Passionate about Learning
HOME      LIVE CHAT    My NetCom Free Catalog 1-888-563-8266
.
SEARCH TRAINING

World Innovation Forum, World Business Forum - New York City


Sign up for Upcoming Free Training Webinars


Discover our Las Vegas Boot Camp Experience
Home > Vendors > EC-Council > CEH & CHFI > CEH: Certified Ethical Hacker v7.1

CEH: Certified Ethical Hacker v7.1



CEH: Certified Ethical Hacker v7.1 Course Description

This class will immerse the students into an interactive environment where they will be shown how to scan, test, hack and secure their own systems. The lab intensive environment gives each student in-depth knowledge and practical experience with the current essential security systems. CEHv7 provides a comprehensive ethical hacking and network security-training program to meet the standards of highly skilled security professionals. Hundreds of SMEs and authors have contributed towards the content presented in the CEHv7 courseware. Latest tools and exploits uncovered from the underground community are featured in the new package. When a student leaves this intensive 5 day class they will have hands on understanding and experience in Ethical Hacking.

CEH v7.1 Features and Enhancements Includes:

  • CEH v7.1 showcases the latest hacking techniques and countermeasures.
  • Updated core content and well-organized flow for a best-in-class learning experience.
  • Exclusive section for countermeasures against different attacks with detailed explanation of how to implement the countermeasures in a real-time environment.
  • Attractive and descriptive diagrammatic representations of concepts and attacks.
  • Complete section dedicated to penetration testing, illustrating how to implement learned concepts to test network system security.
  • Courseware includes over 20GB of the latest hacking and security tools.
  • A result-oriented, descriptive lab manual; the labs showcased in the courseware are tested against the latest Operating Systems with all patches and hot fixes applied
  • CEH v7.1 meets Government and DoD compliance with Federal Information Security Management Act (FISMA) and DoD Directive 8570.1-M.
  • Over 1000 minutes of video demonstrations and more.

Intended Audience for the CEH: Certified Ethical Hacker v7.1 Course

  • This course will significantly benefit security officers, auditors, security professionals, site administrators, and anyone who is concerned about the integrity of the network infrastructure.
  • Candidate should have at least two years of information technology experience, a strong working knowledge of TCP/IP, and a basic familiarity with Linux or strong working support knowledge of Microsoft XP or Vista.

Training Packages & Career Tracks that include the CEH: Certified Ethical Hacker v7.1 Course

CEH: Certified Ethical Hacker v7.1 Course Objectives

  • Students will begin by understanding perimeter defenses work and then be lead into scanning and attacking their own networks, no real network is harmed.
  • Students then learn how intruders escalate intruders escalate privileges and what steps can be taken to secure a system.
  • Students will also learn about Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation.

The CEH: Certified Ethical Hacker v7.1 Course prepare students for the following Exams

