Site Map | Legal | Privacy | Terms & Conditions..
.
Booking Hotline: ++44 (0) 1737 821 590..
 

  .


Course Categories


>> Networking
......Basic networking
......LANs, WANs and cabling
..... RF and Wireless
..... IP and routing
..... DNS, SNMP...
..... VoIP, SIP...
..... IPsec, firewalls...
>> Telecommunications
>> LINX
>> Foundry Networks
>> Product specific
>> Management overviews
>> Security
>> UNIX and Linux
>> Microsoft
>> Programming


>> See all courses

  
Penetration testing
Pen testing course description
An advanced technical hands on course focusing on hacking and counter hacking. The course revolves around a series of exercises based on "hacking" into a network (pen testing the network) and then defending against the hacks.

Who will benefit?
Technical support staff.

Pen testing course prerequisites
TCP/IP Foundation.
IP security.
IP VPNs.

Pen testing course objectives
By the end of the course delegates will be able to:
  • Perform penetration tests.
  • Explain the technical workings of various penetration tests.
  • Produce reports on results of penetration tests.
  • Defend against hackers.

Duration: 5 days



>> Dates, prices & bookings for this course

>> Back to Security courses overview

Pen testing course contents

Introduction
Hacking, “White hacking”, What is penetration testing? Why use pen testing, black box vs. white box testing, equipment and tools, security lifecycles, counter hacking, pen testing reports, methodologies, legal issues.

Physical security and social engineering
Testing access controls, perimeter reviews, location reviews, alarm response testing. Request testing, guided suggestions, trust testing.

Reconnaissance (discovery)
Gaining contacts and addresses, DNS queries, NIC queries, ICMP ping sweeping, system and server trails from the target network, information leaks.

Scanning (enumeration)
Gaining OS info, platform info, open port info, application info. Routes used, firewalking, Port scanning, stealth port scanning, FIN scanning, Xmas tree scanning, Null scanning, spoofed scanning.

Gaining access
Getting past passwords, password grinding, spoofed tokens, replays, remaining anonymous.

Securing networks
“ Hurdles”, firewalls, DMZ, stopping port scans, IDS, Honeypots, Router testing, firewall testing, IDS testing

Exploiting (testing) vulnerabilities
Buffer overflows, DoS attacks, simple exploits, brute force methods, UNIX based, Windows based, specific application vulnerabilities.

Maintaining access
Backdooring systems, preventing detection.

Information security
Document grinding, privacy.

Telecommunications testing
PBX testing, Voicemail testing, modem testing.