Training Course
Locations | Schools | Online Courses | MBA | Submit Course | Post Request | Students | Jobs | House Rental


Jobs & Resumes

House Rental

Back | Home
Training Course:

Foundstone Ultimate Hacking

School/Trainer:

Global Knowledge Canada
Calgary, Edmonton, Halifax, Montreal, Ottawa, Quebec City, Toronto, Vancouver, Winnipeg, Canada

Course Format: Classroom | E-learning | Virtual Class | Online | On-site | Blended | Self-paced

Course Description:

'' No company can respond to, or even protect against, all threats it faces. When exploited by internal or external users, network vulnerabilities could be catastrophic to an organization. As a security professional, you must learn how to leverage your knowledge of security techniques to identify the most critical threats to your company’s most critical assets.

In the industry-standard course on hacking, you will learn systematic procedures for executing Internet, intranet, and host-level security. Ultimate Hacking is the definitive training regimen for developing countermeasure strategies, such as performing attack and penetration assessments.

Global Knowledge and Foundstone present manual and scripted security-review techniques that go far beyond what automated analysis tools can accomplish. More importantly, our hands-on, classroom labs provide real-world security knowledge that you need to safeguard your organization.

What You’ll Learn


Because security is an ever-changing battlefield, Ultimate Hacking exposes you to the latest in network vulnerabilities and defenses. From Windows and UNIX hosts to routers and firewalls, instructors will illustrate each technology’s default security posture, installation weaknesses, methods hackers use to circumvent "secure" settings, and countermeasures for each vulnerability.

More than just theory, you will gain critical security skills by practicing with your classmates and instructors in a full-featured computer lab.

Expert instructors will walk you through footprinting an organization’s Internet presence to show you how to identify, exploit, and secure popular and little-known vulnerabilities in Windows and UNIX systems.

You will also explore common weaknesses in router and firewall installations, learning ways to circumvent both traditional and "hardened" security filters or firewalls. Finally, in the review exercise, you will attempt to exploit a simulated "secure" network with multiple operating systems and security mechanisms.

You’ll Learn...

How hackers and malicious intruders analyze and attack target systems
Security countermeasures and best practices to reduce digital risk
How to footprint, scan, and enumerate target systems
Effective strategies to secure Windows and UNIX networks
To identify and remediate router and firewall vulnerabilities and weaknesses
When and how to use the tools that make up the hacker’s toolkit
How hackers compromise web-based and e-commerce applications
Course Outline


Day 1 - Setting the Foundation
Day one sets the foundation in which penetration tests are performed. Emphasis is placed on the importance of performing the work in a methodical and thorough manner.

Internet Footprinting
Reviewing publicly available information
Network and domain enumeration
"whois" lookups
ARIN lookups
DNS Interrogation
Zone transfers
Network reconnaissance
Scanning/Landscape Discovery
Ping sweeps
Port scanning
Banner grabbing
OS guessing
Footprinting Lab
Use the tools and techniques taught on day one to footprint and scan Foundstone’s Footprinting Network in Irvine, California. The Footprinting Network consists of a wide variety of machines on the Internet (Windows, Red Hat, Solaris, HP-UP, AIX, etc.). These machines are specifically made available to the class for the purpose of running live scans. The appropriate entries in ARIN and Network Solutions have also been made so that students can perform actual lookups against those databases. This lab gives students the opportunity to run the tools in a realistic manner against live machines on the Internet.

Day 2 - Windows Security
The material taught on day two focuses on Windows and begins with a basic overview of Windows security, followed by Foundstone’s methodology for hacking and securing these systems. During the lecture portion of the day, there will also be test machines for student experimentation.

Windows security overview
SIDs and RIDs
LSASS
SAM
Domain and network relationships
Footprint/scan
Identify OSs
Identify services
Enumerate
Computer roles
Users and groups
Discovering Network Topology
Services and pipes
Hardware
LDAP
Penetrate
NT passwords
Password guessing
Password sniffing
Password cracking
Escalate
NT4 and Win2K attacks
Named Pipes prediction attack
Pillage
Auditing
Log cleaning
Grabbing the SAM
NT password cracking
Syskey
Important registry keys
Finding "hidden" plaintext passwords
Get interactive
netcat shells
PsExec command shell
PushVNC graphical desktop
Expand influence
Sniffers
Keystroke Loggers
Remote Control Packages
Windows Lab
The day ends with a hands-on lab involving four target machines. Students will follow the methodology and employ the tools taught during the day in order to compromise the final machine. This "capture the flag" style exercise is best performed in teams and will take a couple of hours to complete.

