Type to search LearningTree.com

Do you mean "{{response.correctedQuery}}" ?

Sorry, no results were found for your query.

Please check your spelling and try your search again.

 

Security Training









Preferred method of contact?

Penetration Testing: Tools and Techniques

COURSE TYPE

Practitioner

Course Number

537

Duration

4 Days

Enroll

About This Course: As network breaches become increasingly sophisticated, proactive defenses are essential to counter malicious attacks. In this course, you discover weaknesses in your network using the same mindset and methods as hackers. You acquire the knowledge to test and exploit internal and external defenses. You learn countermeasures to reduce risk to your enterprise.

You Will Learn How To

  • Deploy ethical hacking to expose weaknesses in your organization
  • Gather intelligence by employing reconnaissance, published data and scanning tools
  • Probe and compromise your network using hacking tools to test and improve your security
  • Protect against privilege escalation to prevent intrusions

Course Outline

  • Introduction to Ethical Hacking
  • Defining a penetration testing methodology
  • Creating a security testing plan
  • Footprinting and Intelligence Gathering

Acquiring target information

  • Locating useful and relevant information
  • Scavenging published data
  • Mining archive sites

Scanning and enumerating resources

  • Identifying authentication methods
  • Harvesting e–mail information
  • Interrogating network services
  • Scanning from the inside out with HTML and egress busting
  • Identifying Vulnerabilities

Correlating weaknesses and exploits

  • Researching databases
  • Determining target configuration
  • Evaluating vulnerability assessment tools

Leveraging opportunities for attack

  • Discovering exploit resources
  • Attacking with Metasploit
  • Attacking Servers and Devices to Build Better Defenses

Bypassing router Access Control Lists (ACLs)

  • Discovering filtered ports
  • Manipulating ports to gain access
  • Connecting to blocked services

Compromising operating systems

  • Examining Windows protection modes
  • Analyzing Linux/UNIX processes

Subverting web applications

  • Injecting SQL and HTML code
  • Hijacking web sessions by prediction and Cross–Site Scripting (XSS)
  • Bypassing authentication mechanisms
  • Manipulating Clients to Uncover Internal Threats

Baiting and snaring inside users

  • Executing client–side attacks
  • Gaining control of browsers

Manipulating internal clients

  • Harvesting client information
  • Enumerating internal data

Deploying the social engineering toolkit

  • Cloning a legitimate site
  • Diverting clients by poisoning DNS
  • Exploiting Targets to Increase Security

Initiating remote shells

  • Selecting reverse or bind shells
  • Leveraging the Metasploit Meterpreter

Pivoting and island–hopping

  • Deploying portable media attacks
  • Routing through compromised clients

Pilfering target information

  • Stealing password hashes
  • Extracting infrastructure routing, DNS and NetBIOS data

Uploading and executing payloads

  • Controlling memory processes
  • Utilizing the remote file system
  • Testing Antivirus and IDS Security

Masquerading network traffic

  • Obfuscating vectors and payloads
  • Side–stepping perimeter defenses

Evading antivirus systems

  • Discovering stealth techniques to inject malware
  • Uncovering the gaps in antivirus protection
  • Mitigating Risks and Next Steps
  • Reporting results and creating an action plan
  • Managing patches and configuration
  • Recommending cyber security countermeasures
Show complete outline
Show Less

Course Schedule

Attend this live, instructor-led course In-Class or Online via AnyWare.

Hassle-Free Enrollment: No advance payment required.
Tuition due 30 days after your course.

Oct 4 - 7 Ottawa/AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware
In-Class

Dec 6 - 9 Toronto/AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware
In-Class

Jan 3 - 6 Ottawa/AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware
In-Class

Jan 10 - 13 New York/AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware
In-Class

Feb 28 - Mar 3 Herndon, VA/AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware
In-Class

Mar 7 - 10 AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware

Apr 11 - 14 New York/AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware
In-Class

May 2 - 5 AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware

Jun 20 - 23 Herndon, VA/AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware
In-Class

Jun 27 - 30 New York/AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware
In-Class

Jul 25 - 28 AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware

Aug 29 - Sep 1 AnyWare Enroll Now

How would you like to attend?

Live, Online via Anyware

Guaranteed to Run

Show all dates
Show fewer dates

Bring this Course to Your Organization and Train Your Entire Team
For more information, call 1-888-843-8733 or click here

Tuition

Standard

$2990

Government

$2659

Course Tuition Includes:

After-Course Instructor Coaching
When you return to work, you are entitled to schedule a free coaching session with your instructor for help and guidance as you apply your new skills.

Free Course Exam
You can take your course exam on the last day of your course and receive a Certificate of Achievement with the designation "Awarded with Distinction."

Prev
Next

Questions

Call 1-888-843-8733 or click here »

An experienced training advisor will happily answer any questions you may have and alert you to any tuition savings to
which you or your organization may be entitled.

Training Hours

Standard Course Hours: 9:00 am – 4:30 pm
*Informal discussion with instructor about your projects or areas of special interest: 4:30 pm – 5:30 pm


FREE Online Course Exam (if applicable) – Last Day: 3:30 pm – 4:30 pm
By successfully completing your FREE online course exam, you will:

  • Have a record of your growth and learning results.
  • Bring proof of your progress back to your organization
  • Earn credits toward industry certifications (if applicable)
  • Make progress toward one or more Learning Tree Specialist & Expert Certifications (if applicable)

Enhance Your Credentials with Professional Certification

Learning Tree's comprehensive training and exam preparation guarantees that you will gain the knowledge and confidence to achieve professional certification and advance your career.

This course is approved by CompTIA for continuing education units (CEUs). For additional information and to confirm which courses are eligible towards your CompTIA certification, click here.

Earn 23 Credits from NASBA

This course qualifies for 23 CPE credits from the National Association of State Boards of Accountancy CPE program. Read more ...

“Our company benefits from having someone with IT security skills in-house. Thanks to this penetration testing course, we can now do security audits more frequently and at a lower cost than when we were contracting out the work.”

- D. Caswell, Programmer/Analyst
North Carolina Housing Finance Agency

Prev
Next