The most trusted source for computer security training, certification and research.

select a course
Global Information Assurance Certification

SANS provides an unbiased view of the technical issues we face today.
-Mark Towers, Nokia

SECURITY 401

SANS Security Essentials Bootcamp Style

Laptop Required

A laptop is needed for the bootcamp sessions (held in the evening or during the day, depending on the class). If you do not have a laptop, you may still attend the sessions for the instruction component, but you will not receive the full value you would get by participating in the hands-on exercises.

Security 401: SANS Security Essentials courses consist of instruction and hands-on sessions. The bootcamp sessions are designed to allow students to utilize the knowledge gained throughout the course in an instructor-led environment. Students will have the opportunity to install, configure, and use the tools and techniques that they have learned. CDs will be provided that contain all of the tools required for the exercises.

NOTE: Do not bring a regular production laptop for this class! When installing software, there is always a chance of breaking something else on the system. Students should assume that all data could be lost.

Students attending this course are required to bring their own laptops that are properly configured. There is not enough time in class to help you install your laptop. Please note that your laptop must be properly installed and configured before you come to class. Students are also required to test their systems (as described below) prior to coming to class. In order to perform the exercises, students have three options. All options will work, but option 1 is recommended.

Option 1: Bring a laptop loaded with XP according to the instructions. This should be a default installation of Windows XP Professional SP2 with all of the options loaded. A fully patched system will work but is not a requirement.

For the Linux portion, bootable Knoppix can be used. The version that is recommended for the class is Knoppix STD, which can be found at http://www.knoppix-std.org/. This version has all of the tools needed for the class pre-installed. This CD is based off of Knoppix and does not load anything onto the hard drive. Everything runs from memory and has no impact on the XP installation. While SANS will provide a bootable Linux CD during the class, please download a version and test your system prior to coming to class. Most laptops work with Knoppix, however there are some newer laptops that have compatibility problems. If your system will not work with Knoppix, please use one of the other options below or troubleshoot the problem prior to coming to class.

Test for Option 1: Please run this test prior to coming to class. Boot your system off of Knoppix STD and confirm that your system fully boots and that the Linux GUI properly loads.

Option 2: Bring a laptop loaded with XP according to the instructions. This should be a default installation of Windows XP Professional SP2 with all of the options loaded.

For the Linux portion, Knoppix can also be run from VMWare. VMWare can be downloaded/purchased from http://www.vmware.com/. The version that is recommended for the class is Knoppix STD, which can be found at http://www.knoppix-std.org/. This version has all of the tools needed for class pre-installed. If option 1 does not work, option 2 can be used as a workaround.

Test for Option 2: Please run this test prior to coming to class. Using VMWare, boot your system into Knoppix STD and confirm that you system fully boots and that the Linux GUI properly loads.

Option 3: Bring a laptop loaded with XP according to the instructions. This should be a default installation of Windows XP Professional SP2 with all of the options loaded. For students wanting more of a challenge, you can bring your own variant of Linux that runs in VMware under Windows.

With Linux it is critical that all of the libraries are properly installed including the compilers. Prior to class, please make sure that all of the following tools compile and run:

  • Nessus
  • Tcp dump
  • Ethereal (wire shark)
  • Nessus
  • Hping2
  • Nmap
  • Snort

Test for Option 3: Please run this test prior to coming to class. Boot into Windows and confirm everything loads properly. Run Linux and properly install the above tools. If the tools run correctly, then the system is properly configured.

Your laptop should also have a properly configured CD-ROM drive, (optional) 802.11 wireless card that works only under Windows, and Ethernet NIC (network interface card). Be sure to check that the CD-ROM and Ethernet card work properly under the appropriate operating systems. Prior to coming to class, the network interfaces should be tested to prove that they can be configured and that all of the proper drivers have been installed.

The other requirement for this course is an understanding of both Windows XP Professional and Linux. We provide a document that introduces you to both of these operating systems. The document also gives an overview of the commands you need to understand for the class. This document is available at http://www.sans.org/conference/intro_xp_linux.pdf. You should review this document before attending the class and ensure that you know how to run the commands on your laptop.

In summary, before you arrive at the conference you should:

It is critical that you work through the documents before class so that you arrive with a properly configured laptop and a base understanding of Windows XP Professional and Linux.

I look forward to having you in class. If you have any questions, please do not hesitate to e-mail me at eric@sans.org.

By properly preparing, we know that you will have a knowledge rich and enjoyable bootcamp session.

Sincerely,
Dr. Eric Cole, Course Manager
Security 401: SANS Security Essentials Bootcamp Style