  • 312-50 : Certified Ethical Hacker

CEH: Certified Ethical Hacker v7.1 Course Outline

    1. Introduction to Ethical Hacking
      1. Internet Crime Current Report: IC3
      2. Data Breach Investigations Report
      3. Types of Data Stolen From the Organizations
      4. Essential Terminologies
      5. Elements of Information Security
      6. Authenticity and Non-Repudiation
      7. The Security, Functionality, and Usability Triangle
      8. Security Challenges
      9. Effects of Hacking
      10. Effects of Hacking on Business
      11. Who is a Hacker?
      12. Hacker Classes
      13. Hacktivism
      14. What Does a Hacker Do?
      15. Phase 1 - Reconnaissance
      16. Reconnaissance Types
      17. Phase 2 - Scanning
      18. Phase 3 - Gaining Access
      19. Phase 4 - Maintaining Access
      20. Phase 5 - Covering Tracks
      21. Types of Attacks on a System
      22. Operating System Attacks
      23. Application-Level Attacks
      24. Shrink Wrap Code Attacks
      25. Misconfiguration Attacks
      26. Why Ethical Hacking is Necessary?
      27. Defense in Depth
      28. Scope and Limitations of Ethical Hacking
      29. What Do Ethical Hackers Do?
      30. Skills of an Ethical Hacker
      31. Vulnerability Research
      32. Vulnerability Research Websites
      33. What is Penetration Testing?
      34. Why Penetration Testing?
      35. Penetration Testing Methodology
    2. Footprinting and Reconnaissance
      1. Footprinting Terminologies
      2. What is Footprinting?
      3. Objectives of Footprinting
      4. Footprinting Threats
      5. Finding a Company's URL
      6. Locate Internal URLs
      7. Public and Restricted Websites
      8. Search for Company's Information
      9. Tools to Extract Company's Data
      10. Footprinting Through Search Engines
      11. Collect Location Information
      12. Satellite Picture of a Residence
      13. People Search
      14. People Search Using http://pipl.com
      15. People Search Online Services
      16. People Search on Social Networking Services
      17. Gather Information from Financial Services
      18. Footprinting Through Job Sites
      19. Monitoring Target Using Alerts
      20. Competitive Intelligence Gathering
      21. Competitive Intelligence-When Did this Company Begin? How Did it Develop?
      22. Competitive Intelligence-What are the Company's Plans?
      23. Competitive Intelligence-What Expert Opinion Say About the Company?
      24. Competitive Intelligence Tools
      25. Competitive Intelligence Consulting Companies
      26. WHOIS Lookup
      27. WHOIS Lookup Result Analysis
      28. WHOIS Lookup Tools: SmartWhois
      29. WHOIS Lookup Tools
      30. WHOIS Lookup Online Tools
      31. Extracting DNS Information
      32. DNS Interrogation Tools
      33. DNS Interrogation Online Tools
      34. Locate the Network Range
      35. Traceroute
      36. Traceroute Analysis
      37. Traceroute Tool: 3D Traceroute
      38. Traceroute Tool: LoriotPro
      39. Traceroute Tool: Path Analyzer Pro
      40. Traceroute Tools
      41. Mirroring Entire Website
      42. Website Mirroring Tools
      43. Mirroring Entire Website Tools
      44. Extract Website Information from http://www.archive.org
      45. Monitoring Web Updates Using Website Watcher
      46. Tracking Email Communications
      47. Email Tracking Tools
      48. Footprint Using Google Hacking Techniques
      49. What a Hacker Can Do With Google Hacking?
      50. Google Advance Search Operators
      51. Finding Resources using Google Advance Operator
      52. Google Hacking Tool: Google Hacking Database (GHDB)
      53. Google Hacking Tools
      54. Additional Footprinting Tools
      55. Footprinting Countermeasures
      56. Footprinting Pen Testing
    3. Scanning Networks
      1. Network Scanning
      2. Types of Scanning
      3. Checking for Live Systems - ICMP Scanning
      4. Ping Sweep
      5. Ping Sweep Tools
      6. Three-Way Handshake
      7. TCP Communication Flags
      8. Create Custom Packet using TCP Flags
      9. Hping2 / Hping3
      10. Hping Commands
      11. Scanning Techniques
      12. TCP Connect / Full Open Scan
      13. Stealth Scan (Half-open Scan)
      14. Xmas Scan
      15. FIN Scan
      16. NULL Scan
      17. IDLE Scan
      18. Scanning: IDS Evasion Techniques
      19. IP Fragmentation Tools
      20. Scanning Tool: Nmap
      21. Scanning Tool: NetScan Tools Pro
      22. Scanning Tools
      23. Do Not Scan These IP Addresses (Unless you want to get into trouble)
      24. Scanning Countermeasures
      25. War Dialing
      26. Why War Dialing?
      27. War Dialing Tools
      28. War Dialing Countermeasures
      29. War Dialing Countermeasures: SandTrap Tool
      30. OS Fingerprinting
      31. Active Banner Grabbing Using Telnet
      32. Banner Grabbing Tool: ID Serve
      33. GET REQUESTS
      34. Banner Grabbing Tool: Netcraft
      35. Banner Grabbing Tools
      36. Banner Grabbing Countermeasures: Disabling or Changing Banner
      37. Hiding File Extensions
      38. Hiding File Extensions from Webpages
      39. Vulnerability Scanning
      40. Vulnerability Scanning Tool: Nessus
      41. Vulnerability Scanning Tool: SAINT
      42. Vulnerability Scanning Tool: GFI LANGuard
      43. Network Vulnerability Scanners
      44. LANsurveyor
      45. Network Mappers
      46. Proxy Servers
      47. Why Attackers Use Proxy Servers?
      48. Use of Proxies for Attack
      49. How Does MultiProxy Work?
      50. Free Proxy Servers
      51. Proxy Workbench
      52. Proxifier Tool: Create Chain of Proxy Servers
      53. SocksChain
      54. TOR (The Onion Routing)
      55. TOR Proxy Chaining Software
      56. HTTP Tunneling Techniques
      57. Why do I Need HTTP Tunneling?
      58. Super Network Tunnel Tool
      59. Httptunnel for Windows
      60. Additional HTTP Tunneling Tools
      61. SSH Tunneling
      62. SSL Proxy Tool
      63. How to Run SSL Proxy?
      64. Proxy Tools
      65. Anonymizers
      66. Types of Anonymizers
      67. Case: Bloggers Write Text Backwards to Bypass Web Filters in China
      68. Text Conversion to Avoid Filters
      69. Censorship Circumvention Tool: Psiphon
      70. How Psiphon Works?
      71. How to Check if Your Website is Blocked in China or Not?
      72. G-Zapper
      73. Anonymizer Tools
      74. Spoofing IP Address
      75. IP Spoofing Detection Techniques: Direct TTL Probes
      76. IP Spoofing Detection Techniques: IP Identification Number
      77. IP Spoofing Detection Techniques: TCP Flow Control Method
      78. IP Spoofing Countermeasures
      79. Scanning Pen Testing
    4. Enumeration
      1. What is Enumeration?
      2. Techniques for Enumeration
      3. NetBIOS Enumeration
      4. NetBIOS Enumeration Tool: SuperScan
      5. NetBIOS Enumeration Tool: NetBIOS Enumerator
      6. Enumerating User Accounts
      7. Enumerate Systems Using Default Passwords
      8. SNMP (Simple Network Management Protocol) Enumeration
      9. Management Information Base (MIB)
      10. SNMP Enumeration Tool: OpUtils Network Monitoring Toolset
      11. SNMP Enumeration Tool: SolarWinds
      12. SNMP Enumeration Tools
      13. UNIX/Linux Enumeration
      14. Linux Enumeration Tool: Enum4linux
      15. LDAP Enumeration
      16. LDAP Enumeration Tool: JXplorer
      17. LDAP Enumeration Tool
      18. NTP Enumeration
      19. NTP Server Discovery Tool: NTP Server Scanner
      20. NTP Server: PresenTense Time Server
      21. NTP Enumeration Tools
      22. SMTP Enumeration
      23. SMTP Enumeration Tool: NetScanTools Pro
      24. DNS Zone Transfer Enumeration Using nslookup
      25. DNS Analyzing and Enumeration Tool: The Men & Mice Suite
      26. Enumeration Countermeasures
      27. SMB Enumeration Countermeasures
      28. Enumeration Pen Testing
    5. System Hacking
      1. Information at Hand Before System Hacking Stage
      2. System Hacking: Goals
      3. CEH Hacking Methodology (CHM)
      4. Password Cracking
      5. Password Complexity
