Ethical Hacking Online Certification Training

Introduction to the course

• Introduction to networking technologies (e.g., hardware, infrastructure)
• Introduction to web technologies (e.g., web 2.0, skype)
• Introduction to systems technologies
• Understand the communication on protocols
• Understand malware operations
• Introduction to mobile technologies (e.g., smart phones)
• Introduction to telecommunication technologies
• Learn to create backups and archive information (e.g., local, network)

Analysis and assessment

• Understand the fundamentals of Data analysis
• Learn to conduct System analysis
• Understand the concepts and implementation of Risk Assessment
• Learn the various Technical assessments methods

 Security related concepts

• Understand the ways to execute systems security controls
• Learn to work with application/file server
• Learn to install and work on firewalls
• Understand the concepts of cryptography
• Understand the concepts network security
• Understand the concepts physical security
• Understand the concepts threat modeling
• Understand the concepts Verification on procedures (e.g., false positive/negative validation)
• Understand and Learn to implement social engineering (human factors manipulation)
• Learn to install vulnerability scanners
• Understand the security policy implications
• Understand privacy/confidentiality (with regard to engagement)
• Understand how to use biometrics
• Understand the concepts of wireless access technology (e.g., networking, RFID, Bluetooth)
• Learn to work on trusted networks
• Learn to deal with vulnerabilities

 Tools/ System/ Programs

• Learn to monitor and analyze the internal computing system with network/host-based intrusion
• Learn to monitor data using network/wireless sniffers (e.g., WireShark, Airsnort)
• Understand how to execute access control mechanisms (e.g., smart cards)
• Learn the various cryptography techniques (e.g., IPsec, SSL, PGP)
• Learn programming languages (e.g. C++, Java, C#, C)
• Learn the scripting languages (e.g., PHP, Java script)
• Learn to implement boundary protection on appliances
• Understand the various network topologies
• Understand the concept of subnetting and its usage
• Learn to port scan (e.g., NMAP)
• Understand the concept of domain name system (DNS)
• Define and describe routers/modems/switches
• Learn to use a vulnerability scanner (e.g., Nessus, Retina)
• vulnerability management and protection systems (e.g., Foundstone, Ecora)
• Learn to work on various operating environments (e.g., Linux, Windows, Mac)
• Learn to install anti-virus systems and programs
• Learn to work with log analysis tools
• Understand the various security models
• Define and describe exploitation tools
• Understand the database structures

 V. Procedures

• Understand the concepts of cryptography
• Learn when to use public key infrastructure (PKI)
• Understand Security Architecture (SA)
• Understand the concept of Service Oriented Architecture
• Understand the concept of information on security incident
• Learn about N- Tier application design
• Understand the concepts of TCP/IP networking (e.g., network routing)
• Understand how to implement Security testing methodology

 VI. Regulation/Policy

A. Understand the security policies in ethical hacking

B. Learn the compliance regulations (e.g., PCI)

 VII. Ethics

A. Learn the professional code of conduct in ethical hacking

B. Understand the appropriateness of hacking

The latest course content as per version 10

Introduction to Ethical Hacking

• Information Security Overview
• Understand the concepts of Information Security Threats and Attack Vectors
• Overview of Hacking Concepts
• Understand the concepts of Ethical Hacking
• Learn how to implement Information Security Controls
• Understand the concepts of Penetration Testing
• Overview of Information Security Laws and Standards

Footprinting and Reconnaissance

• Understand the concepts of Footprinting
• Learn to work with Footprinting through Search Engines
• Learn to work with Footprinting through Web Services
• Learn to work with Footprinting through Social Networking Sites
• Learn to work with Email Footprinting
• Overview of Competitive Intelligence
• Understand the concept of Whois Footprinting
• Learn in detail about DNS Footprinting
• Learn in detail about Network Footprinting
• Understand Footprinting through Social Engineering
• Learn to work with Footprinting Tools
• Countermeasures

Scanning Networks

• Overview of Network Scanning Concepts
• Learn to use Scanning Tools
• Overview of Scanning Techniques
• Learn to scan beyond IDS and Firewall
• Understand the concept of Banner Grabbing
• Learn to draw Network Diagrams
• Learn to Scan Pen Testing

Enumeration

• Understand the concepts of Enumeration
• Learn to obtain list of computers, shares and policies and passwords with NetBIOS Enumeration
• Learn to work with simple network management protocol (SNMP) Enumeration protocol
• Learn to access directories with The Lightweight Directory Access Protocol (LDAP) Enumeration
• Learn to work with Network time protocol (NTP Enumeration)
• Use Simple mail transport protocol (SMTP) to send mails and DNS Enumeration to locate all the servers and corresponding records
• Countermeasures of Enumeration