Day 3 - UNIX
Day three focuses on UNIX. Once again, methodology is emphasized throughout the day. Linux and Solaris machines are available during the day to experiment and test the newly taught techniques.

Hacking UNIX
UNIX landscape discovery
UNIX host enumeration
Remote attacks
Brute force attacks
Remote buffer overflows
Input validation attacks
Creating back channels
Common remote attacks
Local attacks
UNIX passwords
UNIX password cracking
Race condition attacks
Local buffer overflows
File and directory permission attacks
Beyond root
Network mapping
Rootkits
Trojans
Backdoors
Sniffers
Loadable kernel modules
UNIX Lab
This hands-on lab involves four UNIX target machines (Linux and Solaris). Students will be required to use the methodology, tools, and techniques taught earlier during the day in order to successfully complete this multi-hour lab.

Day 4 - Network Hacking & Web Hacking
The material taught on day four is not operating-system specific. Router and firewall vulnerabilities and weaknesses are covered in the network hacking module. Port redirection to bypass firewalls and other filtering mechanisms is also covered in detail with a hands-on exercise. Hacking web-based applications and a discussion of Foundstone’s eCommerce application review methodology are covered in the web hacking module.

Network Hacking
Router issues
Vulnerabilities
Services
Passwords
Routing issues
Path integrity
IP spoofing
Denial of service
Firewall architectures
Firewall attack scenarios
Insider
Vulnerable services
Firewall identification and enumeration
Banner grabbing
ACL enumeration
Port identification
Liberal ACLs
Port redirection
datapipe
fpipe
Web Hacking
E-commerce primer
Information gathering
Port scanning
Web reconnaissance
Enumeration
Vulnerability checking
Site duplication
Source sifting
Key field enumeration
Viewing source
Active server pages
Common gateway interface
Cold fusion
File system traversal
The infamous ".." or "dot dot" bugs
CIM
Input validation
Metacharacters
Field overflows
Application buffer overflows
Server side includes
Hidden tags
IIS unicode
Local command execution
Ultimate Lab
The course concludes with a lab involving routers, NT/2000, UNIX, and web hacking. It is a multi-OS lab that will require using tools and techniques from all four days. Teamwork is essential in order to complete the lab. This lab typically ...''

Elements of this syllabus are subject to change.

Please go to the school's official website for training price and schedule:
http://www.globalknowledge.ca/

Phone:1-800-COURSES

School Address:

Global Knowledge - Canada
535 Legget Drive
Suite 200
Kanata, ON K2K 3B8 Canada



Jobs & Resumes: Calgary, Edmonton, Halifax, Montreal, Ottawa, Quebec City, Toronto, Vancouver, Winnipeg
Houses & Roommates: Calgary, Edmonton, Halifax, Montreal, Ottawa, Quebec City, Toronto, Vancouver, Winnipeg
Travel Agencies: Calgary, Montreal, Ottawa, Toronto, Vancouver, Winnipeg

Search other schools for Foundstone Ultimate Hacking training resources.



Other training courses offered by Global Knowledge Canada:

SQL Server 2005 for Developers
sql server 2005 for reporting services
sql server t-sql with advanced topics
Check Point NGX CCSA/CCSE
CISA Prep
CISSP Prep
Essentials of Information Security
voip security
certified ethical hacker
Foundstone Ultimate Hacking: Expert
Foundstone Ultimate Web Hacking
Implementing Cisco IOS Network Security
Implementing Cisco Intrusion Prevention System v6.0
Cisco Security Monitoring, Analysis, and Response System v3.0
Securing Networks with ASA Advanced
Securing Networks with ASA Fundamentals
Red Hat Enterprise Linux Security


Notice: The course description on this page was captured from the Internet as historical reference or submitted by visitors. It was archived statically and not updated from day to day.
 


Tips:
Try the search form on top of each page to find the latest course information, using course topic and location as keywords. Keep the course topic keyword short to get more results.



Finding any course, anywhere to learn...
Worldwide training course directory, linking for free
United States - United Kingdom - Australia - Canada - India - SpanishASKEDU.net  © 2003-2009