Summary
This course teaches the hacking techniques and tools used to penetrate computer systems. It is taught by seasoned security specialists using a combination of class lectures and practical sessions.
| Course length: | 5 days |
| Language: | English |
Intended audience
- Network and system engineers that are keen to learn how a hacker would view their IT infrastructure
- IT consultants who want to learn to perform in-depth security assessments
- This course is not intended for misguided individuals who intend to use tools and techniques for criminal purposes
|
PrerequisitiesStudents should have a reasonable understanding of
- TCP/IP
- Unix
- Windows 2000/2003
|
Lecture topics
Day One - Information gathering
- Using publicly available information to target the attack (whois, web search engines, Usenet, Directories)
- Internet Relay Chat - IRC
- Social engineering
- Using DNS information for hacking
- Port scanning and operating system fingerprinting – how it works
- Banner grabbing
- Other methods of identifying operating systems and services
- War dialing
- War driving – wireless networks
|
Day Two - Windows Hacking
- Windows security architecture (user accounts, SAM database, file system permissions)
- Windows networking (NetBIOS, SMB/CIFS) – how it works
- Windows-specific information gathering (null-sessions, DCE/RPC, SNMP, LDAP)
- Remote attacks (share scanning, account brute-forcing)
- Local privilege escalation
|
Day Three - Unix Hacking
- Unix security architecture (user accounts, root privileges, file permissions, set-user-id bit, etc.)
- Unix-specific information gathering (RPC portmapper, NFS, Finger daemon, SMTP, SNMP)
- Programming errors resulting in security vulnerabilities (detailed explanation of each bug and methods of exploitation)
- Buffer overflows
- Format string issues
- Race conditions
- Incorrect input validation
|
Day Four - Web Hacking
- Getting information from the web server (version, directory structure, server-side applications installed, etc.)
- Classification of web vulnerabilities (buffer overflows, directory traversal, incorrect input validation, encoding/decoding bugs, etc.)
- Scanning for known vulnerabilities
- Checking for configuration errors
- Escalating privileges
- Assessing the security of custom Web Applications
|
Day Five - Miscellaneous topics and Hacking contest
- Routers
- What you can do with a hacked router
- Services offered by routers
- Checking known vulnerabilities
- Router configuration errors
- Password cracking
|
And a hacking contest will be held on day Five.
Additional topics
- Firewalls (types of firewalls, how they work, how they fail)
- Intrusion Detection Systems
- Rootkits and Trojans
- E-mail hacking
|
Practical Sessions
Each topic covered during the lectures will be illustrated during the practical session. Each student will try out the tools and techniques they learned in the class on the lab machines.
During the five day course the students will try to break into the following systems
- Microsoft Windows 2000/2003
- Sun Solaris
- RedHat Linux
- FreeBSD
- Cisco routers
|
Each student will get a CD with all the tools that were used during the labs. Both Windows-based and Unix-based attack tools will be used.
Dates:June 22, 2008 - June 27, 2008 (
Register for this date)
Aug 03, 2008 - Aug 07, 2008 (
Register for this date)
Download course leaflet as a Adobe PDF file
For more information concerning this course, please contact courses@scanit.net.
