|
 |
 |
 |
|
 |
|
|
|
  |
 |
 |
 |
|
 |
|
 |
|
 |
|
 |
 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Ethical Hacking and CountermeasuresTraining: |
| Getting the Right Knowledge to the Right People at the Right Time. Anywhere. With Client Site
Training, courses can be scheduled on a date that is convenient for you, and because they can be scheduled at your
location, you don't incur travel costs and students won't be away from home. An additional advantage is that the
class is taught on your equipment, so students are learning in their work environment rather than in a classroom
setup. The most important question to ask regarding professional hacking is: Why is it important to train professionals in hacking when it seems as though the only hackers out there are a few malicious teenagers with too much time on their hands? The malicious teen, of course, is the typical stereotype when depicting hackers. In reality, however, there are several different types of hackers, each with very specific goals. Hacking is not just the flashy or “cool” pastime of a small group of your students. It is a real threat that has cost companies all over the world an amazing amount of money. This is why so many security consultant companies and security vendors are making a tremendous amount of money in such tough economic times. It’s also why the U.S. government has allocated $1.2 billion towards protecting the nation’s computer infrastructure. And just like when a genie is let out of a bottle and no one can convince her to return, no one is going to convince hackers to stop attacking-the trend continues to grow year after year. Every company that uses Information technology to conduct business is subject to countless system and network attacks. Those especially vulnerable are businesses with connections to the Internet, those conducting E-Business, and even those merely connected to business partners. Along with the good comes the bad: hacking. Hacking is on the rise and becoming more sophisticated every day. Logical Security’s Security Professional Hacking course combines both ethical hacking and penetration testing into one program. This approach adds great weight to the total learning experience. Logical Security’s materials presents manual and scripted security-review techniques that go far beyond what automated analysis tools can accomplish. More importantly, our hands-on classroom labs provide real-world security knowledge to help safeguard your students organizations. |
| Who Should Attend |
| This courseware is well suited for IT network administrators, IT security officers, and government
crime prevention personnel. It is structured to educate your students so that your students can properly defend
systems from hacking attacks. The Security Professional Hacking program is designed for people with at least one year of experience working within information systems and with networking technologies. The student should have a good understanding of TCP/IP, networking, operating systems, and a general knowledge of information security. Both Windows and Unix experience is very helpful. |
| Course Aim: |
| Enogroups has developed a program that merges the hacker's mindset with a professional security
testing methodology to teach students "how" to perform valid security tests. This requires proper training
and experience. The class itself is a methodology-centric approach to developing the skills of a Security Professional
Hacker and beyond. The course focuses on the technical skills necessary for security testing as well as the business skills required to provide the justification, efficiency, and understanding contemporary business needs. This course will teach your students to think the way a hacker does, and show them how to protect their companies by using the tools and techniques they use. Ethical Hacking exposes your students to the latest in network vulnerabilities and defenses. From Windows and Unix hosts to routers and firewalls, instructors will illustrate each technology's default security posture, their installation weaknesses, the methods hackers use to circumvent "secure" settings, and the best measures to counter each vulnerability. Your students will also explore common weaknesses in router and firewall installations; learn ways to circumvent both traditional and "hardened" security filters and firewalls. Finally, in the review exercise, the students will attempt to take advantage of a simulated "secure" network that has multiple operating systems and security mechanisms. Over 1,000 pages containing the following items: * 10 modules covering security professional hacking and penetration tools, methodologies, and countermeasures * Each and every slide the instructor will present in-class * Professionally developed graphics for conceptual understanding * Underneath each slide there is 4-5 paragraphs explaining concepts in slides, Configuration Steps, Hints, Warnings, Tips, Tables, etc. * Each module has a Quick Tips section, Summary section, Terminology section, and 20 question and answers * Each module is filled with robust and comprehensive labs * Hardware, software, and configurations requirements necessary for the classroom environment * Each product has a final practice exam of 200+ questions * in addition to those included in student manual * A security professional hacking and penetration testing review sheet Upon class completion, students will have been provided with the understanding of a hacker’s mindset and countermeasures to counteract the possible attacks. The class lectures and labs will equip students with the tools to stop possible threats to their organization. The class also shows students how to carry out a wide range of “vulnerability finding” techniques to use on their own networks so that they can improve the overall security posture of the company. |
Topics Covered |
