Modified: Wednesday, October 27, 2010 Lab Notes- Chapter 1 - 10 Changes, Additions, Modifications for chapter labs If no comments are made for a particular lab, they should work smoothly in both Vista and Win7 Chapter 1- COMPLETE ALL LABS Notes/Corrections: 1-3: Used PS1 Model (home) –URL (direct) does not work (flash Install required) http://secunia.com/vulnerability_scanning/personal/ 1-4: Additional 1st step, skip steps + download tools link Chapter 2- COMPLETE ALL LABS EXCEPT AS NOTED Notes/Corrections: 2-1: Rootkit Revealer does not work with windows 7 – COMPLETE IN VISTA- RootKitRevealer is a neat tool 2-2: AV will block this so AV must be uninstalled 2-3: The USB MUST be removed and reinserted after write protection enabled 2-4: Does not work in Windows 7.0- SKIP THIS PROJECT IN EITHER OS 2-5: http://www.vmware.com/support/product-support/workstation/ Click on Download VMWorkstation link (left column)- OPTIONAL LAB Chapter 3- COMPLETE ALL LABS EXCEPT AS NOTED Note: Too many changes from Vista to Windows 7. Some of the following modifications are for both OS’s. 3-1: steps 4 and 5 don’t take you to the right place However if you look up advanced tools in your start box it should take you to the correct place. Then keep going as the directions tell you 3-3: To get this to work correctly, go to General Tab>>Browsing History>>Settings>>View Files Button, then select “Detail View” \ Step 10-11: Tools>>Manage Add-ons>>Add-on Types>>bottom of left column Show: dropdown box>>Run w/out permission Modified: Wednesday, October 27, 2010 Lab Notes- Chapter 1 - 10 3-4 Step 19 After downloading the rtf document, go to: http://www.microsoft.com/downloads/details.aspx?FamilyID=5534bee1-3cad-4bf0-b92ba8e545573a3e&displaylang=en to download the actual files. 3-5: SKIP THIS PROJECT IN BOTH OS’S 3-6 The Baseline Security Analyzer that is compatible with windows is located at http://www.microsoft.com/downloads/details.aspx?FamilyID=b1e76bbe-71df-41e8-8b52c871d012ba78&displaylang=en . Select EN-x86 for our configuration (32-bit). Works, but errors still come up as “some tasks could not be completed” – seems that they were, though. May work better in Vista. Chapter 4- COMPLETE ALL LABS 4-1 EXCEPT AS NOTED In step 10 – you may not be able to find the requested packet as the information may be encrypted. See if you can find it and if not- see all the other traffic passing through Wireshark 4-2 : SKIP THIS PROJECT IN BOTH OS’S 4-3 This is an interesting lab but does not always work. Try it out. If the hosts address does not resolve to the correct ip address, there may be a configuration that is not using the hosts table the same way on all operating systems. Perhaps DNS is set to “over-ride” the host table. See what your results are in both Win 7 and Vista Modified: Wednesday, October 27, 2010 Lab Notes- Chapter 1 - 10 Chapter 5- COMPLETE ONLY LAB 5-4 AS DIRECTED Chapter 6- COMPLETE LABS 6-1 AND 6-3 6-1 In Windows 7, Step 1 – go to Control Panel>>Network and Sharing Center>>Manually connect to a network Chapter 7- COMPLETE LABS 7-1 AND 7-2 7-1 In Step 2 – used User Essentials download (visual) 7-2 In Step 2 – went to Downloads>>Classic Edition (1.17)>>Portable Chapter 8- COMPLETE LABS 8-1 THOUGH 8-5 8-2 In Win 7, go to Start>>Control Panel>>Windows Cardspace 8-3 The website may be retired. Check around and see if you can find it- if not- skip lab Chapter 9- COMPLETE LABS 9-1: 9-1 AND 9-2 9-3 IS OPTIONAL Between step 1 and 2 add in you must scroll down and click Shields Up. In step 6 after going to control panel click windows firewall. Modified: Wednesday, October 27, 2010 Lab Notes- Chapter 1 - 10 9-2 Step 9: No tab anymore (Win 7), instead click on “Allow a program or feature through windows firewall” Use the 32 bit download NOT the 64 bit 9-3 NOTE: Not a bad lab but the evaluation key is e-mailed to your account, which puts you on a mailing list. If you don’t want this, disregard this lab…. Used GFI LANguard (build: 20100520) download. Evaluation Key required to run scans on this program. (free scanning for eval disabled w/out registration) Step 6-8: No prompts anymore Step 11: Click “scan” with current user credentials Modified: Wednesday, October 27, 2010 Lab Notes- Chapter 1 - 10 Chapter 10- COMPLETE LABS 10 – 1 10-1 THOUGH 10-4 Step 1:Win 7- Start>>Control Panel>>Administrative Tools Step 2: Arrow key, no longer plus for accordion list of sub-categories Step 3: Event View (Local) located on right, not left side Step 6: Windows logs located under main Overview and Summary now, not under Event View (local) SKIP STEPS 10- 11 10 – 2 Step 1: Same as 10-1, Start>>Control Panel>>Administrative Tools . 10-3 Step 2: Must go to right side panel on Event viewer, then View>>Customize and click on the “console tree” option to see subscriptions 10-4 Step 14: Click “Sensitivity Level” not “protection level” on interface.