Allow-listing (aka Whitelisting) - Implementing Easy to Manage AppLocker (or other Allow-listing solutions) in an Enterprise
Kestus:
8 academic hours
Toimumiskoht:
IT Koolitus
Course location: Virtual training
Allow-listing (aka Whitelisting) ehk Lubatud toimingute loendisse lisamine on küberturbe strateegia, mille kohaselt saab kasutaja oma arvutis teha ainult selliseid toiminguid, mida administraator on selleks eelnevalt selgesõnaliselt lubanud.
Selle asemel, et pidevalt küberründajatest püüda olla samm eespool ja nende „pahatahtlikke“ koode tuvastada ja blokeerida, koostavad IT-töötajad hoopis loetelu heakskiidetud rakendustest, millele arvuti või mobiilseade juurde pääseb. Sisuliselt on kasutajal juurdepääs ainult piiratud kogusele funktsionaalsustele, mida administraator märkinud „ ohutuks“.
Lubatud toimingute loendisse lisamine on üsna äärmuslik lukustamismeede, mis korraliku rakendamise korral hoiab aga paljud küberturbe probleemid eemal!
Join this workshop, where one of the leading experts in Windows OS and Security, Sami Laiho, shows you how to effectively and securely deploy AppLocker in your environment.
Sami has deployed AppLocker for tens of companies ranging from one-man to 500000 seat companies.
You will learn:
- how to run the project,
- how to manage AppLocker
- and how to keep it secure.
EXTRA: You will also receive prebuilt, pre-hardened, configurations that you can use at your own company.
Even if you don’t have Enterprise, but only the Pro version of Windows, or if you want to deploy the new Windows Defender Application Control, you can apply this knowledge.
Target audience:
Technical professionals (Junior and up) or project managers responsible for security projects.
Prerequisites to the course (recommended):
Basic knowledge of Windows Operating System, Networks and Active Directory.
The prerequisite for issuing the certificate is full participation in training.
Length: 8 academic hours
The training topics and description:
Module 1: Allow-listing (aka Whitelisting) in General
- Different allow-listing (aka whitelisting) options in Windows
- Allow-listing (aka Whitelisting) vs Deny-listing (aka BlackListing)
- AppLocker basics
- Windows Defender Application Control?
Module 2: Implementing AppLocker
- How to run an AppLocker project
- Logging what apps a company has
Module 3: Managing AppLocker
- Using GUI and PowerShell to add trusted apps
- Using correct rule types
- Getting from thousands of rules to just tens
- Keeping AppLocker safe – fighting against LOLBins
Module 4: Troubleshooting AppLocker
- Bypassing AppLocker
- What fails with an enterprise implementation of allow-listing (aka whitelisting)
The training price also includes:
study materials;
a trainer's consultation on the topics learned by e-mail after the training;
certificate.
You can participate in the training with the Unemployment Insurance Fund training card.
See you at the training!
Loe koolitaja artiklit:
Uued küberturbe koolitused: kaitse võrku turvatarkvara eest maksmata, väldi administraatori õigusi
Koolitajad
Sami Laiho
Sami Laiho is one of the world’s leading professionals in the Windows OS and Security. Sami has been working with and teaching OS troubleshooting, management, and security since 1996.
n 2019 Sami was chosen by TiVi-magazine as one of the top 100 influencers in IT in Finland. He is the 11th most followed person in his field in Finland.
At Ignite 2018, Sami’s “Behind the Scenes: How to build a conference winning session” and “Sami Laiho: 45 Life Hacks of Windows OS in 45 minutes” sessions were ranked as #1 and #2 out of 1708 sessions!! This was the first time in the history of the conference that anyone has been able to do this.
Before that, at Ignite 2017, the world’s biggest Microsoft event, Sami was evaluated as the Best External Speaker! Also, Sami’s sessions were evaluated as the Best session in TechEd North America, Europe and Australia in 2014, and Nordic Infrastructure Conference in 2016, 2017 and 2019.
