Ethical Hacking

Makati, Philippines

This ethical hacking training course is a journey into the hacking mindset, examining and practically applying the tools and techniques that hackers use.

You will build on the knowledge using the frameworks & tools used by professional penetration testers to: audit & compromise system security, assess weaknesses in web applications, hijack sessions to steal users’ online identities and more.

Who Should Attend

The course is ideal for network administrators, security officers & crime prevention / protection officers and is designed to educate for the purpose of properly defending systems from hacking attacks.

Duration 1 Day

Inclusion Training, Materials, Certificates, AM & PM Snacks, & Lunch

Course Outline

1. INTRODUCTION TO HACKING
History of hacking
Insights into the hacker mindset
Hacker classes
Forms of testing
Attack types

2. COMMUNICATION PROTOCOL BASICS
An overview of TCP/IP & Networking
An introduction to ports and protocols
Sniffing and intercepting traffic
Man in the middle attacks

3. METHODOLOGY OVERVIEW
Information Discovery
How information about a target may be gathered discreetly
Target profiling
Using public databases to reveal sensitive information
Social engineering
Target scanning & system detection
Port scanning to reveal openings in the system
Use of bespoke tools for enumerating banners
Vulnerability Assessment (VA)
How attackers probe and test for weaknesses
Setup and configuration of VA tools
Exploitation & Privilege Escalation
Trojans, Back-Doors & Root Kits
Working with rootkits to hide the presence of a hacker at the application & kernel level
Firewall & IDS Evasion
How attacks may traverse a firewall
The role of intrusion detection & how it may be evaded using advanced techniques
Hacking prevention
Security policy, system integrity, hardening & monitoring
Sample of featured tools
Cane and Abel
Wireshark
Nmap
Amap
Netcat
Nessus/NeWT
Nikto

4. ADVANCED INFRASTRUCTURE PENETRATION TESTING
Use professional penetration testing tools to audit & compromise system security
Use Nikto web server scanner & Nessus 3
Elevate command-line access to GUI access
Learn stealthy techniques to silently upload and deploy hacker tools
Remote registry hacking & silent RAT installation
Understand the Metasploit Framework

5. HACKING WEB APPLICATIONS
Find and assess weakness in PHP and ASP.NET web applications
Learn how you can use SQL injection to bypass authentication and reveal confidential information
Gain SYSTEM level access to a web server hosting a poorly secured web application
Exploit database vulnerabilities including MS SQL server & MySQL
Employ web
Practical injection techniques used to glean, manipulate and corrupt data
Force web applications to malfunction using HTTP request and response modification
Launch attacks using an HTTP proxy
Elevate attacks using extended stored procedures

6. CLIENT SIDE ATTACKS
Discover the potential severity of the often underestimated XSS vulnerability
Common browser and e-mail client hacking techniques used to access Internet users
Perpetrate attacks by e-mail spoofing/social engineering
Use HTTP session hijacking to compromise a users online identity
Use XSS with cookie theft to steal confidential information
Compromise an end-users machine using modern exploits
Launch a dictionary attack
Use Acunetix Web Vulnerability Scanner

Attendance cost: 4, 000.00 + VAT

Event organizer: Bitshield

Register for the Ethical Hacking