Penetration Testing Training | Penetration Testing Tools & Techniques

Penetration Testing Training: Tools and Techniques

Course 537

Duration: 4 days

Labs: Yes

Language: English

Level: Intermediate

4-day instructor-led training course
One-on-one after-course instructor coaching
Tuition can be paid later by invoice -OR- at the time of checkout by credit card

#537

Sep 26 - 29 9:00 AM - 4:30 PM EDT

New York or AnyWare
Nov 7 - 10 9:00 AM - 4:30 PM EST

Washington, DC or AnyWare
Jan 24 - 27 9:00 AM - 4:30 PM EST

Herndon, VA or AnyWare
Mar 28 - 31 9:00 AM - 4:30 PM EDT

New York or AnyWare
May 9 - 12 9:00 AM - 4:30 PM EDT

Washington, DC or AnyWare

4-day instructor-led training course
One-on-one after-course instructor coaching
Tuition can be paid later by invoice -OR- at the time of checkout by credit card

#537

Sep 26 - 29 9:00 AM - 4:30 PM EDT

New York or AnyWare
Nov 7 - 10 9:00 AM - 4:30 PM EST

Washington, DC or AnyWare
Jan 24 - 27 9:00 AM - 4:30 PM EST

Herndon, VA or AnyWare
Mar 28 - 31 9:00 AM - 4:30 PM EDT

New York or AnyWare
May 9 - 12 9:00 AM - 4:30 PM EDT

Washington, DC or AnyWare

Bring this or any training to your organization
Full - scale program development
Delivered when, where, and how you want it
Blended learning models
Tailored content
Expert team coaching

#537

Penetration Testing Training: Tools and Techniques Course Benefits

Deploy ethical hacking to expose weaknesses in your organization

Gather intelligence by employing reconnaissance, published data, and scanning tools

Test and improve your security by compromising your network using hacking tools

Protect against privilege escalation to prevent intrusions

Penetration Testing Course Outline

Introduction to Ethical Hacking

Defining a penetration testing methodology
Creating a security testing plan

Footprinting and Intelligence Gathering

Acquiring target information

Locating useful and relevant information
Scavenging published data
Mining archive sites

Scanning and enumerating resources

Identifying authentication methods
Harvesting e–mail information
Interrogating network services
Scanning from the inside out with HTML and egress busting

Identifying Vulnerabilities

Correlating weaknesses and exploits

Researching databases
Determining target configuration
Evaluating vulnerability assessment tools

Leveraging opportunities for attack

Discovering exploit resources
Attacking with Metasploit

Attacking Servers and Devices to Build Better Defences

Bypassing router Access Control Lists (ACLs)

Discovering filtered ports
Manipulating ports to gain access
Connecting to blocked services

Compromising operating systems

Examining Windows protection modes
Analyzing Linux/UNIX processes

Subverting web applications

Injecting SQL and HTML code
Hijacking web sessions by prediction and Cross–Site Scripting (XSS)
Bypassing authentication mechanisms

Manipulating Clients to Uncover Internal Threats

Baiting and snaring inside users

Executing client–side attacks
Gaining control of browsers

Manipulating internal clients

Harvesting client information
Enumerating internal data

Deploying the social engineering toolkit

Cloning a legitimate site
Diverting clients by poisoning DNS

Exploiting Targets to Increase Security

Initiating remote shells

Selecting reverse or bind shells
Leveraging the Metasploit Meterpreter

Pivoting and island–hopping

Deploying portable media attacks
Routing through compromised clients

Pilfering target information

Stealing password hashes
Extracting infrastructure routing, DNS and NetBIOS data

Uploading and executing payloads

Controlling memory processes
Utilizing the remote file system

Testing Antivirus and IDS Security

Masquerading network traffic

Obfuscating vectors and payloads
Side–stepping perimeter defences

Evading antivirus systems

Discovering stealth techniques to inject malware
Uncovering the gaps in antivirus protection

Mitigating Risks and Next Steps

Reporting results and creating an action plan
Managing patches and configuration
Recommending cyber security countermeasures

Penetration Testing Training: Tools and Techniques

Penetration Testing Training: Tools and Techniques Delivery Methods

Penetration Testing Training: Tools and Techniques Course Benefits

Penetration Testing Course Outline

Introduction to Ethical Hacking

Footprinting and Intelligence Gathering

Identifying Vulnerabilities

Attacking Servers and Devices to Build Better Defences

Manipulating Clients to Uncover Internal Threats

Exploiting Targets to Increase Security

Testing Antivirus and IDS Security

Mitigating Risks and Next Steps

Need Help Finding The Right Training Solution?

Course FAQs

Penetration Testing Training: Tools and Techniques

Penetration Testing Training: Tools and Techniques Delivery Methods

Penetration Testing Training: Tools and Techniques Course Benefits

Penetration Testing Course Outline

Introduction to Ethical Hacking

Footprinting and Intelligence Gathering

Identifying Vulnerabilities

Attacking Servers and Devices to Build Better Defences

Manipulating Clients to Uncover Internal Threats

Exploiting Targets to Increase Security

Testing Antivirus and IDS Security

Mitigating Risks and Next Steps

Need Help Finding The Right Training Solution?

Course FAQs

What is penetration testing?

Can I take this penetration testing tools course online?