Advanced Network Technologies

This class will immerse the student into an interactive environment where they will be shown how to scan, test, hack and secure their own systems. The lab intensive environment gives each student in-depth knowledge and practical experience with the current essential security systems. Students will begin by understanding how perimeter defenses work and then be lead into scanning and attacking their own networks, no real network is harmed. Students then learn how intruders escalate privileges and what steps can be taken to secure a system. Students will also learn about Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation. When a student leaves this intensive 5 day class they will have hands on understanding and experience in Ethical Hacking.

The CEH Program certifies individuals in the specific network security discipline of Ethical Hacking from a vendor-neutral perspective. You will understand and know how to look for weaknesses and vulnerabilities in targeted systems, and use the same knowledge and tools as a malicious hacker.

Lesson 1: Introduction to Ethical Hacking

Topic 1A: Problem Definition -Why Security?

Topic 1B: Essential Terminologies

Topic 1C: Elements of Security

Topic 1D: The Security, Functionality and Ease of Use Triangle

Topic 1E: Case Study

Topic 1F: What does a Malicious Hacker do?

Topic 1G: Types of Hacker Attacks

Topic 1H: Hacktivism

Topic 1I: Hacker Classes

Topic 1J: Security News: Suicide Hacker

Topic 1K: Ethical Hacker Classes

Topic 1L: What do Ethical Hackers do?

Topic 1M: Can Hacking be Ethical

Topic 1N: How to become an Ethical Hacker

Topic 1O: Skill Profile of an Ethical Hacker

Topic 1P: What is Vulnerability Research?

Topic 1Q: How to Conduct Ethical Hacking

Topic 1R: How Do They Go About It?

Topic 1S: Approaches to Ethical Hacking

Topic 1T: Ethical Hacking Testing

Topic 1U: Ethical Hacking Deliverables

Topic 1V: Computer Crimes and Implications

Lesson 2: Hacking Laws

Topic 2A: http://www.usdoj.gov

Topic 2B: http://www.gob.mx/

Topic 2C: http://www.jf.gov.br/

Topic 2D: http://canada.justice.gc.ca/en/

Topic 2E: http://www.opsi.gov.uk

Topic 2F: http://europa.eu/

Topic 2G: Belgium Laws

Topic 2H: Denmark Laws

Topic 2I: France Laws

Topic 2J: German Laws

Topic 2K: Greece Laws

Topic 2L: Italian Laws

Topic 2M: Netherlands Laws

Topic 2N: Norway

Topic 2O: The Cybercrime Act 2001

Topic 2P: The Information Technology Act

Topic 2Q: Japan’s Cyber Laws

Topic 2R: Singapore’s Cyber Laws

Topic 2S: Act on Promotion of Information and Communications Network Utilization and Information Protection

Topic 2T: The Computer Crimes Act 1997

Topic 2U: http://www.legislation.gov.hk/

Topic 2V: Telecommunication Law

Lesson 3: Footprinting

Topic 3A: Revisiting Reconnaissance

Topic 3B: Defining Footprinting

Topic 3C: Why is Footprinting Necessary

Topic 3D: Areas and Information which Attackers Seek

Topic 3E: Information Gathering Methodology

Topic 3F: Footprinting Tools

Topic 3G: E-Mail Spiders

Topic 3H: Steps to Create Fake Login Pages

Topic 3I: How to Create Fake Login Pages

Topic 3J: Websites using Man-in-the-Middle Phishing Kit

Topic 3K: Benefits to Fraudster

Topic 3L: Steps to Perform Footprinting

Lesson 4: Google Hacking

Topic 4A: What is Google hacking

Topic 4B: What a hacker can do with vulnerable site

Topic 4C: Anonymity with Caches

Topic 4D: Using Google as a Proxy Server

Topic 4E: Directory Listings

Topic 4F: Going Out on a Limb: Traversal Techniques

Topic 4G: Extension Walking

Topic 4H: Site Operator

Topic 4I: intitle:index.of

Topic 4J: error | warning

Topic 4K: login | logon

Topic 4L: username | userid | employee.ID | “your username is”

