Course

Objective:

Learning Outcomes:

• Define threat categories, attack vectors, and types of defenses against threats
• Describe various security controls and policies and how they are used to protect information, systems, networks, and even physical threats
• Use common system tools like ping, Nmap, and scripting to perform host discovery
• Use vulnerability tools like Nikto and MBSA and use references like CVSS and NVD
• Cover your tracks after you've breached a system, including how to remove traces of your activities by disabling auditing systems and clearing logs
• Demonstrate network-layer session hijacking and describe the possible mitigation strategies
• Evade intrusion detection systems, firewalls, and honeypots
• Describe various methods of web app hacking and configure web app hacking in a scenario
• Recognize wire network attacks such as MAC filter bypass by MAC spoofing and revealing hidden wireless networks
• Describe hacking phases, such as recon, scanning, access, maintaining access, and covering tracks
• Develop incident management and response procedures
• Describe the types, phases, and methodologies of penetration testing
• Utilize footprinting tools and techniques to passively gather information on a target website
• Use ProxyChains to bypass security features like IDS and firewalls to access a target network
• Utilize various tools and techniques to crack password hashes and use those hashes to gain unauthorized access to systems
• Describe malware distribution methods like social engineering, phishing, click-jacking
• Use MAC flooding, port stealing, and ARP poisoning to sniff packets on a switched network
• Describe the types of DoS/DDoS attacks, differences between them, and the concepts behind amplification and reflective DoS attacks

General Topics: