Continuous Monitoring with PowerShell

سرفصل های دوره

PowerShell has many capabilities that support security management and analysis. This course will teach you how to continuously monitor network devices and computers using PowerShell.

1. Course Overview

1. Course Overview

02. Performing a Network Discovery

01. Agenda

02. Pinging Individual Networked Devices

03. Pinging Multiple Networked Devices

04. Demo - Ping Individual and Multiple Networked Devices

05. Demo - Ping Individual and Multiple Networked Devices Using .NET API

06. Demo - Ping Individual and Multiple Networked Devices Using CIM

07. Demo - Create Reusable Ping Function

08. Identifying Network Devices

09. Demo - Perform Name Resolution

10. Demo - Perform Name Resolution Using Nmap

11. Demo - Perform Name Resolution Using PowerShell

12. Creating an Asset List of Networked Devices

13. Demo - Create an Asset List of Networked Devices

14. Summary

3. Enumerating Services and Processes

1. Agenda

2. Identify Open Ports on Individual and Multiple Networked Devices

3. Demo - Create a Port [Echo] Server

4. Demo - Use the .NET API, Nmap, and a 3rd Party PowerShell Modules for Port Scanning

5. Identifying Running Processes and Services on Devices

6. Demo - Check for Running Services and Processes

7. Summary

4. Using the Common Information Model (CIM) Cmdlets to Inspect the Windows Operating System

1. Agenda

2. Using the Invoke-Command for Querying

3. Demo - Use the Invoke-Command

4. Understanding CIM PowerShell Commands

5. Using the Get-CimInstance and Invoke-CimMethod Comm

6. Summary

05. Collect Data from Multiple Machines for Analysis

01. Agenda

02. Understanding PowerShell Remoting

03. Demo - Enable PowerShell Remoting Using WS-MAN

04. Using SSH for Remoting to Windows and Linux

05. Demo - Prepare a Windows client and Ubuntu Linux for SSH Remoting, and Connect to Windows

06. Demo - Connect to a Linux Machine Using PowerShell Remoting Over SSH

07. Exporting Log Data from Remote Machines

08. Demo - Connect to a Windows Machine and Export Event Log Entries

09. Demo - Connect to a Linux Machine and Export Log Entries

10. Creating Scheduled Tasks Using PowerShell

11. Demo - Creating Scheduled Tasks Using PowerShell

12. Summary

06. Querying Exported Data for Process or Service Anomalies

01. Agenda

02. Analyzing Event Logs for Anomalies

03. Demo - Exporting and Querying Event Logs

04. Demo - Exporting Event Logs to CSV and XML

05. Writing Queries for Event Logs

06. Demo - Writing Queries Using FilterHashtable and Where-Object

07. Demo - Writing Queries Using FilterXML, FilterXPath, and More

08. Importing Event Log Entries into a Database

09. Demo - Import Event Log Entries into a Database

10. Demo - Query Event Log Entries in the Database and Re-import Entries

11. Summary

179,000 تومان

افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: PluralSight