7Safe Certified Security Testing Professional (CSTP) – Ethical Hacking II Training

7Safe Certified Security Testing Professional (CSTP) – Ethical Hacking II Training

Course Delivery

This Course is available in the following format:

Request this course in a different delivery format

GSA Schedule 70 Saving for Government Customers

Course Overview:

The 7Safe Certified Security Testing Professional (CSTP) – Ethical Hacking II Training course introduces delegates to the exploitation and security auditing of web appl ications. It also reinforces and develops techniques from CSTA. Web application vulnerabilities can pose serious problems to an organisation’s security. Many do not realise how much control an attacker can gain via a simple flaw in the security of a ublic-facing web application. The CSTP commands industry recognition and forms part of 7Safe’s ground-breaking Masters-level education programme.

Customize It:

• If you are familiar with some aspects of this 7Safe Certified Security Testing Professional (CSTP) – Ethical Hacking II Training course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the 7Safe Certified Security Testing Professional (CSTP) – Ethical Hacking II Training course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the 7Safe Certified Security Testing Professional (CSTP) – Ethical Hacking II Training course in manner understandable to lay audiences.

Related Courses:

7Safe Certified Security Testing Associate (CSTA) – • Ethical Hacking Training
7Safe Certified Malware Investigator Training (CMI)

What You Will Learn:

Upon completing this 7Safe Certified Security Testing Professional (CSTP) – Ethical Hacking II Training course, learners will be able to meet these objectives:

• Review of professional penetration testing tools
• Further exercises against Windows and UNIX targets
• The Metasploit framework
• Web application security, including:
• SQL Injection
• Cross-site scripting (XSS)
• Cross-site request forgeries (CSRF)
• Threats to users

7Safe Certified Security Testing Professional (CSTP) – Ethical Hacking II Training – Course Syllabus:

Infrastructure Penetration Testing

• Use of the Nikto web server scanner & Nessus
• Remote registry hacking & silent RAT installation
• Understand the Metasploit Framework, including the powerful Meterpreter payload

Hacking Web Applications

• Find & assess weaknesses in PHP & ASP.NET web applications
• Learn how you can use SQL injection to bypass authentication & reveal confidential information
• Gain SYSTEM level access to a web server hosting a poorly secured web application
• Learn what web application vulnerability scanners can and can’t do to map out weaknesses in web applications
• Practical injection techniques used to glean, manipulate & corrupt data
• Test and exploit web applications using HTTP request & response modification
• Launch attacks using an HTTP proxy
• Further attacks using extended stored procedures

Client-Side Attacks

• Discover the potential severity of the often underestimated XSS vulnerability
• Understand cross-site request forgeries
• Common browser & e-mail client hacking techniques used to target Internet users
• Attack a Windows XP Workstation
• Enhance attacks through e-mail spoofing
• Use XSS with session cookie theft to compromise a user’s online identity and steal confidential information
• Launch a web application dictionary attack
• Use Metasploit’s autopwn to automatically attack a user’s browser

Whether you are looking for general information or have a specific question, we want to help!

Request More Information

Print Friendly, PDF & Email