US flag US
US 888-843-8733 CA 888-843-8733
  • Home
  • Courses
  • Vulnerability Assessment Training: Protecting Your Organization

Vulnerability Assessment Training: Protecting Your Organization

Course 589

  • Duration: 4 days
  • Labs: Yes
  • Language: English
  • 23 CompTIA CEUs
  • 23 NASBA CPE Credits (live, in-class training only)
  • Level: Intermediate

This Vulnerability Assessment training course teaches you how to minimize costly security breaches and evaluate the risk in your enterprise from an array of vulnerabilities. You will create a network security vulnerability assessment checklist, identifying exposed infrastructure, server, and desktop vulnerabilities. Additionally, you will create and interpret reports, configure vulnerability scanners, detect points of exposure, and ultimately prevent network exploitation.

    Vulnerability Assessment Training: Protecting Your Organization Delivery Methods

    • In-Person

    • Online

    Vulnerability Assessment Training: Protecting Your Organization Course Information

    In this course, you will learn how to:

    • Detect and respond to vulnerabilities, and minimize exposure to security breaches
    • Employ real-world exploits and evaluate their effect on your systems
    • Configure vulnerability scanners to identify weaknesses
    • Analyze the results of vulnerability scans
    • Establish an efficient strategy for vulnerability management

    Prerequisites

    Before taking this course, you should have a basic understanding of network security and security issues at the level of

    And you should have an understanding of the following:

    • TCP/IP networking
    • Network security goals and concerns
    • The roles of firewalls and intrusion detection systems

    Continuing Education Information

    Vulnerability Assessment Course Outline

    Introduction

    • Defining vulnerability, exploit, threat and risk
    • Creating a vulnerability report
    • Conducting an initial scan
    • Common Vulnerabilities and Exposure (CVE) list

    Scanning and exploits

    • Vulnerability detection methods
    • Types of scanners
    • Port scanning and OS fingerprinting
    • Enumerating targets to test information leakage
    • Types of exploits: worm, spyware, backdoor, rootkits, Denial of Service (DoS)
    • Deploying exploit frameworks

    Uncovering infrastructure vulnerabilities

    • Uncovering switch weaknesses
    • Vulnerabilities in infrastructure support servers
    • Network management tool attacks

    Attacks against analyzers and IDS

    • Identifying Snort IDS bypass attacks
    • Corrupting memory and causing Denial of Service

    Exposing server vulnerabilities

    • Scanning servers: assessing vulnerabilities on your network
    • Uploading rogue scripts and file inclusion
    • Catching input validation errors
    • Performing buffer overflow attacks
    • SQL injection
    • Cross-Site Scripting (XSS) and cookie theft

    Revealing desktop vulnerabilities

    • Scanning for desktop vulnerabilities
    • Client buffer overflows
    • Silent downloading: spyware and adware
    • Identifying design errors

    Implementing scanner operations and configuration

    • Choosing credentials, ports and dangerous tests
    • Preventing false negatives
    • Creating custom vulnerability tests
    • Customizing Nessus scans
    • Handling false positives

    Creating and interpreting reports

    • Filtering and customizing reports
    • Interpreting complex reports
    • Contrasting the results of different scanners

    Researching alert information

    • Using the National Vulnerability Database (NVD) to find relevant vulnerability and patch information
    • Evaluating and investigating security alerts and advisories
    • Employing the Common Vulnerability Scoring System (CVSS)

    Identifying factors that affect risk

    • Evaluating the impact of a successful attack
    • Determining vulnerability frequency
    • Calculating vulnerability severity
    • Weighing important risk factors
    • Performing a risk assessment

    The vulnerability management cycle

    • Standardizing scanning with Open Vulnerability Assessment Language (OVAL)
    • Patch and configuration management
    • Analyzing the vulnerability management process

    Vulnerability controversies

    • Rewards for vulnerability discovery
    • Markets for bugs and exploits
    • Challenge programs
    Get This Course $2,990 GOV $2,659 For Team Prices Call: 888-843-8733
    • 4-day instructor-led training course
    • Earn 23 CompTIA CEUs
    • One-on-one after course instructor coaching

    Get the Advantage $3,499
    • Take this course and gain unlimited access to more than 300 virtual instructor-led courses
    • Future-proof your career with more than 100 sought-after certifications in the market
    • Build real skills through hands-on learning in more than 180 virtual labs
    • Grow your skills and capabilities with more than one course at a time and save
    Thank you for choosing subscriptions!
    #589
    • Guaranteed to Run - you can rest assured that the class will not be cancelled.
      Jun 26 - 29 9:00 AM - 4:30 PM EDT
      Virtual
    • Aug 22 - 25 9:00 AM - 4:30 PM EDT
      New York or Virtual
    • Oct 3 - 6 9:00 AM - 4:30 PM EDT
      Ottawa or Virtual
    • Dec 19 - 22 9:00 AM - 4:30 PM EST
      Herndon, VA or Virtual
    • Feb 20 - 23 9:00 AM - 4:30 PM EST
      New York or Virtual
    • May 28 - 31 9:00 AM - 4:30 PM EDT
      Herndon, VA or Virtual
    • 4-day instructor-led training course
    • Earn 23 CompTIA CEUs
    • One-on-one after course instructor coaching

    Get the Advantage $3,499
    • Take this course and gain unlimited access to more than 300 virtual instructor-led courses
    • Future-proof your career with more than 100 sought-after certifications in the market
    • Build real skills through hands-on learning in more than 180 virtual labs
    • Grow your skills and capabilities with more than one course at a time and save
    Thank you for choosing subscriptions!
    #589
    • Guaranteed to Run - you can rest assured that the class will not be cancelled.
      Jun 26 - 29 9:00 AM - 4:30 PM EDT
      Virtual
    • Aug 22 - 25 9:00 AM - 4:30 PM EDT
      New York or Virtual
    • Oct 3 - 6 9:00 AM - 4:30 PM EDT
      Ottawa or Virtual
    • Dec 19 - 22 9:00 AM - 4:30 PM EST
      Herndon, VA or Virtual
    • Feb 20 - 23 9:00 AM - 4:30 PM EST
      New York or Virtual
    • May 28 - 31 9:00 AM - 4:30 PM EDT
      Herndon, VA or Virtual
    • Bring this or any training to your organization

    • Full-scale program development

    • Delivered when, where, and how you want it
    • Blended learning models
    • Tailored content
    • Expert team coaching

    Get the Advantage $3,499
    • Take this course and gain unlimited access to more than 300 virtual instructor-led courses
    • Future-proof your career with more than 100 sought-after certifications in the market
    • Build real skills through hands-on learning in more than 180 virtual labs
    • Grow your skills and capabilities with more than one course at a time and save
    Thank you for choosing subscriptions!
    #589
    Questions about this course?
    * Required Fields
    Customize Your Team Training Experience

    Fill out the form below or call 888-843-8733

    * Required Fields
    Preferred method of contact:

    Need Help Finding The Right Training Solution?

    Our training advisors are here for you.

    Contact Us

    Course FAQs

    The process of defining, identifying, classifying and prioritizing what vulnerabilities are in your system.

    This assessment aims to find out what vulnerabilities may be within your system in time to fix them.

    A vulnerability assessment scans for known vulnerabilities, while a penetration test tries to exploit and fix the weaknesses actively.

    Yes! We know your busy work schedule may prevent you from getting to one of our classrooms which is why we offer convenient online training to meet your needs wherever you want. This course is available in class and live online.

    Related Courses

    • Learning Tree
      Information Security Training

      The Information Security Training provides the knowledge and skills to analyze and assess network risks, then select & deploy appropriate countermeasures.

      Foundation
      4 days
      Online or In-class
      Starts from $2,990
    • Learning Tree
      Vulnerability Assessment Management Labs

      Detect security vulnerabilities in web-based apps, networks & systems with CYBRScore's 19 hands-on labs on tools & techniques.

      Foundation
      Multi-Week
      Starts from $99
    Chat With Us