Specializes in and trains:
- Troubleshooting
- Security
- Centralized Management
- Active Directory
- Hacking
- Penetration testing
- Social Engineering
Trophies:
- Best Session (and #2) out of 1708 sessions at Microsoft Ignite 2018, Orlando
- Best External Speaker & Best Session by an External Speaker at Microsoft Ignite 2017, Orlando
- Best Sessions (#1 and #2) at AppManagEvent 2018, Utrecht
- Best Session at the Sharepoint HPR 2017, Helsinki
- Best Sessions (#1 and #2) at TechTalks 2017, Helsinki
- Best Session at AppManagEvent 2017, Utrecht
- Best Speaker at TechDays Sweden 2016, 2018, Stockholm
- Best session at TechTalks 2016, Helsinki
- Best Speaker at NIC Conference 2016, 2017 and 2019, Oslo (More info)
- Best session at TechTalks 2015, Helsinki
- Ignite 2015 Chicago – #2 in the evals (over 1000 speakers)
- TechEd Europe 2014 – Best session (More info)
- TechEd North America 2014 – Best session, Best Speaker (More info)
- TechEd Australia 2013 � Best session, Best speaker
- TechEd Europe 2013 � Best Session by an external speaker
- Best session at Techdays Finland 2013
- Best session by Microsoft STEP member in 2012
- Best session at Techdays Finland 2012
- Best session at Techdays Finland 2011
Sami Laiho
Sami Laiho is one of the world’s leading professionals in the Windows OS and Security. Sami has been working with and teaching OS troubleshooting, management, and security since 1996.
n 2019 Sami was chosen by TiVi-magazine as one of the top 100 influencers in IT in Finland. He is the 11th most followed person in his field in Finland.
At Ignite 2018, Sami’s “Behind the Scenes: How to build a conference winning session” and “Sami Laiho: 45 Life Hacks of Windows OS in 45 minutes” sessions were ranked as #1 and #2 out of 1708 sessions!! This was the first time in the history of the conference that anyone has been able to do this.
Before that, at Ignite 2017, the world’s biggest Microsoft event, Sami was evaluated as the Best External Speaker! Also, Sami’s sessions were evaluated as the Best session in TechEd North America, Europe and Australia in 2014, and Nordic Infrastructure Conference in 2016, 2017 and 2019.
Specializes in and trains:
- Troubleshooting
- Security
- Centralized Management
- Active Directory
- Hacking
- Penetration testing
- Social Engineering
Trophies:
- Best Session (and #2) out of 1708 sessions at Microsoft Ignite 2018, Orlando
- Best External Speaker & Best Session by an External Speaker at Microsoft Ignite 2017, Orlando
- Best Sessions (#1 and #2) at AppManagEvent 2018, Utrecht
- Best Session at the Sharepoint HPR 2017, Helsinki
- Best Sessions (#1 and #2) at TechTalks 2017, Helsinki
- Best Session at AppManagEvent 2017, Utrecht
- Best Speaker at TechDays Sweden 2016, 2018, Stockholm
- Best session at TechTalks 2016, Helsinki
- Best Speaker at NIC Conference 2016, 2017 and 2019, Oslo (More info)
- Best session at TechTalks 2015, Helsinki
- Ignite 2015 Chicago – #2 in the evals (over 1000 speakers)
- TechEd Europe 2014 – Best session (More info)
- TechEd North America 2014 – Best session, Best Speaker (More info)
- TechEd Australia 2013 � Best session, Best speaker
- TechEd Europe 2013 � Best Session by an external speaker
- Best session at Techdays Finland 2013
- Best session by Microsoft STEP member in 2012
- Best session at Techdays Finland 2012
- Best session at Techdays Finland 2011
Kestus:
8 academic hours
Toimumiskoht:
IT Koolitus
Course location: Virtual training
Allow-listing (aka Whitelisting) ehk Lubatud toimingute loendisse lisamine on küberturbe strateegia, mille kohaselt saab kasutaja oma arvutis teha ainult selliseid toiminguid, mida administraator on selleks eelnevalt selgesõnaliselt lubanud.
Selle asemel, et pidevalt küberründajatest püüda olla samm eespool ja nende „pahatahtlikke“ koode tuvastada ja blokeerida, koostavad IT-töötajad hoopis loetelu heakskiidetud rakendustest, millele arvuti või mobiilseade juurde pääseb. Sisuliselt on kasutajal juurdepääs ainult piiratud kogusele funktsionaalsustele, mida administraator märkinud „ ohutuks“.