Vulnerability Analysis

• Understand the concepts of Vulnerability Assessment
• Overview of Vulnerability Assessment Solutions
• Overview of Vulnerability Scoring Systems
• Learn to work with Vulnerability Assessment Tools
• Learn to create Vulnerability Assessment Reports

System Hacking

• Understand the concepts of System Hacking
• Cracking Passwords
• Understand how to escalate Privileges
• Learn to execute Applications
• Define and describe Covering Tracks
• Learn to perform Penetration Testing

Malware Threats

• Understand the concepts of Malware
• Understand the concepts of Trojan
• Understand the concepts of Virus and Worm
• Learn to perform Malware Analysis
• Countermeasures of Malware
• Learn to conduct Malware Penetration Testing

Sniffing

• Understand the concepts of Sniffing
• Understand Sniffing Technique: MAC Attacks
• Understand Sniffing Technique: DHCP Attacks
• Understand Sniffing Technique: ARP Poisoning
• Understand Sniffing Technique: Spoofing Attacks
• Understand Sniffing Technique: DNS Poisoning
• Learn to work with Sniffing Tools
• Countermeasures of Sniffing
• Overview of Sniffing Detection Techniques

Social Engineering

• Overview of Social Engineering Concepts
• Understand how to apply Social Engineering Techniques
• Define Insider Threats
• Learn Impersonation on Social Networking Sites
• Learn to identity Theft
• Countermeasures of social engineering
• Learn to conduct Social Engineering Pen Testing

Denial-of-Service

• Overview of DoS/DDoS Concepts
• Learn to work with DoS/DDoS Attack Techniques
• Learn to work with DoS/DDoS Attack Tools
• Counter measures of denial-of-service
• Learn tow work with DoS/DDoS Protection Tools
• Learn to conduct DoS/DDoS Penetration Testing

Session Hijacking

• Understand the concepts of Session Hijacking
• Understand the Application Level Session Hijacking
• Understand the Network Level Session Hijacking
• Learn to work with Session Hijacking Tools
• Countermeasures in session Hijacking
• Learn to conduct Penetration Testing
• Overview of IDS, Firewall and Honeypot Solutions
• Understand how Evading IDS happens
• Understand how Evading Firewalls happens
• Learn to detect Honeypots
• Learn to conduct Firewall penetration testing

Hacking Web Servers

• Understand the concepts of Web Server
• Learn the Web Server Attacks
• Understand Web Server Attack Methodology
• Learn to work with Server Attack Tools
• Countermeasures in webservers
• Understand the concepts of Patch Management
• Learn to work with Web Server Security Tools
• Learn to perform Web Server Pen Testing
• Understand the Web App Concepts
• Learn to deal with Web App Threats
• Overview of Hacking Methodology
• Learn to use Web App Hacking Tools
• Understand the Web App Security Testing Tools
• Learn to perform Web App Pen Testing

SQL Injection

• Understand the concepts of SQL Injection
• Understand the various Types of SQL Injection
• Learn to work with SQL Injection Tools
• Understand the various Evasion Techniques

Hacking Wireless Networks

• Overview of Wireless Concepts
• Understand Wireless Encryption
• Understand the Wireless Hacking Methodology
• Learn to work with Wireless Hacking Tools
• Understand how Bluetooth Hacking happens
• Overview of Wireless Security Tools
• Learn to conduct Wireless Pen Testing

Hacking Mobile Platforms

• Overview of Mobile Platform Attack Vectors
• Understand how Hacking happens in Android OS
• Understand how Hacking happens in iOS
• Overview of Mobile Spyware
• Understand[M1]  Mobile Device Management
• Overview of Mobile Security Guidelines and Tools
• Learn to conduct Mobile Pen Testing

IoT Hacking

• Overview of IoT Concepts
• Understand how attacks happen in IoT
• Understand the IoT Hacking Methodology
• Learn to work to with IoT Hacking Tools
• Learn to conduct IoT Pen Testing

Cloud Computing

• Understand the concepts of Cloud Computing
• Overview of Cloud Computing Threats
• Understand how attacks happen in Cloud Computing
• Overview of Cloud Security
• Learn to use Cloud Security Tools
• Learn to perform Cloud Penetration Testing

Cryptography

• Understand the concepts of Cryptography
• Learn to use the various tools in Cryptography
• Understand Email Encryption
• Overview of Cryptanalysis