This class offers a technical perspective and exposure to various audit and assessment tools and products to match the best in the industry,
The modules of this class, though inheriting theory content from the assessment and audit class, would consist of labs of a different nature where the focus is on hacking and collecting trophies.

This course is designed and developed with following objectives for security professionals

• Security Basics and Fundamentals
• Network Hacking and Assessments
• Footprinting, Discovery and Enumeration
• Hacks and Attacks
• Countermeasures and Defense
• Web and Wireless Hacking
• Hacking Network Devices
• SQL Hacking
• Social Engineering and Issues
• Highly challenging labs for next-generation hackers

Target Audience

• Security penetration testers
• Security consultants & professionals
• Security administrators
• Auditors

Prerequisites

• Basic familiarity with Windows & Unix systems
• Primary understanding of networks
• Some experience of penetration testing would be an added advantage

 

Course Outline

Schedule : Day 1
Module 1	Security Fundamentals and Principles Security industry landscape and trends Security posture and evolution Corporate security objectives Threat framework and modeling Attack vectors and their impact Popular attack points and severities Q & A
Module 2	Hacking - approaches & methods Hacking methodologies and basics Goals and objectives of assessment Role of tools and credibility Areas of assessment & importance Black box approach vs. White box approach Q & A
Module 3	Network Footprinting & Asset Identification Footprinting basics & objectives Methodologies and approaches Public domain queries WHOIS - Query all ARIS lookups DNS queries & Zone transfers Trace routing and mapping Network reconnaissance Windows footprinting Reporting and building targets Lab
Module 4	Discovery & Posture Mapping TCP fundamentals Ping sweeps Scanning networks (TCP & UDP) OS identification and Stack fingerprinting Banner grabbing Protocol identification Network mapping Reporting and mapping targets Lab
Schedule : Day 2
Module 5	Information gathering & Enumeration - Windows Windows security overview Enumerating fundamentals Security issues with enumeration Windows enumeration - NetBios over TCP DNS enumeration SNMP querying LDAP enumeration Lab
Module 6	Information gathering & Enumeration - Linux/Unix Linux/Unix security overview Linux/Unix systems enumeration basics NFS enumeration RPC querying snmpwalk and enumeration Users and groups enumeration SAMBA information-gathering finger, rwho, rusers Lab
Module 7	Attacks & Hacking Password guessing Password cracking Password sniffing Privilege escalation Netcat shell introduction Other attack vectors Lab
Module 8	Vulnerability Assessment & Exploitation Vulnerability basics Detecting vulnerabilities Vulnerability scanning using nessus & other tools Crafting exploits Exploit frameworks - Metasploit Countermeasures & Security Lab
Schedule : Day 3
Module 9	Web Hacking HTTP protocol basics Web application components Web server assessment Web application profiling Web application hacking Defending web applications Tools and methods Lab
Module 10	Network Devices and Wireless Hacking Network mapping and entry points Router identification Compromising routers Firewall identification Firewall banner grabbing Firewall loopholes Compromising ACLs Hacking VPN and other devices Lab
Module 11	SQL Hacking SQL identification SQL banner grabbing MS-SQL cracking MS-SQL hacking ORACLE cracking Security issues with ORACLE Tools and methods Lab
Module 12	Social Engineering Hacks Fundamentals of social engineering Approaches & Cases Getting important information Profiling the target and resources Q & A

For further information please contact us at