| Day 1 - Reconnaissance Work covers the intelligence work necessary to understand all of the “ins” and “outs” of a target, so that penetration tests can be performed in a more successful manner. The methodology and the importance of this work are explained in depth. This day will cover the following reconnaissance skills and techniques: * Obtaining public information about the targeted victim * Identifying all domains that the target owns and uses * Identifying all of the target’s IP address ranges * Obtaining contact information to use during social engineering attacks * Capturing telephone numbers for war-dialing activities * Carrying out DNS interrogation techniques * Performing system and network reconnaissance work * Identifying “alive” systems and the services running on them * Banner grabbing and web site source code interrogation * Operating system identification The Reconnaissance Work Lab In the lab, the students carry out footprinting techniques by using proper tools and methods to scan Logical Security’s footprinting network. The footprinting network is made up of a variety of systems on the Internet that utilize many different OSs. This lab allows your students to carry out these steps in a realistic manner to show how hackers use these techniques today. The Reconnaissance Work Lab will cover some or all of the following items: * Whois Port scanning * NSLookup TCP scan types * ARIN Port scan countermeasures * Traceroute War dialing * Active stack fingerprinting Proxy servers * Passive stack fingerprinting Surfing the web anonymously * Detecting ping sweeps TCP/IP through HTTP tunneling Day 2 - Windows Systems The day begins with a basic overview of Windows security, followed by Logical Security's methodology for hacking and securing these systems. There will also be test machines for experimenting during the lecture portion of the day. This day will cover the following Windows tools and techniques: Windows security items - Operating system critical components - SIDs, RIDs, and LSASS - SAM database and password protection weaknesses - SAM database and password protection weaknesses - Identifying services and their weaknesses Enumerating users and resources - Windows roles and their security contexts - Users and groups that are the most beneficial to compromise - Services and pipes - Identifying all user accounts - Identifying resources for penetration - Syskey and ways around it Penetration of vulnerabilities - SAM on systems and domain controllers - Password guessing and cracking tools and techniques - Exploiting various vulnerabilities to gain access - “Owning” a system Escalating privileges - Moving from user access to privileged access - “Hopping” from one system to another Gathering “the goods” - Capturing sensitive information - Critical Registry keys for gathering information and covering tracks - Identifying plaintext passwords on the system - Log cleaning and covering tracks of access Allowing for future access - Back doors and Trojan horses - netcat shells and remote access - VNC - Netbus - SubSeven - BO2K The Windows Lab The Windows Lab will use the tools taught in the Windows lecture to identify and exploit a wide range of vulnerabilities. This hands-on lab includes a “capture the flag” exercise that helps your students understand how the different vulnerabilities can be used in succession to compromise a sensitive system at great depth. The Windows Lab will cover some or all of the following items: * Null session countermeasures * NetBIOS enumeration * SNMP enumeration * SNMP enumeration countermeasures * Windows 2000 DNS zone transfer * Identifying Win2000 accounts * Active directory enumeration Day 3 - Unix and Linux Systems The different flavors of Unix and Linux operating systems have a wide range of vulnerabilities that need to be truly understood. These vulnerabilities and threats are explained in great depth, and the methodologies of how to exploit them, as well as how to counteract such threats, are taught so your students can better secure their environment. This day will cover the following Unix and Linux components and compromises: * Unix system components * Daemons and password files * Remote buffer overflows and brute force attacks * Remote input validation compromises * Local buffer overflow attacks and race conditions * Permission attacks * Capturing and cracking passwords * Loading kernel modules * Installing rootkits and sniffers * Implementing back doors and Trojan horses The Unix Lab Linux and Unix systems are used to exploit the different vulnerabilities explained during the day. This is a long and involved lab that will require your students to use the tools and techniques taught during the lecture portion of the course.The Unix Lab will cover some or all of the following items: * Compiling programs in Unix * Scanning networks * Mapping networks * Password cracking in Unix * Sniffing * Session hijacking * Unix rootkits * Unix security countermeasures * IPChains and IPTables * Passive sniffing * Active sniffing * MAC changers * Wrappers * Trojan makers Day 4 - Network Hacking This day will go deeper into how the authentication and authorization steps work and the weaknesses of these that can be exploited. The many different ways of protecting data as it goes over airwaves will be discussed in depth and practical implementation and use of these solutions will be demonstrated.This day will cover the following items and concepts: * Wireless security methods * Identification, authentication, association, and authorization * AAA * Firewalls use and placement * SSL/TLS * PGP * Passport authentication * Secure shell * Subscriber Information Module (SIM) * Smart card * Security dynamics * SecureID * Integrated VPNs and other types of VPNs * PKI and how it can apply to wireless * Ø DES/3DES * AES * 802.1X nd how it can apply to wireless * EAP for flexibility and a layer of protection * Tunneling protocols for VPNs * PPTP * IPsec * Cisco LEAP Day 5 - Wireless Hacking Wireless is a hot, involving technology that is riddled with vulnerabilities. For this day’s lectures, the different 802.11 standards are explained along with both the core deficiencies of the standard and the many ways those vulnerabilities are exploited. This day will cover the many wireless issues and attacks: * 802.11 standards * WEP * Finding WLANs * Cracking WEP keys * Sniffing traffic * Wireless DoS attacks * WLAN scanners * WLAN sniffers * MAC sniffing * Access point spoofing * Securing wireless networks * Hacking Tool: NetTumbler * Hacking Tool: AirSnort * Hacking Tool: AiroPeek * Hacking Tool: WEP Cracker * Hacking Tool: Kismet The Wireless Lab This lab allows your students to carry out wireless sniffing and access point attacks so your students can understand the different tools and techniques in use today. Your students will learn how access points are identified and how access points can be easily detected.The Wireless Lab will cover some or all of the following items: * Finding WLANs * Cracking WEP keys * Sniffing traffic * Wireless DoS attacks * WLAN scanners * WLAN sniffers * MAC sniffing * Access point spoofing * Securing wireless networks * Hacking Tool: NetTumbler * Hacking Tool: AirSnort * Hacking Tool: AiroPeek * Hacking Tool: WEP Cracker * Hacking Tool: Kismet |
|
For organizational purchases, please send us a message at |
 |
|
|
 |
 |
||||
|
|
||||||||