      6. Password Cracking Techniques
      7. Types of Password Attacks
      8. Passive Online Attacks: Wire Sniffing
      9. Password Sniffing
      10. Passive Online Attack: Man-in-the-Middle and Replay Attack
      11. Active Online Attack: Password Guessing
      12. Rainbow Attacks: Pre-Computed Hash
      13. Distributed Network Attack
      14. Non-Electronic Attacks
      15. Default Passwords
      16. Manual Password Cracking (Guessing)
      17. Automatic Password Cracking Algorithm
      18. Stealing Passwords Using USB Drive
      19. Microsoft Authentication
      20. How Hash Passwords are Stored in Windows SAM?
      21. What is LAN Manager Hash?
      22. LM -Hash- Generation
      23. LM, NTLMv1, and NTLMv2
      24. NTLM Authentication Process
      25. Kerberos Authentication
      26. Salting
      27. PWdump7 and Fgdump
      28. L0phtCrack
      29. Ophcrack
      30. Cain & Abel
      31. RainbowCrack
      32. Password Cracking Tools
      33. LM Hash Backward Compatibility
      34. How to Disable LM HASH?
      35. How to Defend against Password Cracking?
      36. Implement and Enforce Strong Security Policy
      37. Privilege Escalation
      38. Escalation of Privileges
      39. Active@ Password Changer
      40. Privilege Escalation Tools
      41. How to Defend against Privilege Escalation?
      42. Executing Applications
      43. Alchemy Remote Executor
      44. RemoteExec
      45. Execute This!
      46. Keylogger
      47. Types of Keystroke Loggers
      48. Acoustic/CAM Keylogger
      49. Keylogger: Advanced Keylogger
      50. Keylogger: Spytech SpyAgent
      51. Keylogger: Perfect Keylogger
      52. Keylogger: Powered Keylogger
      53. Keylogger for Mac: Aobo Mac OS X KeyLogger
      54. Keylogger for Mac: Perfect Keylogger for Mac
      55. Hardware Keylogger: KeyGhost
      56. Keyloggers
      57. Spyware
      58. What Does the Spyware Do?
      59. Types of Spywares
      60. Email and Internet Spyware
      61. Internet and E-mail Spyware
      62. Child Monitoring Spyware
      63. Screen Capturing Spyware
      64. USB Spyware
      65. Audio Spyware
      66. Video Spyware
      67. Print Spyware
      68. Telephone/Cellphone Spyware
      69. Cellphone Spyware: Mobile Spy
      70. GPS Spyware
      71. How to Defend against Keyloggers?
      72. Anti-Keylogger
      73. Anti-Keylogger: Zemana AntiLogger
      74. Anti-Keyloggers
      75. How to Defend against Spyware?
      76. Anti-Spyware: Spyware Doctor
      77. Rootkits
      78. Types of Rootkits
      79. How Rootkit Works?
      80. Rootkit: Fu
      81. Detecting Rootkits
      82. Steps for Detecting Rootkits
      83. How to Defend against Rootkits?
      84. Anti-Rootkit: RootkitRevealer and McAfee Rootkit Detective
      85. NTFS Data Stream
      86. How to Create NTFS Streams?
      87. NTFS Stream Manipulation
      88. How to Defend against NTFS Streams?
      89. NTFS Stream Detector: ADS Scan Engine
      90. NTFS Stream Detectors
      91. What is Steganography?
      92. Steganography Techniques
      93. How Steganography Works?
      94. Types of Steganography
      95. Whitespace Steganography Tool: SNOW
      96. Image Steganography
      97. Image Steganography: Hermetic Stego
      98. Image Steganography Tools
      99. Document Steganography: wbStego
      100. Document Steganography Tools
      101. Video Steganography: Our Secret
      102. Video Steganography Tools
      103. Audio Steganography: Mp3stegz
      104. Audio Steganography Tools
      105. Folder Steganography: Invisible Secrets 4
      106. Folder Steganography Tools
      107. Spam/Email Steganography: Spam Mimic
      108. Natural Text Steganography: Sams Big G Play Maker
      109. Steganalysis
      110. Steganalysis Methods/Attacks on Steganography
      111. Steganography Detection Tool: Stegdetect
      112. Steganography Detection Tools
      113. Why Cover Tracks?
      114. Covering Tracks
      115. Ways to Clear Online Tracks
      116. Disabling Auditing: Auditpol
      117. Covering Tracks Tool: Window Washer
      118. Covering Tracks Tool: Tracks Eraser Pro
      119. Track Covering Tools
      120. System Hacking Penetration Testing
    6. Trojans and Backdoors
      1. What is a Trojan?
      2. Overt and Covert Channels
      3. Purpose of Trojans
      4. What Do Trojan Creators Look For?
      5. Indications of a Trojan Attack
      6. Common Ports used by Trojans
      7. How to Infect Systems Using a Trojan?
      8. Wrappers
      9. Wrapper Covert Programs
      10. Different Ways a Trojan can Get into a System
      11. How to Deploy a Trojan?
      12. Evading Anti-Virus Techniques
      13. Types of Trojans
      14. Command Shell Trojans
      15. GUI Trojan: MoSucker
      16. Document Trojans
      17. E-mail Trojans
      18. Defacement Trojans
      19. Botnet Trojans
      20. Proxy Server Trojans
      21. FTP Trojans
      22. VNC Trojans
      23. HTTP/HTTPS Trojans
      24. Shttpd Trojan - HTTPS (SSL)
      25. ICMP Tunneling
      26. Remote Access Trojans
      27. Covert Channel Trojan: CCTT
      28. E-banking Trojans
      29. Banking Trojan Analysis
      30. Destructive Trojans
      31. Notification Trojans
      32. Credit Card Trojans
      33. Data Hiding Trojans (Encrypted Trojans)
      34. BlackBerry Trojan: PhoneSnoop
      35. MAC OS X Trojan: DNSChanger
      36. MAC OS X Trojan: DNSChanger
      37. Mac OS X Trojan: Hell Raiser
      38. How to Detect Trojans?
      39. Scanning for Suspicious Ports
      40. Port Monitoring Tool: IceSword
      41. Port Monitoring Tools: CurrPorts and TCPView
      42. Scanning for Suspicious Processes
      43. Process Monitoring Tool: What's Running
      44. Process Monitoring Tools
      45. Scanning for Suspicious Registry Entries
      46. Registry Entry Monitoring Tools
      47. Scanning for Suspicious Device Drivers
      48. Device Drivers Monitoring Tools: DriverView
      49. Device Drivers Monitoring Tools
      50. Scanning for Suspicious Windows Services
      51. Windows Services Monitoring Tools: Windows Service Manager (SrvMan)
      52. Windows Services Monitoring Tools
      53. Scanning for Suspicious Startup Programs
      54. Windows7 Startup Registry Entries
      55. Startup Programs Monitoring Tools: Starter
      56. Startup Programs Monitoring Tools: Security AutoRun
      57. Startup Programs Monitoring Tools
      58. Scanning for Suspicious Files and Folders
      59. Files and Folder Integrity Checker: FastSum and WinMD5
      60. Files and Folder Integrity Checker
      61. Scanning for Suspicious Network Activities
      62. Detecting Trojans and Worms with Capsa Network Analyzer
      63. Trojan Countermeasures
      64. Backdoor Countermeasures
      65. Trojan Horse Construction Kit
      66. Anti-Trojan Software: TrojanHunter
      67. Anti-Trojan Software: Emsisoft Anti-Malware
      68. Anti-Trojan Softwares
      69. Pen Testing for Trojans and Backdoors
    7. Viruses and Worms
      1. Introduction to Viruses
      2. Virus and Worm Statistics 2010
      3. Stages of Virus Life
      4. Working of Viruses: Infection Phase
      5. Working of Viruses: Attack Phase
      6. Why Do People Create Computer Viruses?
      7. Indications of Virus Attack
      8. How does a Computer get Infected by Viruses?
      9. Virus Hoaxes
      10. Virus Analysis:
      11. W32/Sality AA
      12. W32/Toal-A
      13. W32/Virut
      14. Klez
      15. Types of Viruses
      16. System or Boot Sector Viruses
      17. File and Multipartite Viruses
      18. Macro Viruses
      19. Cluster Viruses
      20. Stealth/Tunneling Viruses
      21. Encryption Viruses
      22. Polymorphic Code
      23. Metamorphic Viruses
      24. File Overwriting or Cavity Viruses
      25. Sparse Infector Viruses
      26. Companion/Camouflage Viruses
      27. Shell Viruses
      28. File Extension Viruses
      29. Add-on and Intrusive Viruses
      30. Transient and Terminate and Stay Resident Viruses
      31. Writing a Simple Virus Program
      32. Terabit Virus Maker