Topic 4M: password | passcode | “your password is”

Topic 4N: admin | administrator

Topic 4O: –ext:html –ext:htm –ext:shtml –ext:asp –ext:php

Topic 4P: inurl:temp | inurl:tmp | inurl:backup | inurl:bak

Topic 4Q: intranet | help.desk

Topic 4R: Locating Public Exploit Sites

Topic 4S: Locating Vulnerable Targets

Topic 4T: Web Server Software Error Messages

Topic 4U: Application Software Error Messages

Topic 4V: Default Pages

Topic 4W: Searching for Passwords

Topic 4X: Google Hacking Database (GHDB)

Topic 4Y: SiteDigger Tool

Topic 4Z: Gooscan

Topic 4AA: Goolink Scanner

Topic 4AB: Goolag Scanner

Topic 4AC: Tool: Google Hacks

Topic 4AD: Google Hack Honeypot

Topic 4AE: Google Protocol

Topic 4AF: Google Cartography

Lesson 5: Scanning

Topic 5A: Scanning: Definition

Topic 5B: Types of Scanning

Topic 5C: Objectives of Scanning

Topic 5D: CEH Scanning Methodology

Topic 5E: War Dialer Technique

Topic 5F: Banner Grabbing

Topic 5G: Vulnerability Scanning

Topic 5H: Draw Network Diagrams of Vulnerable Hosts

Topic 5I: Preparing Proxies

Topic 5J: Scanning Countermeasures

Topic 5K: Tool: SentryPC

Lesson 6: Enumeration

Topic 6A: Overview of System Hacking Cycle

Topic 6B: What is Enumeration?

Topic 6C: Techniques for Enumeration

Topic 6D: NetBIOS Null Sessions

Topic 6E: PS Tools

Topic 6F: Network Management Protocol (SNMP) Enumeration

Topic 6G: LDAP enumeration

Topic 6H: NTP enumeration

Topic 6I: SMTP enumeration

Topic 6J: Web enumeration

Topic 6K: Winfingerprint

Topic 6L: How To Enumerate Web Application Directories in IIS Using DirectoryServices

Topic 6M: IP Tools Scanner

Topic 6N: Enumerate Systems Using Default Password

Topic 6O: Tools:

Topic 6P: Steps to Perform Enumeration

Lesson 7: System Hacking

Topic 7A: Part 1- Cracking Password

Topic 7B: Part 2- Escalating Privileges

Topic 7C: Part 3 - Executing applications

Topic 7D: Part 4 - Hiding files

Topic 7E: Part 5 - Covering Tracks

Lesson 8: Trojans and Backdoors

Topic 8A: Effect on Business

Topic 8B: What is a Trojan?

Topic 8C: Indications of a Trojan Attack

Topic 8D: Ports Used by Trojans

Topic 8E: Trojans

Topic 8F: Classic Trojans Found in the Wild

Topic 8G: Hacking Tool: Loki

Topic 8H: Atelier Web Remote Commander

Topic 8I: Trojan Horse Construction Kit

Topic 8J: How to Detect Trojans?

Topic 8K: Anti-Trojan Software

Topic 8L: Evading Anti-Virus Techniques

Topic 8M: Sample Code for Trojan Client/Server

Topic 8N: Evading Anti-Trojan/Anti-Virus using Stealth Tools

Topic 8O: Backdoor Countermeasures

Topic 8P: Tripwire

Topic 8Q: System File Verification

Topic 8R: MD5 Checksum.exe

Topic 8S: Microsoft Windows Defender

Topic 8T: How to Avoid a Trojan Infection

Lesson 9: Viruses and Worms

Topic 9A: Virus History

Topic 9B: Characteristics of Virus

Topic 9C: Working of Virus

Topic 9D: Why people create Computer Viruses

Topic 9E: Symptoms of a Virus-like Attack

Topic 9F: Virus Hoaxes

Topic 9G: Chain Letters

Topic 9H: How is a Worm Different from a Virus

Topic 9I: Indications of a Virus Attack

Topic 9J: Hardware Threats

Topic 9K: Software Threats

Topic 9L: Virus Damage

Topic 9M: Stages of Virus Life

Topic 9N: Virus Classification

Topic 9O: How Does a Virus Infect?

