> Nearby Locations
Des Moines
515-226-3265
 
 
 
My Account  |  View Cart
Search:
 


Class Outline*

| Request Info | Contact Us

Certified Ethical Hacking and Countermeasures

Duration:

5 Days

Overview:

This class will immerse students into an interactive environment where they will be shown how to scan, test, hack, and secure their own systems. The lab-intensive environment gives each student in-depth knowledge and practical experience with current essential security systems. Students will begin by understanding how perimeter defenses work and then be led into scanning and attacking their own networks; no real network is harmed. Students then learn how intruders escalate privileges and what steps can be taken to secure a system. Students will also learn about Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows, and Virus Creation. When a student leaves this intensive 5-day class, they will have hands-on understanding and experience in Ethical Hacking. This course prepares students for EC-Council Certified Ethical Hacker exam 312-50.

Note: The 312-50 exam is offered on the last day of class. In addition, the exam price is included in the total price of the course.

Objectives:

The CEH Program certifies individuals in the specific network security discipline of Ethical Hacking from a vendor-neutral perspective. Students will understand and know how to look for weaknesses and vulnerabilities in targeted systems and will use the same knowledge and tools as malicious hackers.

Audience:

This course will significantly benefit security officers, auditors, security professionals, site administrators, and anyone who is concerned about the integrity of the network infrastructure.

Prerequisites:

To fully benefit from this course, it is recommended that students have the following prerequisite skills and knowledge:

  • Working knowledge of fundamental terms and concepts of computer networking to include LANs, WANs, and IP switching and routing
  • Ability to configure and operate Cisco IOS routers in IP environment at the CCNA level
  • Basic knowledge of traditional voice, converged voice, and data networks at the CCNA Voice level

Topics:

Module 1: Introduction to Ethical Hacking

  • Essential Terminologies
  • Elements of Security
  • The Security, Functionality and Ease of Use Triangle
  • What does a Malicious Hacker Do?
  • Types of Hacker Attacks
  • Hacktivism
  • Security News: Suicide Hacker
  • What do Ethical Hackers do
  • Can Hacking be Ethical
  • How to become an Ethical Hacker
  • Skill Profile of an Ethical Hacker
  • What is Vulnerability Research
  • Computer Crimes and Implications

Module 2: Hacking Laws

  • U.S. Securely Protect Yourself Against Cyber Trespass Act (SPY ACT)
  • Legal Perspective (U.S. Federal Law)
  • Federal Managers Financial Integrity Act of 1982
  • The Freedom of Information Act 5 U.S.C. § 552
  • Federal Information Security Management Act (FISMA)
  • The Privacy Act Of 1974 5 U.S.C. § 552a
  • USA Patriot Act of 2001
  • United Kingdom’s Cyber Laws
  • United Kingdom: Police and Justice Act 2006
  • European Laws
  • Japan’s Cyber Laws
  • Australia : The Cybercrime Act 2001
  • Indian Law: THE INFORMTION TECHNOLOGY ACT
  • Argentina Laws
  • Germany’s Cyber Laws
  • Singapore’s Cyber Laws
  • Belgium Law
  • Brazilian Laws
  • Canadian Laws
  • France Laws
  • German Laws
  • Italian Laws
  • MALAYSIA:THE COMPUTER CRIMES ACT 1997
  • HONGKONG: TELECOMMUNICATIONS
  • Korea: ACT ON PROMOTION OF INFORMATION AND COMMUNICATIONS NETWORK UTILIZATION AND INFORMATION PROTECTION, ETC.
  • Greece Laws
  • Denmark Laws
  • Netherlands Laws
  • Norway
  • ORDINANCE
  • Mexico
  • SWITZERLAND

