Introduction:

The Ethical Hacker is an individual trusted and employed by an organization to test the vulnerability of their network and computer systems. The EH ethical hacking training course does this by adopting the same skills and tactics that a hacker would use. These expert ethical hackers, also known as “white hats” use the knowledge that they have gained about the vulnerabilities in the networks and systems that they have attacked in order to develop countermeasures and strengthen the security of those systems. They also understand the legal issues that surround the use of these specialized ethical hacking skills and how they can be properly applied to the environment of an organization. ENO instructor led ethical hacker training will provide students not only with the tools they will need to gain their ethical hacker certification but also the ability to implement their skills to test their own systems for vulnerabilities and discover weaknesses before they can be exploited by malicious attackers.

Customize it:

This 5-6-day CEH course will be customized to your needs and specifications. Eno.com will assist you in identifying those needs and specifications. A word to the wise, there are many vendors of CEH training. They will typically have a broad and general course, one size fits all, already developed and just put your organization’s ame on the title slide. This minimizes their effort and time investment. At Eno.com, every course is made to your exact and exacting specifications. We help you ensure what you are getting is what you really need even if at the beginning you weren’t too sure of what that was. We fit the class to your needs. We never fit you into our “standard”, one size fits all, class.

Objectives:

What You'll Learn: How to scope a security assessment How to footprint an organization Master advanced port-scanning techniques Perform passive and active OS fingerprinting Use exploit frameworks Works of ARP attacks Exploit database vulnerabilities Concept of social engineering Common vulnerabilities and exposures Analyze DNS servers for proper configuration Examine web servers for weaknesses Master the hacker's methodology Exploit vulnerabilities remotely Develop reports and test results used to create countermeasures to thwart malicious hacking

Course Outline

1. The Business Aspects of Hacking Why Security is Critical to Business The Wired World Outline the Ethical Hacking Methodology Three Major Stages of a Penetration Test Pre-assessment Assessment Post-assessment The Ethical Hacking Report Hacking and the Legal Environment 2. Footprinting Overview of the Footprinting Phase Footprinting and Passive Information Gathering Information-Gathering Methodology of Hackers Techniques Tools The Implications of Information Leakage Countermeasures 3. Linux Linux History Why Linux is Important to the Hacking Community Linux Concepts OS Commands Compiling Programs in Linux Linux Applications Password Cracking Hping Linux Rootkits IP Tables Linux Security Countermeasures 4. Technical Foundations of Hacking The TCP/IP Stack IP ICMP ARP TCP Details UDP Details Ports and Services TCP Details TCP Packet Structure TCP Flags UDP Details Applications Application Attack Vectors 5. Scanning Detecting "Live" Systems on the Targeted Network ICMP Ping Services Running/Listening on the Targeted Systems Port-Scanning Techniques Identifying TCP and UDP Services Running on the Targeted Network Operating System Active and Passive Fingerprinting Automated Discovery Tools 6. Cryptography Defining Cryptography and Algorithms Symmetric Encryption How Symmetric Encryption Works Common Algorithms for Symmetric Keys Strengths and Weaknesses of Symmetric Encryption Hash Functions Asymmetric Encryption How Asymmetric Encryption Works Common Algorithms for Asymmetric Keys Strengths and Weaknesses of Asymmetric Encryption Digital Signatures Public Key Encryption Quantum Cryptography Cryptographic Solutions SHA, SSL, PGP, SSH, IPSEC Encryption Cracking Techniques 7. Enumeration Enumeration Concept Banner Grabbing The Null Session SIDs and RIDs SMB Enumeration SNMP SNMP Enumeration Active Directory Enumeration Exploiting DNS Enumeration Countermeasures 8. System Hacking Password Attacks Social Physical Logical Password Guessing Privilege Escalation Cracking Passwords Linux Password Cracking Windows Password Cracking Covering Tracks Covering Tracks Tools Hiding Tools Owning the Box Rootkits 9. Trojans and Backdoors Malware Trojans and Backdoors Trojan Tools Netcat - The "Swiss Army Knife" of Hacking Tools Backdoors Prevention Methods and Countermeasures Anti-Trojan Software/Hardware 10. Vulnerability Assessment and Exploit Frameworks Vulnerability Assessments Open Source Vulnerability Assessments Tools Nessus X-Scan Commercial Vulnerability Scanners Retina NewT LANguard Advanced Attack Techniques Metasploit ExploitTree Patching Updates and CVEs 11. Sniffers, Man-in-the-Middle Attacks, and Denial of Service Defining Packet Sniffing ARP Vulnerabilities ARP Spoofing Flooding DNS Vulnerabilities Cache Poisoning Session Hijacking Session Hijacking Tools Denial of Service (DoS) DoS Tools and Techniques DDoS Attacking Firewalls Attacking IDS 12. Hacking Wireless Wireless Communications Cell Phones Bluetooth Wireless Networking Wireless Network Attacks Mapping Wireless Networks Wireless Attack Tools Securing Wireless Networks Site Surveys MAC Sniffing and ARP Spoofing Other Wireless Hacking Tools WIDZ, RADIUS, Snort 13. Database Attacks and SQL Injection Database Concepts and Theory Database Types Database Vulnerabilities Database Exploits Indirect Attacks - SQL Injection Direct Attacks - Buffer Overflows Securing Databases 14. Hacking Web Servers Web Server Basics Web Server Types Footprinting Lynx, Black Widow, and Countermeasures Attacks Against Web Servers Apache IIS Tools Used in Attack Web Servers Attack Countermeasures Web Applications Attacking Web Applications Web Application Vulnerabilities Input Manipulation Authentication and Session Management Encryption Obfuscation Cookies Certificate-Based Authentication Attacking Authentication Password Guessing Tools Securing Web Servers and Applications 15. Physical Security The Role of Physical Security Controls Attacks Lock Picking Checklist Summary 16. Social Engineering Attacks Techniques Dumpster Diving Online Social Engineering Reverse Social Engineering Preventing Social Engineering Policies and Procedures Employee Education

For organizational purchases, please send us a message at salesinfo@eno.com or complete and submit this form .

Other Expertise:

Oracle Applications Training and Consulting Peoplesoft Applications Training and Consulting SAP Applications Training and Consulting Security Technologies Training and Consulting Telecommunications Training and Consulting Wireless Technology Training and Consulting