Topic 9P: Storage Patterns of Virus

Topic 9Q: Famous Virus/Worms – I Love You Virus

Topic 9R: Famous Virus/Worms – Melissa

Topic 9S: Famous Virus/Worms – JS/Spth

Topic 9T: Klez Virus Analysis

Topic 9U: Latest Viruses

Topic 9V: Top 10 Viruses- 2008

Topic 9W: Writing a Simple Virus Program

Topic 9X: Virus Construction Kits

Topic 9Y: Virus Detection Methods

Topic 9Z: Virus Incident Response

Topic 9AA: What is Sheep Dip?

Topic 9AB: Virus Analysis – IDA Pro Tool

Topic 9AC: Prevention is better than Cure

Topic 9AD: Anti-Virus Software

Topic 9AE: Popular Anti-Virus Packages

Topic 9AF: Virus Databases

Lesson 10: Sniffers

Topic 10A: Definition - Sniffing

Topic 10B: Protocols Vulnerable to Sniffing

Topic 10C: Tool: Network View – Scans the Network for Devices

Topic 10D: The Dude Sniffer

Topic 10E: Wireshark

Topic 10F: Display Filters in Wireshark

Topic 10G: Following the TCP Stream in Wireshark

Topic 10H: Cain and Abel

Topic 10I: Tcpdump

Topic 10J: Tcpdump Commands

Topic 10K: Types of Sniffing

Topic 10L: What is ARP?

Topic 10M: IP-based sniffing

Topic 10N: Linux Sniffing Tools (dsniff package)

Topic 10O: DNS Poisoning Techniques

Topic 10P: Interactive TCP Relay

Topic 10Q: Interactive Replay Attacks

Topic 10R: Raw Sniffing Tools

Topic 10S: Features of Raw Sniffing Tools

Topic 10T: How to Detect Sniffing

Topic 10U: Countermeasures

Lesson 11: Social Engineering (DVD)

Lesson 12: Phishing (DVD)

Lesson 13: Hacking Email Accounts (DVD)

Lesson 14: Denial-of-Service

Topic 14A: Real World Scenario of DoS Attacks

Topic 14B: What are Denial-of-Service Attacks?

Topic 14C: Goal of DoS

Topic 14D: Impact and the Modes of Attack

Topic 14E: Types of Attacks

Topic 14F: DoS Attack Classification

Topic 14G: Bot (Derived from the Word RoBOT)

Topic 14H: What is a DDoS Attack?

Topic 14I: DDoS Tools

Topic 14J: Worms

Topic 14K: How to Conduct a DDoS Attack

Topic 14L: The Reflected DoS Attacks

Topic 14M: Reflection of the Exploit

Topic 14N: Countermeasures for Reflected DoS

Topic 14O: DDoS Countermeasures

Topic 14P: Taxonomy of DDoS Countermeasures

Topic 14Q: Preventing Secondary Victims

Topic 14R: Detect and Neutralize Handlers

Topic 14S: Detect Potential Attacks

Topic 14T: DoSHTTP Tool

Topic 14U: Mitigate or Stop the Effects of DDoS Attacks

Topic 14V: Deflect Attacks

Topic 14W: Post-attack Forensics

Topic 14X: Packet Traceback

Lesson 15: Session Hijacking

Topic 15A: What is Session Hijacking?

