IL - Microsoft Security Workshop: Implementing PowerShell Security Best Practices

Course Overview


This 1-day Instructor-led security workshop provides discussion and practical hands-on training for PowerShell. you will learn about PowerShell fundamentals, including its architectural design, its editions and versions, and basics of interacting with PowerShell.

Course Details
  • Duration: 1 Day
  • Level: 300

Who this course is designed for
  • This course is intended for IT Professionals that require a deeper understanding of Windows PowerShell security related features and exploits and to increase their knowledge level through a predominately hands-on experience implementing Windows PowerShell security features.

What You Will Learn

  • Provide an overview of Windows PowerShell
  • Describe PowerShell editions and versions
  • Install and use Windows PowerShell and PowerShell Core
  • Manage execution of local PowerShell scripts
  • Manage remote execution of Windows PowerShell
  • Manage remote execution of PowerShell Core
  • Describe security implications of using Constrained Language Mode
  • Describe the architecture and components of Windows PowerShell DSC
  • Recommend Windows PowerShell auditing and logging configuration
  • Provide examples of Windows PowerShell-based attacks
  • Use Windows PowerShell-based security tools
  • Provide an overview of Windows PowerShell-based security-related technologies
  • Implement Windows PowerShell logging by using Desired State Configuration (DSC)
  • Identify and mitigate Windows PowerShell-based exploits
  • Implement Just Enough Administration (JEA)

Prerequisites:

  • A good foundation in accessing and using simple Windows PowerShell commands
  • The current cybersecurity ecosystem
  • Experience with Windows Client and Server administration, maintenance, and troubleshooting
  • Basic experience and understanding of Windows networking technologies, to include Windows Firewall network setting, DNS, DHCP, WiFi, and cloud services concepts
  • Basic experience and understanding of Active Directory, including functions of a domain controller, sign on services, and an understanding of group policy
  • Knowledge of and relevant experience in systems administration, using Windows 10

Course outline

Module 1: PowerShell Fundamentals

Lessons: 
Overview of Windows PowerShell
PowerShell editions and versions
Running PowerShell

Module 2: PowerShell Operational Security

Lessons: 
Managing Local Script Execution
Managing remote execution capabilities of Windows PowerShell
Managing remote execution capabilities of PowerShell Core
Language Mode

Module 3: Implementing PowerShell-based Security

Lessons: 
Windows PowerShell DSC
Just Enough Administration (JEA)
Windows PowerShell Auditing and Logging

Module 4: Windows PowerShell-based Exploits and their Mitigation

Lessons: 
Windows PowerShell-based attacks
Windows PowerShell-based security tools
Summary of Windows PowerShell security-related technologies

;

Contact the experts at Opsgility to schedule this class at your location or to discuss a more comprehensive readiness solution for your organization. Contact us to enroll or book a class

Contact Us
Looking for on-demand training?
Try SkillMeUp.com