Course Description:
 
The ETHICAL HACKING TRAINING presents the A to Z of Penetration Testing for experienced security consultants. This is a hands-on journey for the Expert Pen Tester, Team Leader and Security Consultant responsible for planning, managing, conducting and writing the Pen Test report. We focus on educating the experienced security professional on the intricacies of conducting and leading a ‘Pen Test,’ including the business documents needed prior to and after the engagement. The technical aspects of the attack environment have to be realistic and advanced enough for delegates to collect sufficient information for compiling the post-test report.

Upon Completion:

Ethical Hacking Training students will be able to confidently undertake the laboratory simulated examination. Participants will have completed an entire Pen Test.

Course Benefits:

Students will enjoy an in-depth course that is continuously updated to maintain and incorporate the ever changing security environment. This course offers up-to-date proprietary laboratories that have been researched and developed by leading security professionals from around the world. The CPT will cover much more in-depth attacks, techniques, technologies and countermeasures than foundation Penetration Testing and Ethical Hacking courses.
 
Prerequisites:
 
  • A minimum of 24 months experience in networking technologies
  • Sound knowledge of TCP/IP
  • Computer hardware knowledge
  • A minimum of 12 months consultancy experience.
  • Knowledge of Linux or Unix.
 
Certification:
 

CEH - Certified Ethical Hacker

CPT - Certified Penetration Tester

 
Student Materials:
 

Students will receive the following items during the training program:

  • A 350-page comprehensive computer forensic student guide and investigative resource materials.
  • A CD-ROM containing GUI-based Windows data examination software with a " live" casefile.
  • A CD-ROM containing GUI-based Linux data examination software.
  • Upon passing practical and written examinations, a Certificate of Completion
 
Course Outline:
 

Module 1: Introduction and Penetration Test Overview

  • Authorization,
  • Defining Boundaries,
  • Objectives & Scope of the Pen Test
  • Plan Of Attack
  • Gathering Information
  • Logging Access Attempts
  • Initial Assumptions
  • RFP/Proposal Process
  • Managing Consultants
  • Scheduling
  • Procedures & Guidelines
  • Reporting

Module 2: Refresher: The Attack Stage

Module 3: Core Impact: Initial Pen Test

  • Six Stage Penetration Test Using Core Impact.
  • (Note: Core impact is used to expedite the process, you do not need Core Impact in your office to receive the full benefit of this module)

Module 4: TCP/IP Detailed

Module 5: External/DMZ

  • Web Sites
  • Database Mining
  • Mail Servers
  • Advanced E-Mail Tracking and Tracing
  • DNS Servers
  • FTP Servers
  • VPN Servers
  • Wireless Networks
  • Firewalls

Module 6: Programming 101

Module 7: Social Engineering

Module 8: Internal Pen Testing

  • Clients, Servers
  • Databases
  • Switches
  • Routers
  • Intranet
  • Remote Management Hardware/Software
  • IDS - IPS
  • Patch Management
  • Virus/Spyware.

Module 9: Physical Security

  • Server Room
  • Back-up Media
  • Accessibility To Security Controls
  • Cabling, Physical Access
  • Key Loggers
  • Documentation
  • Lock Picking
  • Hot Jacks
  • Phone Systems
  • Covert Wireless.

Module 10: User Security

  • Awareness Training
  • Incident Response
  • Accessing Mail Connectivity
  • Web Browsing

Module 11: After the Pen Test

  • Policy Review
  • Countermeasure Evaluation & Implementation.

 

Top

All Content ©2009 Ethical Hacking Penetration Testing Training, All Rights Reserved.