CCNA CyberOps in a Nutshell

Recently I got my certification of CCNA CyberOps and today I’ll share my experience and some useful tips for you.

Introduction: 

CCNA CyberOps is a Cisco certification and this certification contain two exams,

SECFND: Fundamental

SECOPS: Operations

Both exams are online with the almost 65 questions including multiple choice and drag and drop. Passing score of the exam is 825/1000 and it is mandatory to pass both the exam to earn the certificates. Click here to get more information.

Study:

This course is more likely self-based study course but there are 2 books are available which is SECFND and SECOPS.

Exam blueprint:

SECFND – https://learningnetwork.cisco.com/community/certifications/ccna-cyber-ops/secfnd/exam-topics

SECOPS – https://learningnetwork.cisco.com/community/certifications/ccna-cyber-ops/secops/exam-topics

Cheatsheet:

https://www.debuggex.com/cheatsheet/regex/python

https://www.debuggex.com/cheatsheet/regex/pcre

NIST Documents:

http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r2.pdf

http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-86.pdf

Wireshark Filter:

http://packetlife.net/media/library/13/Wireshark_Display_Filters.pdf

CVSS Calculator:

https://www.first.org/cvss/calculator/3.0

Wrap-up:

This exam is very well distributed and it contains practice of tools of Kali Linux and security onion along with the above reading.

*Cybrary Bonus: How to Map a Network Drive to be Used by a Service Account in Windows by @itsimeon

The simple and easy solution for mapping network drives as a service account.

How it works:

For this first step, you will need SysinternalsSuite by Mark Russinovich. You won’t need Sysinternals if you understand how this works.

1: Open an Administrator Command Prompt

2: Elevate to root using PSExec.exe:
Navigate to the folder containing SysinternalsSuite and execute the following command psexec -i -s cmd.exe you are now inside of a prompt that is nt authoritysystem
The -i is needed because drive mappings need to interact with the user.

3: Create the persistent mapped drive as the SYSTEM account with the following command net use z: \servernamesharedfolder /persistent:yes

4: PROFIT!

Now, let’s make a script to repeat those steps during startup.

Create a .bat file with this as the contents. Be sure to edit it to your needs.

net use z: \servernamesharedfolder /persistent:yes

Now create a task in the Task Scheduler

Windows + R, Taskschd.msc, Enter

Schedule a new task to run the bat file at startup. Name it whatever you want.
Be sure to run with highest privileges and make sure to switch the user to the System user.