      33. JPS Virus Maker
      34. DELmE's Batch Virus Maker
      35. Computer Worms
      36. How is a Worm Different from a Virus?
      37. Example of Worm Infection: Conficker Worm
      38. What does the Conficker Worm do?
      39. How does the Conficker Worm Work?
      40. Worm Analysis:
      41. W32/Netsky
      42. W32/Bagle.GE
      43. Worm Maker: Internet Worm Maker Thing
      44. What is Sheep Dip Computer?
      45. Anti-Virus Sensors Systems
      46. Malware Analysis Procedure
      47. String Extracting Tool: Bintext
      48. Compression and Decompression Tool: UPX
      49. Process Monitoring Tools: Process Monitor
      50. Log Packet Content Monitoring Tools: NetResident
      51. Debugging Tool: Ollydbg
      52. Virus Analysis Tool: IDA Pro
      53. Online Malware Testing:
      54. Sunbelt CWSandbox
      55. VirusTotal
      56. Online Malware Analysis Services
      57. Virus Detection Methods
      58. Virus and Worms Countermeasures
      59. Companion Antivirus: Immunet Protect
      60. Anti-virus Tools
      61. Penetration Testing for Virus
    8. Sniffers
      1. Lawful Intercept
      2. Benefits of Lawful Intercept
      3. Network Components Used for Lawful Intercept
      4. Wiretapping
      5. Sniffing Threats
      6. How a Sniffer Works?
      7. Hacker Attacking a Switch
      8. Types of Sniffing: Passive Sniffing
      9. Types of Sniffing: Active Sniffing
      10. Protocols Vulnerable to Sniffing
      11. Tie to Data Link Layer in OSI Model
      12. Hardware Protocol Analyzers
      13. SPAN Port
      14. MAC Flooding
      15. MAC Address/CAM Table
      16. How CAM Works?
      17. What Happens When CAM Table is Full?
      18. Mac Flooding Switches with macof
      19. MAC Flooding Tool: Yersinia
      20. How to Defend against MAC Attacks?
      21. How DHCP Works?
      22. DHCP Request/Reply Messages
      23. IPv4 DHCP Packet Format
      24. DHCP Starvation Attack
      25. Rogue DHCP Server Attack
      26. DHCP Starvation Attack Tool: Gobbler
      27. How to Defend Against DHCP Starvation and Rogue Server Attack?
      28. What is Address Resolution Protocol (ARP)?
      29. ARP Spoofing Attack
      30. How Does ARP Spoofing Work?
      31. Threats of ARP Poisoning
      32. ARP Poisoning Tool: Cain and Abel
      33. ARP Poisoning Tool: WinArpAttacker
      34. ARP Poisoning Tool: Ufasoft Snif
      35. How to Defend Against ARP Poisoning? Use DHCP Snooping Binding Table and Dynamic ARP Inspection
      36. Configuring DHCP Snooping and Dynamic ARP Inspection on Cisco Switches
      37. MAC Spoofing/Duplicating
      38. Spoofing Attack Threats
      39. MAC Spoofing Tool: SMAC
      40. How to Defend Against MAC Spoofing? Use DHCP Snooping Binding Table, Dynamic ARP Inspection and IP Source Guard
      41. DNS Poisoning Techniques
      42. Intranet DNS Spoofing
      43. Internet DNS Spoofing
      44. Proxy Server DNS Poisoning
      45. DNS Cache Poisoning
      46. How to Defend Against DNS Spoofing?
      47. Sniffing Tool: Wireshark
      48. Follow TCP Stream in Wireshark
      49. Display Filters in Wireshark
      50. Additional Wireshark Filters
      51. Sniffing Tool: CACE Pilot
      52. Sniffing Tool: Tcpdump/Windump
      53. Discovery Tool: NetworkView
      54. Discovery Tool: The Dude Sniffer
      55. Password Sniffing Tool: Ace
      56. Packet Sniffing Tool: Capsa Network Analyzer
      57. OmniPeek Network Analyzer
      58. Network Packet Analyzer: Observer
      59. Session Capture Sniffer: NetWitness
      60. Email Message Sniffer: Big-Mother
      61. TCP/IP Packet Crafter: Packet Builder
      62. Additional Sniffing Tools
      63. How an Attacker Hacks the Network Using Sniffers?
      64. How to Defend Against Sniffing?
      65. Sniffing Prevention Techniques
      66. How to Detect Sniffing?
      67. Promiscuous Detection Tool: PromqryUI
      68. Promiscuous Detection Tool: PromiScan
    9. Social Engineering
      1. What is Social Engineering?
      2. Behaviors Vulnerable to Attacks
      3. Factors that Make Companies Vulnerable to Attacks
      4. Why is Social Engineering Effective?
      5. Warning Signs of an Attack
      6. Phases in a Social Engineering Attack
      7. Impact on the Organization
      8. Command Injection Attacks
      9. Common Targets of Social Engineering
      10. Common Targets of Social Engineering: Office Workers
      11. Types of Social Engineering
      12. Human-Based Social Engineering
      13. Computer-Based Social Engineering
      14. Social Engineering Using SMS
      15. Social Engineering by a "Fake SMS Spying Tool"
      16. Insider Attack
      17. Disgruntled Employee
      18. Preventing Insider Threats
      19. Common Intrusion Tactics and Strategies for Prevention
      20. Social Engineering Through Impersonation on Social Networking Sites
      21. Social Engineering Example: LinkedIn Profile
      22. Social Engineering on Facebook
      23. Social Engineering on Twitter
      24. Social Engineering on Orkut
      25. Social Engineering on MySpace
      26. Risks of Social Networking to Corporate Networks
      27. Identity Theft Statistics 2010
      28. Identify Theft
      29. How to Steal an Identity?
      30. STEP 1
      31. STEP 2
      32. STEP 3
      33. Real Steven Gets Huge Credit Card Statement
      34. Identity Theft - Serious Problem
      35. Social Engineering Countermeasures: Policies
      36. Social Engineering Countermeasures
      37. How to Detect Phishing Emails?
      38. Anti-Phishing Toolbar: Netcraft
      39. Anti-Phishing Toolbar: PhishTank
      40. Identity Theft Countermeasures
      41. Social Engineering Pen Testing
      42. Social Engineering Pen Testing: Using Emails
      43. Social Engineering Pen Testing: Using Phone
      44. Social Engineering Pen Testing: In Person
    10. Denial of Service
      1. What is a Denial of Service Attack?
      2. What is Distributed Denial of Service Attacks?
      3. How Distributed Denial of Service Attacks Work?
      4. Symptoms of a DoS Attack
      5. Cyber Criminals
      6. Organized Cyber Crime: Organizational Chart
      7. Internet Chat Query (ICQ)
      8. Internet Relay Chat (IRC)
      9. DoS Attack Techniques
      10. Bandwidth Attacks
      11. Service Request Floods
      12. SYN Attack
      13. SYN Flooding
      14. ICMP Flood Attack
      15. Peer-to-Peer Attacks
      16. Permanent Denial-of-Service Attack
      17. Application Level Flood Attacks
      18. Botnet
      19. Botnet Propagation Technique
      20. Botnet Ecosystem
      21. Botnet Trojan: Shark
      22. Poison Ivy: Botnet Command Control Center
      23. Botnet Trojan: PlugBot
      24. WikiLeak Operation Payback
      25. DDoS Attack
      26. DDoS Attack Tool: LOIC
      27. Denial of Service Attack Against MasterCard, Visa, and Swiss Banks
      28. Hackers Advertise Links to Download Botnet
      29. DoS Attack Tools
      30. Detection Techniques
      31. Activity Profiling
      32. Wavelet Analysis
      33. Sequential Change-Point Detection
      34. DoS/DDoS Countermeasure Strategies
      35. DDoS Attack Countermeasures
      36. DoS/DDoS Countermeasures: Protect Secondary Victims
      37. DoS/DDoS Countermeasures: Detect and Neutralize Handlers
      38. DoS/DDoS Countermeasures: Detect Potential Attacks
      39. DoS/DDoS Countermeasures: Deflect Attacks
      40. DoS/DDoS Countermeasures: Mitigate Attacks
      41. Post-attack Forensics
      42. Techniques to Defend against Botnets
      43. DoS/DDoS Countermeasures
      44. DoS/DDoS Protection at ISP Level
      45. Enabling TCP Intercept on Cisco IOS Software
      46. Advanced DDoS Protection: IntelliGuard DDoS Protection System (DPS)
      47. DoS/DDoS Protection Tool
      48. Denial of Service (DoS) Attack Penetration Testing
    11. Session Hijacking
      1. What is Session Hijacking?
      2. Dangers Posed by Hijacking
      3. Why Session Hijacking is Successful?
      4. Key Session Hijacking Techniques
      5. Brute Forcing
      6. Brute Forcing Attack