Module 3: Footprinting

  • Revisiting Reconnaissance
  • Defining Footprinting
  • Why is Footprinting Necessary
  • Areas and Information which Attackers Seek
  • Information Gathering Methodology
  • Competitive Intelligence Gathering
  • Public and Private Websites
  • Footprinting Tools
  • Big Brother
  • BiLE Suite
  • Alchemy Network Tool
  • Advanced Administrative Tool
  • My IP Suite
  • Wikto Footprinting Tool
  • Whois
  • WhereIsIP
  • Ip2country
  • CallerIP
  • Web Data Extractor Tool
  • Online Whois Tools
  • What is MyIP
  • DNS Enumerator
  • SpiderFoot
  • Nslookup
  • Extract DNS Information
  • Expired Domains
  • Domain tools
  • Reggie
  • Locate the Network Range
  • ARIN
  • Traceroute
  • 3D Traceroute
  • NeoTrace
  • VisualRoute Trace
  • Path Analyzer Pro
  • Maltego
  • Layer Four Traceroute
  • Prefix WhoIs widget
  • Touchgraph
  • VisualRoute Mail Tracker
  • eMailTrackerPro
  • Read Notify
  • E-Mail Spiders
  • Steps to Create Fake Login Pages
  • How to Create Fake Login Pages
  • Faking Websites using Man-in-the-Middle Phishing Kit
  • Benefits to Fraudster
  • Steps to Perform Footprinting

Module 4: Google Hacking

  • What is Google hacking
  • What a hacker can do with vulnerable site
  • Anonymity with Caches
  • Using Google as a Proxy Server
  • Directory Listings
  • Going Out on a Limb: Traversal Techniques
  • Extension Walking
  • admin login
  • Locating Exploits Via Common Code Strings
  • Locating Targets Via Demonstration Pages
  • Locating Targets Via Source Code
  • Locating Targets Via CGI Scanning
  • Finding IIS 5.0 Servers
  • Apache Web Server
  • ASP Dumps Provide Dangerous Details
  • Many Errors Reveal Pathnames and Filenames
  • CGI Environment Listings Reveal Lots of Information
  • A Typical Apache Default Web Page
  • Locating Default Installations of IIS 4.0 on Windows NT 4.0/OP
  • Default Pages Query for Web Server
  • Outlook Web Access Default Portal
  • Windows Registry Entries Can Reveal Passwords
  • Usernames, Cleartext Passwords, and Hostnames!

Module 5: Scanning

  • Scanning: Definition
  • Types of Scanning
  • Objectives of Scanning
  • CEH Scanning Methodology
  • Checking for live systems - ICMP Scanning
  • Advanced IP Scanner
  • Active Network Monitor
  • Advanced Serial Data Logger & Port Monitor
  • War Dialer Technique
  • Banner Grabbing
  • OS Fingerprinting
  • Active Stack Fingerprinting
  • Passive Fingerprinting
  • Active Banner Grabbing Using Telnet
  • GET REQUESTS
  • Vulnerability Scanning
  • Draw Network Diagrams of Vulnerable Hosts
  • Insightix Visibility
  • IPCheck Server Monitor
  • PRTG Traffic Grapher
  • Preparing Proxies
  • HTTP Tunneling Techniques
  • Spoofing IP Address

Module 6: Enumeration

  • Overview of System Hacking Cycle
  • What is Enumeration?
  • Techniques for Enumeration
  • NetBIOS Null Sessions
  • So What's the Big Deal
  • DumpSec Tool
  • NetBIOS Enumeration Using Netview
  • Nbtstat Enumeration Tool
  • SuperScan
  • Enumerating User Accounts
  • GetAcct
  • Null Session Countermeasure
  • PS Tools
  • Simple Network Management Protocol (SNMP) Enumeration
  • Management Information Base (MIB)
  • SNMPutil Example
  • UNIX Enumeration
  • SNMP UNIX Enumeration
  • SNMP Enumeration Countermeasures
  • LDAP enumeration
  • JXplorer
  • LdapMiner
  • NTP enumeration
  • SMTP enumeration
  • Smtpscan
  • Web enumeration
  • Asnumber
  • Lynx
  • Winfingerprint
  • Windows Active Directory Attack Tool
  • How To Enumerate Web Application Directories in IIS Using DirectoryServices
  • IP Tools Scanner
  • Enumerate Systems Using Default Password
  • Steps to Perform Enumeration

Module 7: System Hacking

  • Part 1-Cracking Password
  • Part 2-Escalating Privileges
  • Part 3-Executing applications
  • Part 4-Hiding files
  • Part 5-Covering Tracks

Module 8: Trojans and Backdoors

  • Effect on Business
  • What is a Trojan?
  • Overt and Covert Channels
  • Working of Trojans
  • Different Types of Trojans
  • What do Trojan Creators Look for?
  • Different Ways a Trojan can Get into a System
  • Indications of a Trojan Attack
  • Ports Used by Trojans
  • How to Determine which Ports are Listening
  • How to Detect Trojans?
  • How to Avoid a Trojan Infection