Lubatud toimingute loendisse lisamine on üsna äärmuslik lukustamismeede, mis korraliku rakendamise korral hoiab aga paljud küberturbe probleemid eemal!
Join this workshop, where one of the leading experts in Windows OS and Security, Sami Laiho, shows you how to effectively and securely deploy AppLocker in your environment.
Sami has deployed AppLocker for tens of companies ranging from one-man to 500000 seat companies.
You will learn:
- how to run the project,
- how to manage AppLocker
- and how to keep it secure.
EXTRA: You will also receive prebuilt, pre-hardened, configurations that you can use at your own company.
Even if you don’t have Enterprise, but only the Pro version of Windows, or if you want to deploy the new Windows Defender Application Control, you can apply this knowledge.
Target audience:
Technical professionals (Junior and up) or project managers responsible for security projects.
Prerequisites to the course (recommended):
Basic knowledge of Windows Operating System, Networks and Active Directory.
The prerequisite for issuing the certificate is full participation in training.
Length: 8 academic hours
The training topics and description:
Module 1: Allow-listing (aka Whitelisting) in General
- Different allow-listing (aka whitelisting) options in Windows
- Allow-listing (aka Whitelisting) vs Deny-listing (aka BlackListing)
- AppLocker basics
- Windows Defender Application Control?
Module 2: Implementing AppLocker
- How to run an AppLocker project
- Logging what apps a company has
Module 3: Managing AppLocker
- Using GUI and PowerShell to add trusted apps
- Using correct rule types
- Getting from thousands of rules to just tens
- Keeping AppLocker safe – fighting against LOLBins
Module 4: Troubleshooting AppLocker
- Bypassing AppLocker
- What fails with an enterprise implementation of allow-listing (aka whitelisting)
The training price also includes:
study materials;
a trainer's consultation on the topics learned by e-mail after the training;
certificate.
You can participate in the training with the Unemployment Insurance Fund training card.
See you at the training!
Loe koolitaja artiklit:
Uued küberturbe koolitused: kaitse võrku turvatarkvara eest maksmata, väldi administraatori õigusi
Koolitajad
Sami Laiho
Sami Laiho is one of the world’s leading professionals in the Windows OS and Security. Sami has been working with and teaching OS troubleshooting, management, and security since 1996.
n 2019 Sami was chosen by TiVi-magazine as one of the top 100 influencers in IT in Finland. He is the 11th most followed person in his field in Finland.
At Ignite 2018, Sami’s “Behind the Scenes: How to build a conference winning session” and “Sami Laiho: 45 Life Hacks of Windows OS in 45 minutes” sessions were ranked as #1 and #2 out of 1708 sessions!! This was the first time in the history of the conference that anyone has been able to do this.
Before that, at Ignite 2017, the world’s biggest Microsoft event, Sami was evaluated as the Best External Speaker! Also, Sami’s sessions were evaluated as the Best session in TechEd North America, Europe and Australia in 2014, and Nordic Infrastructure Conference in 2016, 2017 and 2019.
Specializes in and trains:
- Troubleshooting
- Security
- Centralized Management
- Active Directory
- Hacking
- Penetration testing
- Social Engineering
Trophies:
- Best Session (and #2) out of 1708 sessions at Microsoft Ignite 2018, Orlando
- Best External Speaker & Best Session by an External Speaker at Microsoft Ignite 2017, Orlando
- Best Sessions (#1 and #2) at AppManagEvent 2018, Utrecht
- Best Session at the Sharepoint HPR 2017, Helsinki
- Best Sessions (#1 and #2) at TechTalks 2017, Helsinki
- Best Session at AppManagEvent 2017, Utrecht
- Best Speaker at TechDays Sweden 2016, 2018, Stockholm
- Best session at TechTalks 2016, Helsinki
- Best Speaker at NIC Conference 2016, 2017 and 2019, Oslo (More info)
- Best session at TechTalks 2015, Helsinki
- Ignite 2015 Chicago – #2 in the evals (over 1000 speakers)
- TechEd Europe 2014 – Best session (More info)
- TechEd North America 2014 – Best session, Best Speaker (More info)
- TechEd Australia 2013 � Best session, Best speaker
- TechEd Europe 2013 � Best Session by an external speaker
- Best session at Techdays Finland 2013
- Best session by Microsoft STEP member in 2012
- Best session at Techdays Finland 2012
- Best session at Techdays Finland 2011
Sami Laiho
Sami Laiho is one of the world’s leading professionals in the Windows OS and Security. Sami has been working with and teaching OS troubleshooting, management, and security since 1996.
n 2019 Sami was chosen by TiVi-magazine as one of the top 100 influencers in IT in Finland. He is the 11th most followed person in his field in Finland.