Topic 15B: Spoofing vs. Hijacking

Topic 15C: Steps in Session Hijacking

Topic 15D: Types of Session Hijacking

Topic 15E: Session Hijacking Levels

Topic 15F: Network Level Hijacking

Topic 15G: The 3-Way Handshake

Topic 15H: TCP Concepts 3-Way Handshake

Topic 15I: Sequence Numbers

Topic 15J: TCP/IP hijacking

Topic 15K: IP Spoofing: Source Routed Packets

Topic 15L: RST Hijacking

Topic 15M: Blind Hijacking

Topic 15N: Man in the Middle: Packet Sniffer

Topic 15O: UDP Hijacking

Topic 15P: Application Level Hijacking

Topic 15Q: Programs that Performs Session Hacking

Topic 15R: Dangers that hijacking Pose

Topic 15S: Protecting against Session Hijacking

Topic 15T: Countermeasures: IPsec

Lesson 16: Hacking Web Servers

Topic 16A: How Web Servers Work

Topic 16B: How are Web Servers Compromised

Topic 16C: Web Server Defacement

Topic 16D: Attacks against IIS

Topic 16E: Unicode

Topic 16F: Hotfixes and Patches

Topic 16G: Solution: UpdateExpert

Topic 16H: Vulnerability Scanners

Topic 16I: Online Vulnerability Search Engine

Topic 16J: Network Tool: Whisker

Topic 16K: Network Tool: N-Stealth HTTP Vulnerability Scanner

Topic 16L: Hacking Tool: WebInspect

Topic 16M: Network Tool: Shadow Security Scanner

Topic 16N: Secure IIS

Topic 16O: Countermeasures

Topic 16P: Increasing Web Server Security

Topic 16Q: Web Server Protection Checklist

Lesson 17: Web Application Vulnerabilities

Topic 17A: Web Application Setup

Topic 17B: Web application Hacking

Topic 17C: Anatomy of an Attack

Topic 17D: Web Application Threats

Topic 17E: Cross-Site Scripting/XSS Flaws

Topic 17F: SQL Injection

Topic 17G: Command Injection Flaws

Topic 17H: Cookie/Session Poisoning

Topic 17I: Parameter/Form Tampering

Topic 17J: Hidden Field at

Topic 17K: Buffer Overflow

Topic 17L: Directory Traversal/Forceful Browsing

Topic 17M: Cryptographic Interception

Topic 17N: Cookie Snooping

Topic 17O: Authentication Hijacking

Topic 17P: Log Tampering

Topic 17Q: Error Message Interception

Topic 17R: Attack Obfuscation

Topic 17S: Platform Exploits

Topic 17T: DMZ Protocol Attacks

Topic 17U: Security Management Exploits

Topic 17V: TCP Fragmentation

Topic 17W: Hacking Tools

Lesson 18: Web-Based Password Cracking Techniques

Topic 18A: Authentication - Definition

Topic 18B: Authentication Mechanisms

Topic 18C: Bill Gates at the RSA Conference 2006

Topic 18D: How to Select a Good Password

Topic 18E: Things to Avoid in Passwords

Topic 18F: Changing Your Password

Topic 18G: Protecting Your Password

Topic 18H: Examples of Bad Passwords

Topic 18I: The “Mary Had A Little Lamb” Formula

Topic 18J: How Hackers Get Hold of Passwords

Topic 18K: Windows XP: Remove Saved Passwords

Topic 18L: What is a Password Cracker?

Topic 18M: Modus Operandi of an Attacker Using a Password Cracker

Topic 18N: How Does a Password Cracker Work?

Topic 18O: Attacks - Classification

Topic 18P: Password Crackers Available

Topic 18Q: Countermeasures

Lesson 19: SQL Injection

Topic 19A: What is SQL Injection?

Topic 19B: Exploiting Web Applications

Topic 19C: Steps for performing SQL injection

Topic 19D: What You Should Look For

Topic 19E: What If It Doesn’t Take Input

Topic 19F: OLE DB Errors

Topic 19G: Input Validation Attack

Topic 19H: SQL injection Techniques

Topic 19I: How to Test for SQL Injection Vulnerability

Topic 19J: How Does It Work?