      7. HTTP Referrer Attack
      8. Spoofing vs. Hijacking
      9. Session Hijacking Process
      10. Packet Analysis of a Local Session Hijack
      11. Types of Session Hijacking
      12. Session Hijacking in OSI Model
      13. Application Level Session Hijacking
      14. Session Sniffing
      15. Predictable Session Token
      16. How to Predict a Session Token?
      17. Man-in-the-Middle Attack
      18. Man-in-the-Browser Attack
      19. Steps to Perform Man-in-the-Browser Attack
      20. Client-side Attacks
      21. Cross-site Script Attack
      22. Session Fixation
      23. Session Fixation Attack
      24. Network Level Session Hijacking
      25. The 3-Way Handshake
      26. Sequence Numbers
      27. Sequence Number Prediction
      28. TCP/IP Hijacking
      29. IP Spoofing: Source Routed Packets
      30. RST Hijacking
      31. Blind Hijacking
      32. Man-in-the-Middle Attack using Packet Sniffer
      33. UDP Hijacking
      34. Session Hijacking Tools
      35. Paros
      36. Burp Suite
      37. Firesheep
      38. Countermeasures
      39. Protecting against Session Hijacking
      40. Methods to Prevent Session Hijacking: To be Followed by Web Developers
      41. Methods to Prevent Session Hijacking: To be Followed by Web Users
      42. Defending against Session Hijack Attacks
      43. Session Hijacking Remediation
      44. IPSec
      45. Modes of IPSec
      46. IPSec Architecture
      47. IPSec Authentication and Confidentiality
      48. Components of IPSec
      49. IPSec Implementation
      50. Session Hijacking Pen Testing
    12. Hijacking Webservers
      1. Webserver Market Shares
      2. Open Source Webserver Architecture
      3. IIS Webserver Architecture
      4. Website Defacement
      5. Case Study
      6. Why Web Servers are Compromised?
      7. Impact of Webserver Attacks
      8. Webserver Misconfiguration
      9. Example
      10. Directory Traversal Attacks
      11. HTTP Response Splitting Attack
      12. Web Cache Poisoning Attack
      13. HTTP Response Hijacking
      14. SSH Bruteforce Attack
      15. Man-in-the-Middle Attack
      16. Webserver Password Cracking
      17. Webserver Password Cracking Techniques
      18. Web Application Attacks
      19. Webserver Attack Methodology
      20. Information Gathering
      21. Webserver Footprinting
      22. Mirroring a Website
      23. Vulnerability Scanning
      24. Session Hijacking
      25. Hacking Web Passwords
      26. Webserver Attack Tools
      27. Metasploit
      28. Wfetch
      29. Web Password Cracking Tool
      30. Brutus
      31. THC-Hydra
      32. Countermeasures
      33. Patches and Updates
      34. Protocols
      35. Accounts
      36. Files and Directories
      37. How to Defend Against Web Server Attacks?
      38. How to Defend against HTTP Response Splitting and Web Cache Poisoning?
      39. Patches and Hotfixes
      40. What is Patch Management?
      41. Identifying Appropriate Sources for Updates and Patches
      42. Installation of a Patch
      43. Patch Management Tool: Microsoft Baseline Security Analyzer (MBSA)
      44. Patch Management Tools
      45. Web Application Security Scanner: Sandcat
      46. Web Server Security Scanner: Wikto
      47. Webserver Malware Infection Monitoring Tool: HackAlert
      48. Webserver Security Tools
      49. Web Server Penetration Testing
    13. Hacking Web Applications
      1. Web Application Security Statistics
      2. Introduction to Web Applications
      3. Web Application Components
      4. How Web Applications Work?
      5. Web Application Architecture
      6. Web 2.0 Applications
      7. Vulnerability Stack
      8. Web Attack Vectors
      9. Web Application Threats - 1
      10. Web Application Threats - 2
      11. Unvalidated Input
      12. Parameter/Form Tampering
      13. Directory Traversal
      14. Security Misconfiguration
      15. Injection Flaws
      16. SQL Injection Attacks
      17. Command Injection Attacks
      18. Command Injection Example
      19. File Injection Attack
      20. What is LDAP Injection?
      21. How LDAP Injection Works?
      22. Hidden Field Manipulation Attack
      23. Cross-Site Scripting (XSS) Attacks
      24. How XSS Attacks Work?
      25. Cross-Site Scripting Attack Scenario: Attack via Email
      26. XSS Example: Attack via Email
      27. XSS Example: Stealing Users' Cookies
      28. XSS Example: Sending an Unauthorized Request
      29. XSS Attack in Blog Posting
      30. XSS Attack in Comment Field
      31. XSS Cheat Sheet
      32. Cross-Site Request Forgery (CSRF) Attack
      33. How CSRF Attacks Work?
      34. Web Application Denial-of-Service (DoS) Attack
      35. Denial of Service (DoS) Examples
      36. Buffer Overflow Attacks
      37. Cookie/Session Poisoning
      38. How Cookie Poisoning Works?
      39. Session Fixation Attack
      40. Insufficient Transport Layer Protection
      41. Improper Error Handling
      42. Insecure Cryptographic Storage
      43. Broken Authentication and Session Management
      44. Unvalidated Redirects and Forwards
      45. Web Services Architecture
      46. Web Services Attack
      47. Web Services Footprinting Attack
      48. Web Services XML Poisoning
      49. Footprint Web Infrastructure
      50. Footprint Web Infrastructure: Server Discovery
      51. Footprint Web Infrastructure: Server Identification/Banner Grabbing
      52. Footprint Web Infrastructure: Hidden Content Discovery
      53. Web Spidering Using Burp Suite
      54. Hacking Web Servers
      55. Web Server Hacking Tool: WebInspect
      56. Analyze Web Applications
      57. Analyze Web Applications: Identify Entry Points for User Input
      58. Analyze Web Applications: Identify Server-Side Technologies
      59. Analyze Web Applications: Identify Server-Side Functionality
      60. Analyze Web Applications: Map the Attack Surface
      61. Attack Authentication Mechanism
      62. Username Enumeration
      63. Password Attacks: Password Functionality Exploits
      64. Password Attacks: Password Guessing
      65. Password Attacks: Brute-forcing
      66. Session Attacks: Session ID Prediction/ Brute-forcing
      67. Cookie Exploitation: Cookie Poisoning
      68. Authorization Attack
      69. HTTP Request Tampering
      70. Authorization Attack: Cookie Parameter Tampering
      71. Session Management Attack
      72. Attacking Session Token Generation Mechanism
      73. Attacking Session Tokens Handling Mechanism: Session Token Sniffing
      74. Injection Attacks
      75. Attack Data Connectivity
      76. Connection String Injection
      77. Connection String Parameter Pollution (CSPP) Attacks
      78. Connection Pool DoS
      79. Attack Web App Client
      80. Attack Web Services
      81. Web Services Probing Attacks
      82. Web Service Attacks: SOAP Injection
      83. Web Service Attacks: XML Injection
      84. Web Services Parsing Attacks
      85. Web Service Attack Tool: soapUI
      86. Web Service Attack Tool: XMLSpy
      87. Web Application Hacking Tool: Burp Suite Professional
      88. Web Application Hacking Tools: CookieDigger
      89. Web Application Hacking Tools: WebScarab
      90. Web Application Hacking Tools
      91. Encoding Schemes
      92. How to Defend Against SQL Injection Attacks?
      93. How to Defend Against Command Injection Flaws?
      94. How to Defend Against XSS Attacks?
      95. How to Defend Against DoS Attack?
      96. How to Defend Against Web Services Attack?
      97. Web Application Countermeasures
      98. How to Defend Against Web Application Attacks?
      99. Web Application Security Tool: Acunetix Web Vulnerability Scanner
      100. Web Application Security Tool: Falcove Web Vulnerability Scanner
      101. Web Application Security Scanner: Netsparker
      102. Web Application Security Tool: N-Stalker Web Application Security Scanner
      103. Web Application Security Tools
      104. Web Application Firewall: dotDefender
      105. Web Application Firewall: IBM AppScan
