Practical TLS Год выпуска: 2024 Производитель: Pracnet Сайт производителя: https://classes.pracnet.net/courses/practical-tls Автор: Ed Harmoush Продолжительность: ~13h25m Тип раздаваемого материала: Видеоурок Язык: Английский Описание: Banging your head against the keyboard over SSL and TLS? Don’t worry, you’re not alone. There’s not a tech in the world that hasn’t googled an ambiguous SSL error. Sometimes you might get lucky with a tech hero at the end of your search. Other times, that answer you found on Stack Exchange from 2016 seems to have worked. But you're left with a nagging suspicion that at best you’ve merely achieved “security” by concealing the holes. When you treat each area of SSL/TLS as individual components, you miss out on the opportunity to understand the complete TLS ecosystem. Without this understanding, you’ll always be banging your head against your keyboard when new errors arise. You’ll dread the conversation coming up in interviews. And when your company faces a new deployment, you’ll be back at square one.
Содержание
Welcome =) 3 Lessons Welcome to Practical TLS Join the Discord Server Discord Server - Guided Instructions Module 1 - TLS/SSL Overview 7 Lessons What is SSL? What is TLS? How do SSL/TLS Protect your Data? Anti-Replay and Non-Repudiation Key Players TLS / SSL Versions - Part 1 TLS / SSL Versions - Part 2 Module 1 Review Questions Module 2 - Cryptography 10 Lessons Hashing Data-Integrity Encryption Public and Private Keys How TLS and SSL use Cryptography Public Key Infrastructure (PKI) RSA Diffie-Hellman Digital Signature Algorithm Module 2 Review Questions Module 3 - x509 Certificates and Keys 13 Lessons Overview of the SSL Process What is in a Certificate? Inspecting a Certificate Certificate Extensions LAB 3.0 - Setting up your Lab Environment LAB 3.1 - Inspecting the certificate of your favorite website What is in a Private Key? LAB 3.2 - Matching Certificates to Private Keys What is in a CSR? File Formats LAB 3.3 - Creating a Certificate Authority and two Signed Certificates LAB 3.4 - File Conversions Module 3 Review Questions Module 4 - Security through Certificates 12 Lessons Overview of the SSL Process, part 2 Certificate Validation - Part 1 Certificate Validation - Part 2 Certificate Chains - Part 1 Certificate Chains - Part 2 LAB 4.1 - Certificate Chains Basic Constraints Certificate Types (DV, OV, EV) Certificate Revocation Checking Revocation Status LAB 4.2 - Certificate Revocation Module 4 Review Questions Module 5 - Cipher Suites 10 Lessons Cipher Suites CS - Key Exchange - Part 1 CS - Forward Secrecy - Key Exchange - Part 2 CS - Authentication CS - Encryption - Part 1 CS - Encryption - Part 2 CS - Hashing Cipher Suites - Avoid, Accept, Prefer Enumerating Cipher Suites LAB 5.1 - Cipher Suite Enumeration Module 6 - TLS/SSL Handshake 15 Lessons Records - Part 1 Records - Part 2 TLS Handshake LAB 6.1 - Inspecting a TLS Handshake in Wireshark Handshake: Ephemeral Diffie-Hellman Handshake: Session Resumption Handshake: Mutual Authentication LAB 6.2 - Inspecting TLS Handshake Variants TLS Extensions Extension: OCSP Stapling Extension: Server Name Indication (SNI) Extension: Session Tickets LAB 6.3 - Inspecting Handshake Extensions Decrypting TLS LAB 6.4 - Decrypting TLS Module 7 - TLS Defenses 6 Lessons Major SSL/TLS Failures over the Years HTTP Strict Transport Security Certificate Authority Authorization Certificate Transparency - Part 1 - Overview Certificate Transparency - Part 2 - Process and Demonstration Certificate Transparency - Part 3 - Merkle Hash Trees Module 8 - TLS Attacks & Vulnerabilities 2 Lessons Module Description Insecure Renegotiation (Session Renegotiation) Module 9 - What's new in TLS 1.3? 9 Lessons Differences with TLS 1.3 Changes to Cipher Suites Changes to Handshake Changes to Renegotiation Changes to Session Resumption Middleboxes and Complications with migrating to TLS 1.3 Forward Secrecy and TLS 1.3 Decrypting TLS 1.3 LAB 9.1 - Capturing and Filtering TLS 1.3 Traffic Module 10 - TLS 1.3 Under the Hood 10 Lessons TLS 1.3 Key Schedule - Part 1 TLS 1.3 Handshake LAB 10.1 - Inspecting & Decrypting a TLS 1.3 Handshake TLS 1.3 Key Schedule - Part 2 TLS 1.3 Session Resumption TLS 1.3 PSK Mode Handshake TLS 1.3 Session Tickets TLS 1.3 0-RTT Handshake LAB 10.2 - Inspecting TLS 1.3 PSK Handshakes TLS 1.3 Mutual Authentication Module 11 - TLS 1.3 Extensions 6 Lessons Extensions Overview Review of TLS 1.3 Extensions already discussed Extension: Signature Algorithm & Signature Algorithm Certificate Extension: Cookies Extension: ALPN - Application Layer Protocol Negotiation Extension: PHA - Post Handshake Authentication Bonus Content 2 Lessons Free access to OpenSSL Training Course Infographics -- free to share
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum You cannot attach files in this forum You can download files in this forum
![[Quote]](./templates/default/images/lang/en/icon_quote.gif "Reply with quote"){kind=icon}
![[Profile]](./templates/default/images/lang/en/icon_profile.gif "View user's profile"){kind=icon}
![[PM]](./templates/default/images/lang/en/icon_pm.gif "Send private message"){kind=icon}