At Ignite 2018, Sami’s “Behind the Scenes: How to build a conference winning session” and “Sami Laiho: 45 Life Hacks of Windows OS in 45 minutes” sessions were ranked as #1 and #2 out of 1708 sessions!! This was the first time in the history of the conference that anyone has been able to do this.
Before that, at Ignite 2017, the world’s biggest Microsoft event, Sami was evaluated as the Best External Speaker! Also, Sami’s sessions were evaluated as the Best session in TechEd North America, Europe and Australia in 2014, and Nordic Infrastructure Conference in 2016, 2017 and 2019.
Specializes in and trains:
- Troubleshooting
- Security
- Centralized Management
- Active Directory
- Hacking
- Penetration testing
- Social Engineering
Trophies:
- Best Session (and #2) out of 1708 sessions at Microsoft Ignite 2018, Orlando
- Best External Speaker & Best Session by an External Speaker at Microsoft Ignite 2017, Orlando
- Best Sessions (#1 and #2) at AppManagEvent 2018, Utrecht
- Best Session at the Sharepoint HPR 2017, Helsinki
- Best Sessions (#1 and #2) at TechTalks 2017, Helsinki
- Best Session at AppManagEvent 2017, Utrecht
- Best Speaker at TechDays Sweden 2016, 2018, Stockholm
- Best session at TechTalks 2016, Helsinki
- Best Speaker at NIC Conference 2016, 2017 and 2019, Oslo (More info)
- Best session at TechTalks 2015, Helsinki
- Ignite 2015 Chicago – #2 in the evals (over 1000 speakers)
- TechEd Europe 2014 – Best session (More info)
- TechEd North America 2014 – Best session, Best Speaker (More info)
- TechEd Australia 2013 � Best session, Best speaker
- TechEd Europe 2013 � Best Session by an external speaker
- Best session at Techdays Finland 2013
- Best session by Microsoft STEP member in 2012
- Best session at Techdays Finland 2012
- Best session at Techdays Finland 2011
Lisainfo
Registreerudes e-poe, e-kirja või telefoni teel, saadame Teile arve ja täpsema info osalemise kohta.
Üksteist päeva enne koolitust saadame Teile e-kirjaga meenutuse osalemise infoga.
Koolitusel osalemine on nimeline, kuid saate osalejat tasuta muuta kuni koolituse alguseni.
Koolituse eest tasumine toimub arvel viidatud arveldusarvele. Arve saadetakse maksja aadressile e-postiga. Arve tuleb tasuda enne koolituse algust arvel märgitud maksetähtajaks.
IT Koolitus on Eesti Töötukassa koolituskaardi koostööpartner. Tutvuge koolituskaardi infoga SIIN.
Täpsema info saamiseks võtke meiega ühendust telefonil 618 1727 või [email protected].
Tühistamisinfo
Kui te ei saa mingil põhjusel koolitusel osaleda, palun andke sellest teada e-posti aadressil [email protected]. Kui teatate mitteosalemisest vähemalt 10 tööpäeva ette, lepime Teiega kokku uue aja või tagastame 100% koolituse maksumusest. Tagastame koolituse osalustasu täismahus juhul, kui pole tehtud koolituse korraldamisega seotud kulutusi (ostetud õppematerjale jms).
Kui teatate mitteosalemisest 5-9 tööpäeva enne koolitust, kuulub tasumisele 50% arvest.
Hilisemal teavitamisel, koolitusele mitteilmumisel, sellest mitteteatamisel või koolituse poolelijätmisel õppetasu ei tagastata.
Asukoht ja kontaktid
Aadress
Vana-Lõuna 39/1, TallinnIT Koolitus | Vana-Lõuna 39/1, Tallinn | 6181727 | [email protected]