      106. Web Application Firewall: ServerDefender VP
      107. Web Application Firewall
      108. Web Application Pen Testing
      109. Information Gathering
      110. Configuration Management Testing
      111. Authentication Testing
      112. Session Management Testing
      113. Authorization Testing
      114. Data Validation Testing
      115. Denial of Service Testing
      116. Web Services Testing
      117. AJAX Testing
    14. SQL Injection
      1. SQL Injection is the Most Prevalent Vulnerability in 2010
      2. SQL Injection Threats
      3. What is SQL Injection?
      4. SQL Injection Attacks
      5. How Web Applications Work?
      6. Server Side Technologies
      7. HTTP Post Request
      8. Example 1: Normal SQL Query
      9. Example 1: SQL Injection Query
      10. Example 1: Code Analysis
      11. Example 2: BadProductList.aspx
      12. Example 2: Attack Analysis
      13. Example 3: Updating Table
      14. Example 4: Adding New Records
      15. Example 5: Identifying the Table Name
      16. Example 6: Deleting a Table
      17. SQL Injection Detection
      18. SQL Injection Error Messages
      19. SQL Injection Attack Characters
      20. Additional Methods to Detect SQL Injection
      21. SQL Injection Black Box Pen Testing
      22. Testing for SQL Injection
      23. Types of SQL Injection
      24. Simple SQL Injection Attack
      25. Union SQL Injection Example
      26. SQL Injection Error Based
      27. What is Blind SQL Injection?
      28. No Error Messages Returned
      29. Blind SQL Injection: WAITFOR DELAY YES or NO Response
      30. Blind SQL Injection - Exploitation (MySQL)
      31. Blind SQL Injection - Extract Database User
      32. Blind SQL Injection - Extract Database Name
      33. Blind SQL Injection - Extract Column Name
      34. Blind SQL Injection - Extract Data from ROWS
      35. SQL Injection Methodology
      36. Information Gathering
      37. Extracting Information through Error Messages
      38. Understanding SQL Query
      39. Bypass Website Logins Using SQL Injection
      40. Database, Table, and Column Enumeration
      41. Advanced Enumeration
      42. Features of Different DBMSs
      43. Creating Database Accounts
      44. Password Grabbing
      45. Grabbing SQL Server Hashes
      46. Extracting SQL Hashes (In a Single Statement)
      47. Transfer Database to Attacker's Machine
      48. Interacting with the Operating System
      49. Interacting with the FileSystem
      50. Network Reconnaissance Full Query
      51. SQL Injection Tools
      52. SQL Injection Tools: BSQLHacker
      53. SQL Injection Tools: Marathon Tool
      54. SQL Injection Tools: SQL Power Injector
      55. SQL Injection Tools: Havij
      56. Evading IDS
      57. Types of Signature Evasion Techniques
      58. Evasion Technique: Sophisticated Matches
      59. Evasion Technique: Hex Encoding
      60. Evasion Technique: Manipulating White Spaces
      61. Evasion Technique: In-line Comment
      62. Evasion Technique: Char Encoding
      63. Evasion Technique: String Concatenation
      64. Evasion Technique: Obfuscated Codes
      65. How to Defend Against SQL Injection Attacks?
      66. How to Defend Against SQL Injection Attacks: Use Type-Safe SQL Parameters
      67. SQL Injection Detection Tools
      68. SQL Injection Detection Tool: Microsoft Source Code Analyzer
      69. SQL Injection Detection Tool: Microsoft UrlScan
      70. SQL Injection Detection Tool: dotDefender
      71. SQL Injection Detection Tool: IBM AppScan
      72. Snort Rule to Detect SQL Injection Attacks
    15. Hacking Wireless Networks
      1. Wireless Networks
      2. Wi-Fi Usage Statistics in the US
      3. Wi-Fi Hotspots at Public Places
      4. Wi-Fi Networks at Home
      5. Types of Wireless Networks
      6. Wireless Standards
      7. Service Set Identifier (SSID)
      8. Wi-Fi Authentication Modes
      9. Wi-Fi Authentication Process Using a Centralized Authentication Server
      10. Wi-Fi Authentication Process
      11. Wireless Terminologies
      12. Wi-Fi Chalking
      13. Wi-Fi Chalking Symbols
      14. Wi-Fi Hotspot Finder: jiwire.com
      15. Wi-Fi Hotspot Finder: WeFi.com
      16. Types of Wireless Antenna
      17. Parabolic Grid Antenna
      18. Types of Wireless Encryption
      19. WEP Encryption
      20. How WEP Works?
      21. What is WPA?
      22. How WPA Works?
      23. Temporal Keys
      24. What is WPA2?
      25. How WPA2 Works?
      26. WEP vs. WPA vs. WPA2
      27. WEP Issues
      28. Weak Initialization Vectors (IV)
      29. How to Break WEP Encryption?
      30. How to Break WPA/WPA2 Encryption?
      31. How to Defend Against WPA Cracking?
      32. Wireless Threats: Access Control Attacks
      33. Wireless Threats: Integrity Attacks
      34. Wireless Threats: Confidentiality Attacks
      35. Wireless Threats: Availability Attacks
      36. Wireless Threats: Authentication Attacks
      37. Rogue Access Point Attack
      38. Client Mis-association
      39. Misconfigured Access Point Attack
      40. Unauthorized Association
      41. Ad Hoc Connection Attack
      42. HoneySpot Access Point Attack
      43. AP MAC Spoofing
      44. Denial-of-Service Attack
      45. Jamming Signal Attack
      46. Wi-Fi Jamming Devices
      47. Wireless Hacking Methodology
      48. Find Wi-Fi Networks to Attack
      49. Attackers Scanning for Wi-Fi Networks
      50. Footprint the Wireless Network
      51. Wi-Fi Discovery Tool: inSSIDer
      52. Wi-Fi Discovery Tool: NetSurveyor
      53. Wi-Fi Discovery Tool: NetStumbler
      54. Wi-Fi Discovery Tool: Vistumbler
      55. Wi-Fi Discovery Tool: WirelessMon
      56. Wi-Fi Discovery Tools
      57. GPS Mapping
      58. GPS Mapping Tool: WIGLE
      59. GPS Mapping Tool: Skyhook
      60. How to Discover Wi-Fi Network Using Wardriving?
      61. Wireless Traffic Analysis
      62. Wireless Cards and Chipsets
      63. Wi-Fi USB Dongle: AirPcap
      64. Wi-Fi Packet Sniffer: Wireshark with AirPcap
      65. Wi-Fi Packet Sniffer: Wi-Fi Pilot
      66. Wi-Fi Packet Sniffer: OmniPeek
      67. Wi-Fi Packet Sniffer: CommView for Wi-Fi
      68. What is Spectrum Analysis?
      69. Wireless Sniffers
      70. Aircrack-ng Suite
      71. How to Reveal Hidden SSIDs
      72. Fragmentation Attack
      73. How to Launch MAC Spoofing Attack?
      74. Denial of Service: Deauthentication and Disassociation Attacks
      75. Man-in-the-Middle Attack
      76. MITM Attack Using Aircrack-ng
      77. Wireless ARP Poisoning Attack
      78. Rogue Access Point
      79. Evil Twin
      80. How to Set Up a Fake Hotspot (Evil Twin)?
      81. How to Crack WEP Using Aircrack?
      82. How to Crack WEP Using Aircrack? Screenshot 1/2
      83. How to Crack WEP Using Aircrack? Screenshot 2/2
      84. How to Crack WPA-PSK Using Aircrack?
      85. WPA Cracking Tool: KisMAC
      86. WEP Cracking Using Cain & Abel
      87. WPA Brute Forcing Using Cain & Abel
      88. WPA Cracking Tool: Elcomsoft Wireless Security Auditor
      89. WEP/WPA Cracking Tools
      90. Wi-Fi Sniffer: Kismet
      91. Wardriving Tools
      92. RF Monitoring Tools
      93. Wi-Fi Connection Manager Tools
      94. Wi-Fi Traffic Analyzer Tools
      95. Wi-Fi Raw Packet Capturing Tools
      96. Wi-Fi Spectrum Analyzing Tools
      97. Bluetooth Hacking
      98. Bluetooth Stack
      99. Bluetooth Threats
      100. How to BlueJack a Victim?
      101. Bluetooth Hacking Tool: Super Bluetooth Hack
      102. Bluetooth Hacking Tool: PhoneSnoop
      103. Bluetooth Hacking Tool: BlueScanner
      104. Bluetooth Hacking Tools
      105. How to Defend Against Bluetooth Hacking?
      106. How to Detect and Block Rogue AP?
      107. Wireless Security Layers
      108. How to Defend Against Wireless Attacks?
      109. Wireless Intrusion Prevention Systems
      110. Wireless IPS Deployment
      111. Wi-Fi Security Auditing Tool: AirMagnet WiFi Analyzer
      112. Wi-Fi Security Auditing Tool: AirDefense
      113. Wi-Fi Security Auditing Tool: Adaptive Wireless IPS
