Course Name: Hacking & Penetration Testing Training - Certified Pen Testing Expert (CPTE) Training
Course Duration: 5 Days
Deployment Option: Onsite Training
Course Price: $2995.00
   

Course Description:
 
The CPTE course presents the A to Z of Penetration Testing for experienced security consultants. This is a hands-on journey for the Expert Pen Tester, Team Leader and Security Consultant responsible for planning, managing, conducting and writing the Pen Test report. We focus on educating the experienced security professional on the intricacies of conducting and leading a ‘Pen Test,’ including the business documents needed prior to and after the engagement. The technical aspects of the attack environment have to be realistic and advanced enough for delegates to collect sufficient information for compiling the post-test report.

Upon Completion:

CPTE students will be able to confidently undertake the laboratory simulated examination. Participants will have completed an entire Pen Test.

Course Benefits:

Students will enjoy an in-depth course that is continuously updated to maintain and incorporate the ever changing security environment. This course offers up-to-date proprietary laboratories that have been researched and developed by leading security professionals from around the world. The CPTE will cover much more in-depth attacks, techniques, technologies and countermeasures than foundation Penetration Testing and Ethical Hacking courses such as CPTS, CEH and OSPT.
 
Prerequisites:
 
  • CPTS, CEH, OSSTMM or GIAC
  • A minimum of 24 months experience in networking technologies
  • Sound knowledge of TCP/IP
  • Computer hardware knowledge
  • A minimum of 12 months consultancy experience.
  • Knowledge of Linux or Unix.
 
Certification:
 
CPTE - Certified Pen Testing Expert
 
Student Materials:
 

Students will receive the following items during the training program:

  • A 350-page comprehensive computer forensic student guide and investigative resource materials.
  • A CD-ROM containing GUI-based Windows data examination software with a " live" casefile.
  • A CD-ROM containing GUI-based Linux data examination software.
  • Upon passing practical and written examinations, a Certificate of Completion
 
Course Outline:
 

Module 1: Introduction and Penetration Test Overview

  • Authorization,
  • Defining Boundaries,
  • Objectives & Scope of the Pen Test
  • Plan Of Attack
  • Gathering Information
  • Logging Access Attempts
  • Initial Assumptions
  • RFP/Proposal Process
  • Managing Consultants
  • Scheduling
  • Procedures & Guidelines
  • Reporting

Module 2: Refresher: The Attack Stage

  • Performing Information Discovery
  • Scanning, War Driving
  • Enumeration
  • Breaking In
  • Privilege Escalation
  • Hiding Data
  • Covering Tracks
  • Back Doors

Module 3: Core Impact: Initial Pen Test

  • Six Stage Penetration Test Using Core Impact.
  • (Note: Core impact is used to expedite the process, you do not need Core Impact in your office to receive the full benefit of this module)

Module 4: TCP/IP Detailed

Module 5: External/DMZ

  • Web Sites
  • Database Mining
  • Mail Servers
  • Advanced E-Mail Tracking and Tracing
  • DNS Servers
  • FTP Servers
  • VPN Servers
  • Wireless Networks
  • Firewalls

Module 6: Programming 101

Module 7: Social Engineering

Module 8: Internal Pen Testing

  • Clients, Servers
  • Databases
  • Switches
  • Routers
  • Intranet
  • Remote Management Hardware/Software
  • IDS - IPS
  • Patch Management
  • Virus/Spyware.

Module 9: Physical Security

  • Server Room
  • Back-up Media
  • Accessibility To Security Controls
  • Cabling, Physical Access
  • Key Loggers
  • Documentation
  • Lock Picking
  • Hot Jacks
  • Phone Systems
  • Covert Wireless.

Module 10: User Security

  • Awareness Training
  • Incident Response
  • Accessing Mail Connectivity
  • Web Browsing

Module 11: After the Pen Test

  • Policy Review
  • Countermeasure Evaluation & Implementation.

Lab Information:
Labs will change continuously adapting to changes in the security industry. Our consultants working in the security field will be dynamically implementing new scenarios that are over and above the base labs used in student workbooks.

Please note that this is not a class that will explain the very intricacies of each and every tool. The software is mostly open source and underground software which leaves us with no guarantee of compatibility. Our consultants constantly test most of the tools used in this class, however we may use a tool that is not tested in the environment we have at our partner’s site.

We will be using a large array of Operating Systems that are set-up to be used in different ways, perhaps to attack or to use as a hacker box.



About Eno.com | Contact Us | Site Map
E&A Inc. All rights reserved.