Training Course:CEH - Certified Ethical HackerSchool/Trainer:New Horizons Learning Centres of Australia
Brisbane, Melbourne, Newcastle, Perth, Sydney, Australia
Course Format: Classroom | E-learning | Virtual Class | Online | On-site | Blended | Self-paced
Course Description:
'' This class immerses students in an interactive environment where they will learn how to scan, test, hack, and secure their own systems. Students then learn how intruders escalate privileges and what steps can be taken to secure a system.
Target Audience:
This course will significantly benefit security officers, auditors, security professionals, site administrators, and anyone who is concerned about the integrity of the network infrastructure.
Skills Gained:
The lab intensive environment gives each student in-depth knowledge and practical experience with the current essential security systems. Students will begin by understanding how perimeter defenses work and then be led into scanning and attacking their own networks. No real network is harmed. Students then learn how intruders escalate privileges and what steps can be taken to secure a system. Students will also learn about Intrusion Detection, Policy Creation, Social Engineering, Open Source Intelligence, Incident Handling and Log Interpretation.
Pre-requisites:
At least two years of IT security experience
Strong working knowledge of TCP/IP
Basic familiarity with Linux/UNIX
Essentials of Network Security is highly recommended.
Outline:
Module 1: Introduction to Ethical Hacking
Why Security?
Essential Terminologies
Elements of Security
The Security, Functionality, and Ease of Use Triangle
What Does a Malicious Hacker Do?
Types of Hacker Attacks
Hacktivism
Hacker Classes
Hacker Classes and Ethical Hacking
What Do Ethical Hackers Do?
Can Hacking be Ethical?
How to Become an Ethical Hacker?
Skill Profile of an Ethical Hacker
What is Vulnerability Research?
Why Hackers Need Vulnerability Research?
Vulnerability Research Tools
Vulnerability Research Websites
How to Conduct Ethical Hacking?
Approaches to Ethical Hacking
Ethical Hacking Testing
Ethical Hacking Deliverables
Computer Crimes and Implications
Legal Perspective
Module 2: Footprinting
Revisiting Reconnaissance
Defining of Footprinting
Information Gathering Methodology
Unearthing Initial Information
Finding a Companys URL
Internal URL
Extracting Archive 0f a Website
Google Search for Companys Info.
People Search
Footprinting Through Job Sites
Passive Information Gathering
Competitive Intelligence Gathering
Why Do You Need Competitive Intelligence?
Companies Providing Competitive Intelligence Services
Competitive Intelligence
Public and Private Websites
Steps to Perform Footprinting
Module 3: Scanning
Definition of Scanning
Types of Scanning
Objectives of Scanning
CEH Scanning Methodology
Check for live sytems
Check for open ports
Banner grabbing/OS Fingerprinting
Identify Service
Scan for Vulnerability
Draw network diagrams of Vulnerable hosts
Prepare proxies
Anonymizers
SSL Proxy Tool
HTTP Tunneling Techniques
HTTPort
Spoofing IP Address - Source Routing
Detecting IP Spoofing
Despoof Tool
Scanning Countermeasures
Tool: SentryPC
Module 4: Enumeration
Overview of System Hacking Cycle
What is Enumeration?
Techniques for Enumeration
Netbios Null Sessions
Tools
Null Session Countermeasures
PSTools
SNMP Enumeration
Management Information Base
Tools
UNIX Enumeration
SNMP UNIX Enumeration
SNMP Enumeration Countermeasures
Tools
Steps to Perform Enumeration
Module 5: System Hacking
Cracking Passwords
Escalating Privileges
Executing applications
Hiding Files
Covering tracks
Module 6: Trojans and Backdoors
Introduction
Effect on Business
What is a Trojan?
Overt and Covert Channels
Working of Trojans
Different Types of Trojans
What Do Trojan Creators Look For?
Different Ways a Trojan Can Get into a System
Indications of a Trojan Attack
Ports Used by Trojans
How to Determine which Ports are Listening?
Classic Trojans Found in the Wild
Trojans
Wrappers
Wrapper Covert Program
Wrapping Tools
Delete Suspicious Device Drivers
Inzider - Tracks Processes and Ports
Tools
Anti-Trojan Software
Evading Anti-Virus Techniques
Evading Anti-Trojan/Anti-Virus Using Stealth Tools v2.0
Backdoor Countermeasures
Tools
How to Avoid a Trojan Infection?
Module 7: Sniffers
Definition of Sniffing
Protocols Vulnerable to Sniffing
Types of Sniffing
ARP - What is Address Resolution Protocol?