Topic 19K: BadLogin.aspx.cs

Topic 19L: BadProductList.aspx.cs

Topic 19M: Executing Operating System Commands

Topic 19N: Getting Output of SQL Query

Topic 19O: Getting Data from the Database Using ODBC Error Message

Topic 19P: How to Mine all Column Names of a Table

Topic 19Q: How to Retrieve any Data

Topic 19R: How to Update/Insert Data into Database

Topic 19S: SQL Injection in Oracle

Topic 19T: SQL Injection in MySql Database

Topic 19U: Attacking Against SQL Servers

Topic 19V: SQL Server Resolution Service (SSRS)

Topic 19W: Osql -L Probing

Topic 19X: SQL Injection Automated Tools

Topic 19Y: Blind SQL Injection

Topic 19Z: SQL Injection Countermeasures

Topic 19AA: Preventing SQL Injection Attacks

Topic 19AB: GoodLogin.aspx.cs

Topic 19AC: SQL Injection Blocking Tool: SQL Block

Topic 19AD: Acunetix Web Vulnerability Scanner

Lesson 20: Hacking Wireless Networks

Topic 20A: Introduction to Wireless

Topic 20B: Wireless Standards

Topic 20C: Wireless Concepts and Devices

Topic 20D: WEP and WPA

Topic 20E: Attacks and Hacking Tools

Topic 20F: Scanning Tools

Topic 20G: Sniffing Tools

Topic 20H: Hacking Wireless Networks

Topic 20I: Wireless Security

Topic 20J: Wireless Security Tools

Lesson 21: Physical Security (DVD)

Lesson 22: Linux Hacking

Topic 22A: Why Linux?

Topic 22B: Linux Distributions

Topic 22C: Linux Live CD-ROMs

Topic 22D: Basic Commands of Linux: Files & Directories

Topic 22E: Directories in Linux

Topic 22F: Installing, Configuring, and Compiling Linux Kernel

Topic 22G: How to Install a Kernel Patch

Topic 22H: Compiling Programs in Linux

Topic 22I: GCC Commands

Topic 22J: Make Files

Topic 22K: Make Install Command

Topic 22L: Linux Vulnerabilities

Topic 22M: Chrooting

Topic 22N: Why is Linux Hacked?

Topic 22O: How to Apply Patches to Vulnerable Programs

Topic 22P: Scanning Networks

Topic 22Q: Nmap in Linux

Topic 22R: Scanning Tool: Nessus

Topic 22S: Port Scan Detection Tools

Topic 22T: Password Cracking in Linux: Xcrack

Topic 22U: Firewall in Linux: IPTables

Topic 22V: IPTables Command

Topic 22W: Basic Linux Operating System Defense

Topic 22X: SARA (Security Auditor’s Research Assistant)

Topic 22Y: Linux Tool: Netcat

Topic 22Z: Linux Tool: tcpdump

Topic 22AA: Linux Tool: Snort

Topic 22AB: Linux Tool: SAINT

Topic 22AC: Linux Tool: Wireshark

Topic 22AD: Linux Tool: Abacus Port Sentry

Topic 22AE: Linux Tool: DSniff Collection

Topic 22AF: Linux Tool: Hping2

Topic 22AG: Linux Tool: Sniffit

Topic 22AH: Linux Tool: Nemesis

Topic 22AI: Linux Tool: LSOF

Topic 22AJ: Linux Tool: IPTraf

Topic 22AK: Linux Tool: LIDS

Topic 22AL: Hacking Tool: Hunt

Topic 22AM: Tool: TCP Wrappers

Topic 22AN: Linux Loadable Kernel Modules

Topic 22AO: Hacking Tool: Linux Rootkits

Topic 22AP: Rootkits: Knark & Torn

Topic 22AQ: Rootkits: Tuxit, Adore, Ramen

Topic 22AR: Rootkit: Beastkit

Topic 22AS: Rootkit Countermeasures

Topic 22AT: ‘chkrootkit’ detects the following Rootkits

Topic 22AU: Linux Tools: Application Security

Topic 22AV: Advanced Intrusion Detection Environment (AIDE)

Topic 22AW: Linux Tools: Security Testing Tools

Topic 22AX: Linux Tools: Encryption

Topic 22AY: Linux Tools: Log and Traffic Monitors

Topic 22AZ: Linux Security Auditing Tool (LSAT)

Topic 22BA: Linux Security Countermeasures

Topic 22BB: Steps for Hardening Linux

Lesson 23: Evading IDS, Firewalls and Detecting Honey Pots

Topic 23A: Introduction to Intrusion Detection System

Topic 23B: Terminologies

Topic 23C: Intrusion Detection System (IDS)

Topic 23D: What is a Firewall?

