Linux Hardening Workshop: Basics
RCCE students will learn Linux endpoint security including OS hardening, kernel security modules, filesystem permissions, SSH hardening, service management, and Linux audit subsystem configuration. RCCE students will learn to harden Linux operating systems following CIS Benchmarks, configure SELinux and AppArmor policies, implement secure filesystem permissions and access controls, harden SSH configurations and key management, manage systemd services and minimize attack surface, configure the Linux audit subsystem for security event collection, detect and investigate Linux-based attacks including privilege escalation, rootkit installation, and persistent backdoors, and manage Linux security patching. This hands-on hardening course focuses on reducing attack surface through practical configuration changes and security guardrails. At an expert level, RCCE students will learn to apply hardening baselines, validate configurations, and measure the security improvement achieved. Students walk away with actionable hardening checklists and the skills to maintain hardened configurations as environments evolve.
- Endpoint Security Engineers and EDR Analysts
- Windows and macOS Administrators managing privileges
- Identity and Access Management Engineers
- IT Security Operations Leads reducing attack surface
- Professionals implementing Linux Hardening Workshop: Basics
- Execute hands-on tasks for linux hardening
- Execute hands-on tasks for workshop: basics
- Explain Foundations Track — Advanced Level fundamentals
- Execute hands-on tasks for learning objectives — covering Apply CIS Benchmark baselines to Linux systems.
- Execute hands-on tasks for access & service controls — covering Harden SSH configs and key management.
- Execute hands-on tasks for os hardening fundamentals — covering Apply CIS Benchmark baselines to Linux systems.
- Execute hands-on tasks for mandatory access controls — covering Deploy and manage SELinux policies.
- Monitor and audit privilege usage; detect escalation attempts, including auditd for security event collection.
- Execute hands-on tasks for module roadmap
- Execute hands-on tasks for why linux hardening matters
- Execute hands-on tasks for default installs are insecure
- Execute hands-on tasks for hardening reduces risk — covering Unnecessary services enabled by default.
| Module 01 | Linux Hardening |
| Module 02 | Workshop: Basics |
| Module 03 | Foundations Track — Advanced Level |
| Module 04 | Learning Objectives |
| Module 05 | Access & Service Controls |
| Module 06 | OS Hardening Fundamentals |
| Module 07 | Mandatory Access Controls |
| Module 08 | Audit & Incident Response |
| Module 09 | Module Roadmap |
| Module 10 | Why Linux Hardening Matters |
| Module 11 | Default Installs Are Insecure |
| Module 12 | Hardening Reduces Risk |
| Module 13 | CIS Benchmarks Overview |
| Module 14 | Profile Levels |
All hands-on labs run on Rocheston Rose X OS. Students practice linux hardening workshop: basics by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for linux hardening
- Lab 2: Execute hands-on tasks for workshop: basics
- Lab 3: Explain Foundations Track — Advanced Level fundamentals
- Lab 4: Execute hands-on tasks for learning objectives
- Lab 5: Execute hands-on tasks for access & service controls
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Linux Hardening Workshop: Basics, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI