Target Audience
The course is ideally suited to anyone with responsibility for, or with an interest in, the security of IT systems, such as: system administrators, auditors, IT security officers, information security professionals and budding penetration testers.

Prerequisites
Persons attending this course should have a working knowledge of networking concepts, Windows Server and/or UNIX, and experience with TCP/IP and the Internet.

Course Overview:
In this course, practical exercises reinforce theory with each delegate having access to a Windows 2008 domain (server and workstation) along with a Linux server. Although the course demonstrates current hacking techniques, this is always done with defense in mind and countermeasures are discussed throughout. The CSTA exam (theory based) is included at the end of the course.

Course Outline:
Introduction

• Motivations behind hacking
• The hacking scene
• Methodology

• Sniffing traffic

• Useful information
• Sources – websites, metadata, search engines, DNS, social engineering

• Host discovery
• Port scanning techniques
• Banner grabbing

• Causes of vulnerabilities
• The classic buffer overflow
• Vulnerability tracking
• Scanning
• Client-side vulnerabilities

• Windows enumeration
• Metasploit
• Client-side exploits

• Local information gathering
• Metasploit’s Meterpreter
• Keyloggers
• Password storage
• Password extraction
• Password cracking techniques
• Cached Domain Credentials
• Windows network authentication
• Access tokens
• Pass the hash

• Exploitation
• Web shells
• Pivoting the attack
• Online password cracking
• ARP Poisoning Man in the Middle
• Privilege Escalation – Linux
• Standard streams
• Privilege escalation by exploit
• Commercial penetration testing tools
• Password storage
• Password cracking
• Permission errors
• Sudo
• SUID
• Flawed shell scripts

• Backdoors
• Trojan Horses
• Delivery mechanisms
• Botnets
• Bypassing client-side security

• Hiding backdoors
• Simple obfuscation
• Rootkits
• Anti-forensics
• Log manipulation
• Connection laundering

Length: 2 days

Prerequisites: Prior attendance of the CSTA Ethical Hacking: Hands-On training course (or equivalent) is strongly recommended. A basic understanding of HTTP & HTML is needed.

Web application vulnerabilities can pose serious problems to an organisation’s security. Many do not realise how much control an attacker can gain via a simple flaw in the security of a public-facing web application.

The CSTP commands industry recognition and forms part of 7Safe’s ground-breaking Masters-level education programme.

What you will learn:

• Review of professional penetration testing tools
• Further exercises against Windows and UNIX targets
• The Metasploit framework
• Web application security, including:
• SQL Injection
• Cross-site scripting (XSS)
• Cross-site request forgeries (CSRF)
• Threats to users

Who should attend:
Those responsible for, or with an interest in, the security of IT systems and web applications, including (but not limited to): System/Network Administrators, Crime Prevention & Protection Officers, Auditors, Security Officers, Information Security Professionals& Pen-Testers.

Benefits:

• Develop your skills in a state-of-the-art class environment with Windows & Linux operating systems & associated server software
• Gain experience testing and exploiting purposebuilt victim machines and applications
• Journey through various aspects of a pen test, such as the core infrastructure, web applications and client-side assessment
• Includes an examination, successful completion of which earns delegates the industry-recognised CSTP certification
• Around 20 hands-on practical exercises, using a wide variety of hacking tools