Topic 23E: Common Tool for Testing Firewall and IDS

Topic 23F: What is a Honeypot?

Topic 23G: Tools to Detect Honeypots

Topic 23H: What to do when hacked

Lesson 24: Buffer Overflows

Topic 24A: Why are Programs/Applications Vulnerable?

Topic 24B: Buffer Overflows

Topic 24C: Reasons for Buffer Overflow Attacks

Topic 24D: Knowledge Required to Program Buffer Overflow Exploits

Topic 24E: Understanding Stacks

Topic 24F: Understanding Heaps

Topic 24G: Types of Buffer Overflows: Stack-based Buffer Overflow

Topic 24H: Types of Buffer Overflows: Heap-based Buffer Overflow

Topic 24I: Understanding Assembly Language

Topic 24J: How to Detect Buffer Overflows in a Program

Topic 24K: NOPs

Topic 24L: How to Mutate a Buffer Overflow Exploit

Topic 24M: Once the Stack is Smashed

Topic 24N: Defense Against Buffer Overflows

Topic 24O: Buffer Overflow Protection Solution: Libsafe

Topic 24P: Simple Buffer Overflow in C

Lesson 25: Cryptography

Topic 25A: Introduction to Cryptography

Topic 25B: Classical Cryptographic Techniques

Topic 25C: Cryptographic Algorithms

Topic 25D: RSA (Rivest Shamir Adleman)

Topic 25E: Data Encryption Standard (DES)

Topic 25F: RC4, RC5, RC6, Blowfish

Topic 25G: Message Digest Functions

Topic 25H: SHA (Secure Hash Algorithm)

Topic 25I: SSL (Secure Sockets Layer)

Topic 25J: What is SSH?

Topic 25K: Algorithms and Security

Topic 25L: Disk Encryption

Topic 25M: Government Access to Keys (GAK)

Topic 25N: Digital Signature

Topic 25O: Digital Certificates

Topic 25P: PGP (Pretty Good Privacy)

Topic 25Q: CypherCalc

Topic 25R: Command Line Scriptor

Topic 25S: CryptoHeaven

Topic 25T: Hacking Tool: PGP Crack

Topic 25U: Magic Lantern

Topic 25V: Advanced File Encryptor

Topic 25W: Encryption Engine

Topic 25X: Encrypt Files

Topic 25Y: Encrypt PDF

Topic 25Z: Encrypt Easy

Topic 25AA: Encrypt my Folder

Topic 25AB: Advanced HTML Encrypt and Password Protect

Topic 25AC: Encrypt HTML source

Topic 25AD: Alive File Encryption

Topic 25AE: Omziff

Topic 25AF: ABC CHAOS

Topic 25AG: EncryptOnClick

Topic 25AH: CryptoForge

Topic 25AI: SafeCryptor

Topic 25AJ: CrypTool

Topic 25AK: Microsoft Cryptography Tools

Topic 25AL: Polar Crypto Light

Topic 25AM: CryptoSafe

Topic 25AN: Crypt Edit

Topic 25AO: CrypSecure

Topic 25AP: Cryptlib

Topic 25AQ: Crypto++ Library

Topic 25AR: Code Breaking: Methodologies

Topic 25AS: Cryptanalysis

Topic 25AT: Cryptography Attacks

Topic 25AU: Brute-Force Attack

Topic 25AV: Cracking S/MIME Encryption Using Idle CPU Time

Topic 25AW: distributed.net

Topic 25AX: Use Of Cryptography

Lesson 26: Penetration Testing (DVD)

Lesson 51: Lesson Labs