Module 9: Viruses and Worms

  • Virus History
  • Characteristics of Virus
  • Working of Virus
  • Why people create Computer Viruses
  • Symptoms of a Virus-like Attack
  • Virus Hoaxes
  • Chain Letters
  • How is a Worm Different from a Virus
  • Indications of a Virus Attack
  • Hardware Threats
  • Software Threats
  • Virus Damage
  • Stages of Virus Life
  • Virus Classification
  • How Does a Virus Infect?
  • Storage Patterns of Virus
  • Latest Viruses
  • Top 10 Viruses- 2008
  • Writing a Simple Virus Program
  • Virus Construction Kits
  • Virus Detection Methods
  • Virus Incident Response
  • What is Sheep Dip?
  • Virus Analysis - IDA Pro Tool
  • Prevention is better than Cure
  • Anti-Virus Software
  • Virus Databases

Module 10: Sniffers

  • Definition - Sniffing
  • Protocols Vulnerable to Sniffing
  • Tool: Network View - Scans the Network for Devices
  • Wireshark
  • Cain and Abel
  • Tcpdump
  • Types of Sniffing
  • What is ARP?
  • DNS Poisoning Techniques
  • Interactive TCP Relay
  • Interactive Replay Attacks
  • Raw Sniffing Tools
  • How to Detect Sniffing
  • Countermeasures

Module 11: Social Engineering

  • What is Social Engineering?
  • Types of Social Engineering
  • Social Engineering Threats
  • Factors that make Companies Vulnerable to Attacks
  • Why is Social Engineering Effective
  • Warning Signs of an Attack
  • Phases in a Social Engineering Attack
  • Behaviors Vulnerable to Attacks
  • Impact on the Organization
  • Countermeasures
  • Policies and Procedures
  • Security Policies - Checklist
  • Impersonating Orkut, Facebook, MySpace
  • How to Steal Identity
  • Comparison
  • Original
  • Identity Theft

Module 12: Phishing

  • Phishing
  • Reasons for Successful Phishing
  • Phishing Methods
  • Process of Phishing
  • Types of Phishing Attacks
  • Phishing Statistics: Feb’ 2008
  • Anti-Phishing
  • Anti-Phishing Tools

Module 13: Hacking Email Accounts

  • Stealing Cookies
  • Social Engineering
  • Password Phishing
  • Fraudulent e-mail Messages
  • Vulnerabilities
  • Creating Strong Passwords
  • Sign-in Seal
  • Alternate Email Address
  • Keep Me Signed In/ Remember Me

Module 14: Denial-of-Service

  • Real World Scenario of DoS Attacks
  • What are Denial-of-Service Attacks?
  • Goal of DoS
  • Impact and the Modes of Attack
  • Types of Attacks
  • DoS Attack Classification
  • Bot (Derived from the Word RoBOT)
  • What is a DDoS Attack?
  • DDoS Tools
  • Worms
  • How to Conduct a DDoS Attack
  • The Reflected DoS Attacks
  • Reflection of the Exploit
  • Countermeasures for Reflected DoS
  • DDoS Countermeasures
  • Taxonomy of DDoS Countermeasures
  • Preventing Secondary Victims
  • Detect and Neutralize Handlers
  • Detect Potential Attacks
  • DoSHTTP Tool
  • Mitigate or Stop the Effects of DDoS Attacks
  • Deflect Attacks
  • Post-attack Forensics
  • Packet Traceback

Module 15: Session Hijacking

  • What is Session Hijacking?
  • Spoofing vs. Hijacking
  • Steps in Session Hijacking
  • Types of Session Hijacking
  • Session Hijacking Levels
  • Network Level Hijacking
  • The 3-Way Handshake
  • TCP Concepts 3-Way Handshake
  • Sequence Numbers
  • TCP/IP hijacking
  • IP Spoofing: Source Routed Packets
  • RST Hijacking
  • Blind Hijacking
  • Man in the Middle: Packet Sniffer
  • UDP Hijacking
  • Application Level Hijacking
  • Programs that Performs Session Hacking
  • Dangers that hijacking Pose
  • Protecting against Session Hijacking
  • Countermeasures: Ipsec

