Advanced Ethical Hacking & Penetration Testing. Ethical Hacking

Transcription

1 Summer Training Internship Program 2017 (STIP ) is a practical oriented & industrial level training program for all students who have aspiration to work in the core technical industry domain. This training will inculcate a level of confidence which will help the aspirants for achieving numerous career objectives. The most important factor is that it will provide an superiority over the other students which will help them to prosper in the industry. The training is technically high with very good industrial level practical approach. Advanced Ethical Hacking & Penetration Testing Ethical Hacking On the other hand, ethical hacking is an extensive term that covers all hacking techniques, and other associated computer attack techniques. So, along with discovering the security flaws and vulnerabilities, and ensuring the security of the target system, it is beyond hacking the system but with a permission in order to safeguard the security for future purpose. Hence, we can that, it is an umbrella term and penetration testing is one of the features of ethical hacking. The following are the major differences between Penetration testing and Ethical hacking which is listed in the following table What constitutes ethical hacking? For hacking to be deemed ethical, the hacker must obey the following rules: 1. Expressed (often written) permission to probe the network and attempt to identify potential security risks. 2. You respect the individual's or company's privacy. 3. You close out your work, not leaving anything open for you or someone else to exploit at a later time. 4. You let the software developer or hardware manufacturer know of any security vulnerabilities you locate in their software or hardware, if not already known by the company. Penetration Testing Penetration testing is a specific term and focuses only on discovering the vulnerabilities, risks, and target environment with the purpose of securing and taking control of the system. Or in other words, penetration testing targets respective organization s defense systems consisting of all computer systems and its infrastructure.

2 Course Curriculum Benefits- Network Administrators Firewall Administrators Security Professionals Penetration Testers Anyone who is concerned about the integrity of the network Scope- Cyber Security researcher in Government Organisations Penetration Tester in Multi National Companies Security Consultant Bug Bounty Hunter Security Analyst Exploit Writer Information Security Trainer Chapter 1-Beginning with Kali Linux A brief history of Kali Linux Kali Linux tool categories Downloading Kali Linux Running Kali using Live DVD Installing Kali on a physical machine

3 Installing Kali on a virtual machine Network services in Kali Linux Installing a vulnerable server Installing additional weapons Installing the Nessus vulnerability scanner Chapter 2- Linux Fundamental Training Linux Kernel History Linux File Structure Linux commands and basic shell Usage Editors Basic system administration Linux Networking Troubleshooting Chapter 3- Penetration Testing Methodology Types of penetration testing Vulnerability assessment versus penetration testing Open Source Security Testing Methodology Manual (OSSTMM) Open Web Application Security Project (OWASP) Web Application Security Consortium Threat Classification (WASC-TC) Penetration Testing Execution Standard (PTES) Information gathering Target exploitation Maintaining access

4 Chapter 4- Darknet What is Tor How to use Tor Network How Tor works Chapter 5- Information Gathering Passive Information Gathering Open Source Information Gathering Analyzing the DNS records Getting network routing information Utilizing the search engine Metagoofil Active Information Gathering and Target Discovery Stealth scanning strategies Identifying the network infrastructure Enumerating Hosts Port, Operating System and Service Discovery Comprehensive reconnaissance applications Nmap The recon-ng framework Maltego

5 Chapter 6- Enumerating Target Introducing port scanning The network scanner-nmap Zenmap Unicornscan SMB enumeration SNMP enumeration Chapter 7-Target Exploitation with METASPLOIT Vulnerability and exploit repositories Advanced exploitation toolkit METASPLOIT Framework Hacking WIn Xp/sp2/3 Hacking Windows/7/8/8.1/10 MSF-Console MSF-Venom, MSF-encode Working with Meterpreter Incognito Attack with Meterpreter Vulnerability Research Chapter 8-Viruses & Worms Introduction to Viruses Stages of Viruses Life

6 Working of Viruses Why Do People Create Computer Viruses Indications of Viruses attack How does a Computer get infected by Viruses? Viruses Analysis Types of Viruses Designing Viruses Computer Worms Worm Maker Worm Analysis Anti-Virus Tools Virus detection methods Virus & Worms Countermeasures Trojans, Botnets, Rats Chapter 9-Sniffing & Phishing Sniffing Threats How a Sniffer Works What is Address Resolution Protocol (ARP?) Types of Sniffing How DHCP works DNS Poisoning Sniffing Tool: WireShark What is wireshark? how does it work?

7 What is Phishing? How Phishing works Types of Phishing Designing Phishing Detection of Phishing Chapter 10-Social Engineering What is Social Engineering? Why is Social Engineering Effective? Warning Signs of an Attacks Phases in a Social Engineering attack Impact on the Organization Command Injection Attacks Common Targets of Social Engineering Types of Social Engineering Social Engineering Through Impersonation On Social networking Sites Risks of Social Networking to Corporate Networks Social Engineering Countermeasures Chapter 10-Maintaining Access Using operating system backdoors The Meterpreter backdoor Creating web backdoors

8 Chapter 11-Hacking Web Applications Web Application Security Statistics Introduction to Web Applications Web Application Components How Web Applications Work? Web Application Architecture Injection Flaws Cross-Site Scripting (XSS) Attacks How XSS Attacks Work? Cross-Site Scripting Attack Scenario: Attack via XSS Example XSS Cheat Sheet Cross-Site Request Forgery (CSRF) Attack How CSRF Attacks Work? Web Application Denial-of-Service (DoS) Attack Hacking Web Servers Password Attacks: Password Functionality Exploits Password Attacks: Password Guessing Password Attacks: Brute-forcing How to Defend Against SQL Injection Attacks? How to Defend Against Command Injection Flaws? How to Defend Against XSS Attacks? How to Defend Against DoS Attack? How to Defend Against Web Services Attack?

9 Web Application Countermeasures Chapter 12-SQL Injection What is SQL Injection? SQL Injection Attacks How Web Applications Work? SQL Injection Detection Types of SQL Injection What is Blind SQL Injection? SQL Injection Methodology Information Gathering SQL Injection Tools Database Hacking through Sql-map, How to Defend Against SQL Injection Attacks? How to Defend Against SQL Injection Attacks: Use Type-Safe SQL Parameters Chapter 13- Wireless Hacking What is WI-Fi standard? ByPassing and cracking WEP, WPA, WPA2-PSK, WPS WLAN & its inherent insecurities Bypassing WLAN Authentication WLAN encryption Flaws Attacks on WLAN infrastructure Attacking the Client Advanced WLAN Attacks

10 Demonstration of Live Cases and Case Studies Chapter 14- Mobile Hacking What is rooting and Jailbreaking Introduction to custom ROM Android PenTesting Chapter 15- CRYPTOGRAPHY AND STEGANOGRAPHY Introduction to cryptography and steganography Fee:INR13500/60H Best Regards, Nitish Gupta Business Development Manager CyberTron Network Solutions