      114. Wi-Fi Security Auditing Tool: Aruba RFProtect WIPS
      115. Wi-Fi Intrusion Prevention System
      116. Wi-Fi Predictive Planning Tools
      117. Wi-Fi Vulnerability Scanning Tools
      118. Wireless Penetration Testing
      119. Wireless Penetration Testing Framework
      120. Wi-Fi Pen Testing Framework
      121. Pen Testing LEAP Encrypted WLAN
      122. Pen Testing WPA/WPA2 Encrypted WLAN
      123. Pen Testing WEP Encrypted WLAN
      124. Pen Testing Unencrypted WLAN
    16. Evading IDS, Firewalls, and Honeypots
      1. Intrusion Detection Systems (IDS) and its Placement
      2. How IDS Works?
      3. Ways to Detect an Intrusion
      4. Types of Intrusion Detection Systems
      5. System Integrity Verifiers (SIV)
      6. General Indications of Intrusions
      7. General Indications of System Intrusions
      8. Firewall
      9. Firewall Architecture
      10. DeMilitarized Zone (DMZ)
      11. Types of Firewall
      12. Packet Filtering Firewall
      13. Circuit-Level Gateway Firewall
      14. Application-Level Firewall
      15. Stateful Multilayer Inspection Firewall
      16. Firewall Identification
      17. Port Scanning
      18. Firewalking
      19. Banner Grabbing
      20. Honeypot
      21. Types of Honeypots
      22. How to Set Up a Honeypot?
      23. Intrusion Detection Tool
      24. Snort
      25. Snort Rules
      26. Rule Actions and IP Protocols
      27. The Direction Operator and IP Addresses
      28. Port Numbers
      29. Intrusion Detection Systems: Tipping Point
      30. Intrusion Detection Tools
      31. Firewall: Sunbelt Personal Firewall
      32. Firewalls
      33. Honeypot Tools
      34. KFSensor
      35. SPECTER
      36. Insertion Attack
      37. Evasion
      38. Denial-of-Service Attack (DoS)
      39. Obfuscating
      40. False Positive Generation
      41. Session Splicing
      42. Unicode Evasion Technique
      43. Fragmentation Attack
      44. Overlapping Fragments
      45. Time-To-Live Attacks
      46. Invalid RST Packets
      47. Urgency Flag
      48. Polymorphic Shellcode
      49. ASCII Shellcode
      50. Application-Layer Attacks
      51. Desynchronization
      52. Pre Connection SYN
      53. Post Connection SYN
      54. Other Types of Evasion
      55. IP Address Spoofing
      56. Attacking Session Token Generation Mechanism
      57. Tiny Fragments
      58. Bypass Blocked Sites Using IP Address in Place of URL
      59. Bypass Blocked Sites Using Anonymous Website Surfing Sites
      60. Bypass a Firewall using Proxy Server
      61. Bypassing Firewall through ICMP Tunneling Method
      62. Bypassing Firewall through ACK Tunneling Method
      63. Bypassing Firewall through HTTP Tunneling Method
      64. Bypassing Firewall through External Systems
      65. Bypassing Firewall through MITM Attack
      66. Detecting Honeypots
      67. Honeypot Detecting Tool: Send-Safe Honeypot Hunter
      68. Firewall Evasion Tools
      69. Traffic IQ Professional
      70. tcp-over-dns
      71. Firewall Evasion Tools
      72. Packet Fragment Generators
      73. Countermeasures
      74. Firewall/IDS Penetration Testing
      75. Firewall Penetration Testing
      76. IDS Penetration Testing
    17. Buffer Overflow
      1. Buffer Overflows
      2. Why are Programs And Applications Vulnerable?
      3. Understanding Stacks
      4. Stack-Based Buffer Overflow
      5. Understanding Heap
      6. Heap-Based Buffer Overflow
      7. Stack Operations
      8. Shellcode
      9. No Operations (NOPs)
      10. Knowledge Required to Program Buffer Overflow Exploits
      11. Buffer Overflow Steps
      12. Attacking a Real Program
      13. Format String Problem
      14. Overflow using Format String
      15. Smashing the Stack
      16. Once the Stack is Smashed...
      17. Simple Uncontrolled Overflow
      18. Simple Buffer Overflow in C
      19. Code Analysis
      20. Exploiting Semantic Comments in C (Annotations)
      21. How to Mutate a Buffer Overflow Exploit?
      22. Identifying Buffer Overflows
      23. How to Detect Buffer Overflows in a Program?
      24. BOU (Buffer Overflow Utility)
      25. Testing for Heap Overflow Conditions: heap.exe
      26. Steps for Testing for Stack Overflow in OllyDbg Debugger
      27. Testing for Stack Overflow in OllyDbg Debugger
      28. Testing for Format String Conditions using IDA Pro
      29. BoF Detection Tools
      30. Defense Against Buffer Overflows
      31. Preventing BoF Attacks
      32. Programming Countermeasures
      33. Data Execution Prevention (DEP)
      34. Enhanced Mitigation Experience Toolkit (EMET)
      35. EMET System Configuration Settings
      36. EMET Application Configuration Window
      37. /GS http://microsoft.com
      38. BoF Security Tools
      39. BufferShield
      40. Buffer Overflow Penetration Testing
    18. Cryptography
      1. Cryptography
      2. Types of Cryptography
      3. Government Access to Keys (GAK)
      4. Ciphers
      5. Advanced Encryption Standard (AES)
      6. Data Encryption Standard (DES)
      7. RC4, RC5, RC6 Algorithms
      8. The DSA and Related Signature Schemes
      9. RSA (Rivest Shamir Adleman)
      10. Example of RSA Algorithm
      11. The RSA Signature Scheme
      12. Message Digest (One-way Bash) Functions
      13. Message Digest Function: MD5
      14. Secure Hashing Algorithm (SHA)
      15. What is SSH (Secure Shell)?
      16. MD5 Hash Calculators: HashCalc, MD5 Calculator and HashMyFiles
      17. Cryptography Tool: Advanced Encryption Package
      18. Cryptography Tools
      19. Public Key Infrastructure (PKI)
      20. Certification Authorities
      21. Digital Signature
      22. SSL (Secure Sockets Layer)
      23. Transport Layer Security (TLS)
      24. Disk Encryption
      25. Disk Encryption Tool: TrueCrypt
      26. Disk Encryption Tools
      27. Cryptography Attacks
      28. Code Breaking Methodologies
      29. Brute-Force Attack
      30. Meet-in-the-Middle Attack on Digital Signature Schemes
      31. Cryptanalysis Tool: CrypTool
      32. Cryptanalysis Tools
      33. Online MD5 Decryption Tool
    19. Penetration Testing
      1. Introduction to Penetration Testing
      2. Security Assessments
      3. Vulnerability Assessment
      4. Limitations of Vulnerability Assessment
      5. Penetration Testing
      6. Why Penetration Testing?
      7. What Should be Tested?
      8. What Makes a Good Penetration Test?
      9. ROI on Penetration Testing
      10. Testing Points
      11. Testing Locations
      12. Types of Penetration Testing
      13. External Penetration Testing
      14. Internal Security Assessment
      15. Black-box Penetration Testing
      16. Grey-box Penetration Testing
      17. White-box Penetration Testing
      18. Announced / Unannounced Testing
      19. Automated Testing
      20. Manual Testing
      21. Common Penetration Testing Techniques
      22. Using DNS Domain Name and IP Address Information
      23. Enumerating Information about Hosts on Publicly-Available Networks
      24. Phases of Penetration Testing
      25. Pre-Attack Phase
      26. Attack Phase
      27. Post-Attack Phase and Activities
      28. Penetration Testing Methodology
      29. Network Security Assessment
      30. Wireless/Remote Access Assessment
      31. Wireless Testing
      32. Telephony Security Assessment
      33. Social Engineering
      34. Testing Network-Filtering Devices
      35. Denial of Service Emulation
      36. Outsourcing Penetration Testing Services
      37. Terms of Engagement
      38. Project Scope
      39. Pentest Service Level Agreements
      40. Penetration Testing Consultants
      41. Evaluating Different Types of Pentest Tools
      42. Application Security Assessment Tool
      43. Webscarab
      44. Network Security Assessment Tool
      45. Angry IP scanner
      46. GFI LANguard
      47. Wireless/Remote Access Assessment Tool
      48. Kismet
      49. Telephony Security Assessment Tool
      50. Omnipeek
      51. Testing Network-Filtering Device Tool
      52. Traffic IQ Professional

