CoachnestCoachnest
Sign InGet Started
Back to course

Complete Cybersecurity Bootcamp: Defend, Detect & Respond

…
—
Contents
1

What Is Cybersecurity & Why It Matters

Reading14mFree
2

The CIA Triad & Core Security Principles

Reading16mFree
3

Threat Actors, Motivations & the Attack Surface

Reading14m
4

Setting Up a Safe, Legal Practice Lab

Reading12m
5

Security Domains & Career Paths Overview

Video15m
6

Chapter 1 — Quiz

Quiz10m
7

TCP/IP, the OSI Model & How Data Travels

Reading18m
8

Common Protocols & Their Weaknesses

Reading16m
9

Firewalls, IDS/IPS & Network Segmentation

Reading16m
10

VPNs, TLS in Transit & Secure Remote Access

Reading14m
11

Reading Network Traffic with Wireshark

Video17m
12

Chapter 2 — Networking Quiz

Quiz12m
13

Symmetric vs Asymmetric Encryption

Reading16m
14

Hashing, Salting & Password Storage

Reading16m
15

Digital Signatures, Certificates & PKI

Reading16m
16

Crypto in Practice & Common Mistakes

Reading14m
17

How HTTPS & TLS Work — Visual Walkthrough

Video15m
18

Chapter 3 — Cryptography Quiz

Quiz12m
19

Linux Security Fundamentals & Hardening

Reading18m
20

Windows Security & Active Directory Basics

Reading16m
21

Endpoint Protection: Antivirus, EDR & Application Control

Reading14m
22

Data Protection, Backups & Ransomware Resilience

Reading14m
23

Hardening a Linux Server — Demo

Video16m
24

Chapter 4 — Endpoint Security Quiz

Quiz12m
25

How the Web Works & The HTTP Request Lifecycle

Reading16m
26

Injection Attacks: SQL Injection & Command Injection

Reading18m
27

Broken Access Control & Authentication Failures

Reading16m
28

Cross-Site Scripting (XSS), CSRF & Security Headers

Reading18m
29

Finding Web Vulnerabilities Safely — Demo

Video17m
30

Chapter 5 — Web Security Quiz

Quiz12m
31

Authentication Factors, MFA & Passwordless

Reading16m
32

OAuth 2.0, OpenID Connect, SAML & JWTs

Reading18m
33

Access Control Models: RBAC, ABAC & Least Privilege

Reading16m
34

Identity Threats: Phishing & Social Engineering

Reading14m
35

Setting Up MFA & SSO — Walkthrough

Video14m
36

Chapter 6 — Identity & Access Quiz

Quiz12m
37

Malware Taxonomy: Viruses, Worms, Trojans & Ransomware

Reading16m
38

The Cyber Kill Chain & MITRE ATT&CK

Reading16m

Network Attacks: DoS/DDoS, MITM & Sniffing

Reading14m
40

Vulnerability Management & Penetration Testing

Reading16m
41

Understanding the MITRE ATT&CK Framework — Overview

Video15m
42

Chapter 7 — Threats & Attacks Quiz

Quiz12m
43

The SOC, SIEM & Log Management

Reading16m
44

Detection, Threat Hunting & Threat Intelligence

Reading16m
45

The Incident Response Lifecycle

Reading18m
46

Digital Forensics Fundamentals

Reading14m
47

Inside a SOC: Analyst Workflow — Walkthrough

Video16m
48

Chapter 8 — SecOps & IR Quiz

Quiz12m
49

Cloud Security & the Shared Responsibility Model

Reading16m
50

Container & Kubernetes Security

Reading16m
51

DevSecOps: Shifting Security Left

Reading16m
52

Secure SDLC & Threat Modeling

Reading14m
53

Securing a CI/CD Pipeline — Demo

Video15m
54

Chapter 9 — Cloud & DevSecOps Quiz

Quiz12m
55

Risk Management Fundamentals

Reading16m
56

Security Frameworks, Standards & Compliance

Reading16m
57

Security Awareness, Policy & the Human Factor

Reading14m
58

Cybersecurity Careers, Certifications & Next Steps

Reading16m
59

Cybersecurity Career Roadmap — Overview

Video14m
60

Chapter 10 — GRC & Careers Quiz

Quiz12m
←→navigate lessons
Chapter 7 of 10·Chapter 7 — Threats, Malware & Attack Techniques
Lesson 39 of 60Reading14 min

Network Attacks: DoS/DDoS, MITM & Sniffing

Network Attacks: DoS/DDoS, MITM & Sniffing¶

Attacks against availability and confidentiality at the network layer — and how to blunt them.

Denial of Service (DoS / DDoS)¶

A DoS overwhelms a target so legitimate users can't reach it. A DDoS uses many distributed sources (a botnet), making it far harder to block.

Categories¶

TypeMechanismExample
VolumetricSaturate bandwidthUDP/ICMP floods, amplification
ProtocolExhaust connection stateSYN flood
ApplicationExhaust app resourcesHTTP request floods

Amplification abuses services (DNS, NTP, memcached) that return large responses to small spoofed requests, multiplying the attack's volume.

Defenses¶

  • Upstream DDoS mitigation / scrubbing (Cloudflare, Akamai, AWS Shield).
  • Rate limiting and connection limits.
  • Anycast to distribute load geographically.
  • Over-provisioning and autoscaling for surges.
  • Disable/secure services prone to amplification.

Man-in-the-Middle (MITM)¶

The attacker secretly positions between two parties to read or alter traffic.

Techniques: ARP spoofing (LAN), rogue Wi-Fi access points, DNS spoofing, BGP hijacking.

Defenses¶

  • Encryption with authentication (TLS) — MITM can intercept but not read or forge.
  • HSTS and certificate validation to prevent downgrade/SSL-strip.
  • Certificate pinning for high-value mobile apps.
  • Avoid sensitive actions on untrusted Wi-Fi; use VPN.
  • Dynamic ARP inspection and DHCP snooping on managed switches.

Sniffing / Eavesdropping¶

Capturing network traffic. On a switched network, attackers may use ARP spoofing or port mirroring; on Wi-Fi, they capture radio frames. Tools like Wireshark are legitimate for defenders analyzing their own networks.

Defense: encrypt everything in transit. If traffic is TLS-protected, sniffing yields ciphertext, not secrets.

Wireless-Specific Threats¶

  • Evil twin — rogue AP mimicking a legit SSID.
  • WPA2 weaknesses — use WPA3; strong, unique PSKs or 802.1X (enterprise).
  • Deauthentication attacks to force reconnects to a rogue AP.

The Common Thread¶

Most network attacks are defeated by two habits: encrypt and authenticate all traffic, and monitor for anomalies. Confidentiality and integrity come from crypto; availability comes from capacity, filtering, and upstream scrubbing.

Previous

The Cyber Kill Chain & MITRE ATT&CK

Next

Vulnerability Management & Penetration Testing

Use ← → arrow keys to navigate between lessons