ARP Spoofing Attack
Tools for ARP Spoofing
MAC Flooding
Tools for MAC Flooding
Threats of ARP Poisoning
IRS ARP Attack Tool
ARPWorks Tool
Tool: Nemesis
Sniffer Hacking Tools (dsniff package)
DNS Poisoning Techniques
Types of DNS Poisoning:
Interactive TCP Relay
Sniffers
Tools
How to Detect Sniffing?
Module 8: Denial of Service
What are Denial of Service Attacks?
Goal of DoS
Impact and the Modes of Attack
Types of Attacks
DoS Attack Classification
DoS Attack Tools
Botnets
Uses of botnets
Types of Bots
Tool: Nuclear Bot
What is DDoS Attack?
Characteristics of DDoS Attacks
DDOS Unstoppable
Agent Handler Model
DDoS IRC based Model
DDoS Attack Taxonomy
Amplification Attack
Reflective DNS Attacks
Reflective DNS Attacks Tool: ihateperl.pl
DDoS Tools
Worms
How to Conduct a DDoS Attack
The Reflected DoS Attacks
Reflection of the Exploit
Countermeasures for Reflected DoS
DDoS Countermeasures
Taxonomy of DDoS Countermeasures
Preventing Secondary Victims
Detect and Neutralize Handlers
Detect Potential Attacks
Mitigate or Stop the Effects of DDoS Attacks
Deflect Attacks
Post-attack Forensics
Packet Traceback
Module 9: Social Engineering
What is Social Engineering?
Human Weakness
Rebecca and Jessica
Office Workers
Types of Social Engineering
Preventing Insider Threat
Common Targets of Social Engineering
Factors that make Companies Vulnerable to Attacks
Why is Social Engineering Effective?
Warning Signs of an Attack
Tool : Netcraft Anti-Phishing Toolbar
Phases in a Social Engineering Attack
Behaviors Vulnerable to Attacks
Impact on the Organization
Countermeasures
Policies and Procedures
Security Policies - Checklist
Phishing Attacks and Identity Theft
What is Phishing?
Phishing Report
Attacks
Hidden Frames
URL Obfuscation
URL Encoding Techniques
IP Address to Base 10 Formula
Karens URL Discombobulator
HTML Image Mapping Techniques
Fake Browser Address Bars
Fake Toolbars
Fake Status Bar
DNS Cache Poisoning Attack
Module 10: Session Hijacking
What is Session Hijacking?
Spoofing vs. Hijacking
Steps in Session Hijacking
Types of Session Hijacking
The 3-Way Handshake
TCP Concepts 3-Way Handshake
Sequence Number Prediction
TCP/IP Hijacking
RST Hijacking
RST Hijacking Tool: hijack_rst.sh
< ...''
Please go to the school's official website for training price and schedule:
http://www.nhaustralia.com.au/
Phone:1300 794 006
School Address:
Level 6, St. Martins Tower
31 Market Street
Sydney NSW 2000 Australia
Level 4, 200 Creek Street,
Brisbane, QLD 4000
Level 2, 31 Queen Street,
Melbourne, VIC 3000
9 Denison Street,
Newcastle West NSW 2302
Jobs & Resumes: Brisbane, Melbourne, Newcastle, Perth, Sydney
Houses & Roommates: Brisbane, Melbourne, Newcastle, Perth, Sydney
Travel Agencies: Brisbane, Melbourne, Perth, Sydney
Search other schools for CEH - Certified Ethical Hacker training resources.
Other training courses offered by New Horizons Learning Centres of Australia:
Strategic Decision Making
Check Point Security Administration
Team Leadership
Cisco Call Manager
CompTIA A+ (Essentials)
ARCH - Designing Cisco Network Services Architectures
Crystal Reports
CompTIA A+ (Core Hardware)
CompTIA A+ (IT Technician)
BGP - Configuring Border Gateway Protocol on Cisco Routers
BSCI - Building Scalable Cisco Internetworks
CompTIA A+ (Operating Systems)
CSVPN - Cisco Secure Virtual Private Network
CompTIA A+ (Remote Support Technician)
IBM Lotus Domino 8 Application Development
CVOICE - Cisco Voice over IP 6.0
CompTIA Network+
IBM Lotus Domino 8 Administration
CompTIA Security+
Notice: The course description on this page was captured from the Internet as historical reference or submitted by visitors. It was archived statically and not updated from day to day.
Tips:
If you can not find a training course suitable for you instantly, you can leave your training request here and let trainers contact you later. |
|
|