    Benefits of taking the CEH: Certified Ethical Hacker v7.1 course at NetCom

    • Why choose EC-Council Training at NetCom Learning?
      As a recognition for training excellence, NetCom Learning was chosen by Microsoft as the 2007 Worldwide Learning Solutions Partner of the year out of 1400 training companies.

      In addition, we have won numerous other training awards for quality and customer satisfaction by CompTIA, EC-Council and other vendors. We are simply passionate about learning and achieving the highest customer satisfaction in your learning experience!

      See the training value proposition below:

      Why EC-Council Training at NetCom?

       

      CEH: Certified Ethical Hacker v7 
      CEH v7 showcases the latest hacking techniques and countermeasures.

      This class will immerse the students into an interactive environment where they will be shown how to scan, test, hack and secure their own systems. The lab intensive environment gives each student in-depth knowledge and practical experience with the current essential security systems. CEHv7.1 provides a comprehensive ethical hacking and network security-training program to meet the standards of highly skilled security professionals. Hundreds of SMEs and authors have contributed towards the content presented in the CEHv7.1 courseware. Latest tools and exploits uncovered from the underground community are featured in the new package. When a student leaves this intensive 5 day class they will have hands on understanding and experience in Ethical Hacking. 
       

    • Updated core content and well-organized flow for a best-in-class learning experience.

    • Exclusive section for countermeasures against different attacks with detailed explanation of how to implement the countermeasures in a real-time environment.
    • Attractive and descriptive diagrammatic representations of concepts and attacks.
    • Complete section dedicated to penetration testing, illustrating how to implement learned concepts to test network system security.
    • Courseware includes over 20GB of the latest hacking and security tools.
    • A result-oriented, descriptive lab manual; the labs showcased in the courseware are tested against the latest Operating Systems with all patches and hot fixes applied.
    • CEH v7 meets Government and DoD compliance with Federal Information Security Management Act (FISMA) and DoD Directive 8570.1-M.
    • Over 1000 minutes of video demonstrations and more.

      •  
    • NetCom provides Authorized Training
      NetCom Learning is a Microsoft Gold Certified Partner for Learning Solutions (CPLS), Cisco Learning Partner, CompTIA Platinum Partner, EC-Council Accredited Training Center, Adobe Authorized Training Center, Autodesk Authorized Training Center and many others. We are proud to offer the highest quality, authorized training solutions from our many partners for our customers.

      See our comprehensive list of partner authorizations.

    • Award winning, world-class Instructors
      Emilio G.
      - Vastly experienced working within multinational environments and capable of connecting to different audiences
      - In-depth expertise in the implementation, troubleshooting and documentation of networks and security systems, with strong "hands on" technical knowledge of CISSP, CEH and CHFI.
      - Master of Science in Electronics Engineering, and holder of several technical certifications.
      - Highly-skilled in diverse fields ranging from Security, Computer Forensics, Networking, Routing Protocols, Programming, Databases and Applications to name a few.

      Bio:

      With over 25 years of technical experience, Emilio brings a dynamic set of skills supported by a Masters Degree in Electronics Engineering and on-the-field experience working in multinational environments. He also holds more than 12 Cisco, CompTIA, and Microsoft certifications. Although he is well versed and thorough in multiple technological fields, his technical forte lies in the security domain, specifically CISSP, CEH and CHFI.

      Emilio�s skills have evolved over time, studying closely and constantly staying well informed of the growing cyber threats. These are just some of the few reasons why Emilio brings to his classes more than just what's in the books.
      Richard L.
      - Over 20 years experience in the IT industry.
      - CEH and Microsoft training for many government agencies, including the United States Department of Homeland Security, and the Federal Bureau of Investigation.
      - CEH and Microsoft training for Fortune corporations such as Merrill Lynch and ADP.

      Bio:

      Richard is a premier Microsoft Certified Trainer and Certified EC-Council Instructor. He has over 20 years of experience as a network administrator, security consultant, vulnerability assessor, and penetration tester for assorted Fortune companies.

      Richardâ??s knowledge on the development and implementation of policies and procedures concerning the security of network data is unsurpassed. He has conducted successful CEH and Microsoft training classes for many government agencies including the United States Department of Homeland Security, the Department of Justice and the Federal Bureau of Investigation, as well as Fortune enterprises such as Merrill Lynch and ADP.
    • Actual Client Testimonials
      Mar 02 2012
      The training was "outstanding". Mr. Garcia is the best instructor on the subject; very knowledgeable.

      - Draughon W.
      Course(s) Taken

      Jan 13 2012
      Excellent instructor.
      Good Course material.

      -Dan S.
      Course(s) Taken

      Sep 30 2011
      I will be back for more training. The training material/illustrations are perfect. Once I pass the certification it will make all this work well worth it.

      -Robert K.
      Course(s) Taken

      Sep 19 2011
      The instructor was very knowledgeable and presented well!

      -Marvin L.
      Course(s) Taken

      Sep 19 2011
      The instructor's breath of knowledge and professionalism was nothing short of outstanding. As such, I would continue to coordinate service through Greg. He has assured high quality training for the past few years.

      -Greg C.
      Course(s) Taken

      Sep 19 2011
      A lot of material, but good to go!

      -Victor W.
      Course(s) Taken

      May 07 2010
      Very knowledgeable instructor. Class was very helpful.
      -Robert D.
      Course(s) Taken
      • CEH and CHFI Certification

      May 07 2010
      Overall experience is good. Instructor very knowledgeable Educational consultant also very helpful and great. -Binh V.
      Course(s) Taken
      • CEH and CHFI Certification

    • Awards won by NetCom
      NetCom Learning is an award winning, customer focused company. We are simply Passionate About Learning!

      See our list of awards.

    • Specialized Boot Camp Training

      Discover Our Vegas Boot Camp experience

      This training is also available as a boot camp. NetCom is world famous for delivering specialized boot camp training to our clients.

      For answers to questions regarding our boot camp training delivery format, please refer to our Boot Camp FAQ section.


    Enrollment Options for the CEH: Certified Ethical Hacker v7.1 course


    Training Delivery Methods

    Take this training with one of the following training delivery methods
    • Classroom Training
      Classroom Training NetCom’s classroom training ensures that you have state-of-the-art tools, techniques and practices you need to succeed on the job. Our instructors are active practitioners and true masters in their fields. With convenient classes at multiple learning centers across the US, you never have to go far to get ahead.

    • Live Online Training (LOT)
      Live Online Training NetCom’s premium Live Online Training (we call it LOT) is the ultimate in convenience and cost-effectiveness. LOT combines interactive video instruction via the latest web conference technology, and post-class access to learning labs for a best-in-class learning experience.
      Learn more about LOT

    • Boot Camp Training
      Boot Camp Training NetCom’s intensive boot camps are designed to advance your skills in the shortest possible amount of time and get you certified. Boot camps go at a faster pace and often run for longer days, so you must have some level of subject matter experience before enrolling. Boot camps have mandatory assessment tests to ensure no one will slow down the class for other students. Learn more about Boot Camps

    • Private Onsite Training
      Private Onsite Training With NetCom’s private training programs, you decide where and when courses are held. Tailor the training to reflect your industry, corporate culture, goals and schedule. You pick the course content, length of training and instructional technique. Save money by doing bulk customized training.
      Learn more about Private Onsite Training

    • Private 1-on-1 Training
      Private 1-on-1 Training NetCom’s private 1-on-1 training focuses on the highest quality training possible. You get individualized, full attention from the instructor and you decide where and when courses are held. The training is custom tailored to reflect your industry, corporate culture, goals and schedule. You pick the course content, length of training and instructional technique.
      Learn more about Private 1-on-1 Training

    Contact us
    call usCall us Toll-free at 1-888-563-8266
    web formFREE Training Inquiry form
    live chatWebsite Live Chat
    email usContact us via Email: info@netcomlearning.com

    Duration: 5 days (40 hours)
    Pricing: Variable, please request
    Why pricing varies..Why pricing varies..

    Pricing depends on different training delivery methods, one or more students and availability of volume discounts or currently available promotions.

    Our prices are frequently lower since we are able to work with our clients closely on their needs and pass on the optimum amount of savings.

    In addition, we provide a price match guarantee for any competitive quotes.     click to Live Chat
    .  Next Class Dates
    Click on a date to register.
     register for class Live Online Training available
     register for class New York, May 29, 2012
     register for class New York, Aug 6, 2012
     register for class New York, Oct 15, 2012
     more schedules more..

    For a customized version of this class, please contact us or call 1-888-563-8266.
    .  Get More Information
    FREE Assessment Quiz
    Monthly Email Newsletter
    Request Print Catalog
    Student Loan Application
    Name: 
    Email:  
    Phone: 
    Comments:

    . .
    live chat

    .  CALL 1-888-563-8266
    . arrow  Need course pricing?
    arrow  Need more information?
    arrow  Worried about financing?
    NetCom IT training on YouTube
    NetCom IT training on Twitter
    NetCom IT training on Facebook
    NetCom on LinkedIn
    Newsletter:
    © 1998-2012, NetCom Learning. All Rights Reserved.