virus](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/4-4-1.anti-virus.pdf) | | | - Safe Mail Practices | moin | [4-4-2 Safer Mail](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/4-4-2.safer-mail.pdf) | | | - Safe Browsing Practices | Bhumika | [4-4-3 Safer browsing](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/4-4-3.safer-browsing.pdf) | | | - File & Disk Encryption | Bhumika | [4-4-4 File & Disk Encryption](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/4-4-4.file-encrypt.pdf) | | Session 3 | DNS & Application | | | | | DNS lab | maz | [lab-dns.pdf](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/lab-dns.pdf) | | | web server lab | maz | [lab-www.pdf](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/lab-www.pdf) | | Session 4 | DNSSEC lab | maz | [lab-dnssec.pdf](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/lab-dnssec.pdf) | | | | | | | **Day 5** | **Topic** | **Inst** | **Presentations** | | | | | | | Session 1 | DNSSEC lab 2 | maz | [lab-dnssec-cont.pdf](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/lab-dnssec-cont.pdf) | | Actual Session 1 | Inter-Host Protocols | | | | | - Covert Channels, TOR, Steganography | cristel | [Covert Channels](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/5-1-2.Covert-Channels.pdf) | | Session 2 | Scanning | moin | | | | - nmap | | [scanning](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/scanning.pdf) | | Session 3 | Inter-Network Cooperation | maz | | | | - Communities and Cooperation | | 5-2-1 Security Communities | | Session 4 | Dessert | All | [GroupPhoto](https://wiki.rg.net/raw-attachment/wiki/Apricot2018Sec/groupphoto-security.jpg) | | | | | |