Module 16: Hacking Web Servers

  • How Web Servers Work
  • How are Web Servers Compromised
  • Web Server Defacement
  • Attacks against IIS
  • Unicode
  • Hotfixes and Patches
  • Solution: UpdateExpert
  • Vulnerability Scanners
  • Online Vulnerability Search Engine
  • Network Tool: Whisker
  • Network Tool: N-Stealth HTTP Vulnerability Scanner
  • Hacking Tool: WebInspect
  • Network Tool: Shadow Security Scanner
  • Secure IIS
  • Countermeasures
  • Increasing Web Server Security
  • Web Server Protection Checklist

Module 17: Web Application Vulnerabilities

  • Web Application Setup
  • Web application Hacking
  • Anatomy of an Attack
  • Web Application Threats
  • Cross-Site Scripting/XSS Flaws
  • SQL Injection
  • Command Injection Flaws
  • Cookie/Session Poisoning
  • Parameter/Form Tampering
  • Hidden Field at
  • Buffer Overflow
  • Directory Traversal/Forceful Browsing
  • Cryptographic Interception
  • Cookie Snooping
  • Authentication Hijacking
  • Log Tampering
  • Error Message Interception
  • Attack Obfuscation
  • Platform Exploits
  • DMZ Protocol Attacks
  • Security Management Exploits
  • TCP Fragmentation
  • Hacking Tools

Module 18: Web-Based Password Cracking Techniques

  • Authentication - Definition
  • Authentication Mechanisms
  • Bill Gates at the RSA Conference 2006
  • How to Select a Good Password
  • Things to Avoid in Passwords
  • Changing Your Password
  • Protecting Your Password
  • Examples of Bad Passwords
  • The "Mary Had A Little Lamb" Formula
  • How Hackers Get Hold of Passwords
  • Windows XP: Remove Saved Passwords
  • What is a Password Cracker?
  • Modus Operandi of an Attacker Using a Password Cracker
  • How Does a Password Cracker Work?
  • Attacks - Classification
  • Password Crackers Available
  • Countermeasures

Module 19: SQL Injection

  • What is SQL Injection?
  • Exploiting Web Applications
  • Steps for performing SQL injection
  • What You Should Look For
  • What If It Doesn't Take Input
  • OLE DB Errors
  • Input Validation Attack
  • SQL injection Techniques
  • How to Test for SQL Injection Vulnerability
  • How Does It Work?
  • BadLogin.aspx.cs
  • BadProductList.aspx.cs
  • Executing Operating System Commands
  • Getting Output of SQL Query
  • Getting Data from the Database Using ODBC Error Message
  • How to Mine all Column Names of a Table
  • How to Retrieve any Data
  • How to Update/Insert Data into Database
  • SQL Injection in Oracle
  • SQL Injection in MySql Database
  • Attacking Against SQL Servers
  • SQL Server Resolution Service (SSRS)
  • Osql -L Probing
  • SQL Injection Automated Tools
  • Blind SQL Injection
  • SQL Injection Countermeasures
  • Preventing SQL Injection Attacks
  • GoodLogin.aspx.cs
  • SQL Injection Blocking Tool: SQL Block
  • Acunetix Web Vulnerability Scanner

Module 20: Hacking Wireless Networks

  • Introduction to Wireless
  • Wireless Standards
  • Wireless Concepts and Devices
  • WEP and WPA
  • Attacks and Hacking Tools
  • Scanning Tools
  • Sniffing Tools
  • Hacking Wireless Networks
  • Wireless Security
  • Wireless Security Tools

Module 21: Physical Security

  • Security Facts
  • Understanding Physical Security
  • Physical Security
  • What Is the Need for Physical Security
  • Who Is Accountable for Physical Security
  • Factors Affecting Physical Security
  • Physical Security Checklist
  • Information Security
  • EPS (Electronic Physical Security)
  • Wireless Security
  • Statistics for Stolen and Recovered Laptops
  • Tools to Locate Stolen Laptops
  • Laptop Security Countermeasures
  • Challenges in Ensuring Physical Security
  • Spyware Technologies
  • Spying Devices
  • Physical Security: Lock Down USB Ports
  • Track Stick GPS Tracking Device

Module 22: Linux Hacking

  • Why Linux
  • Linux Distributions
  • Linux Live CD-ROMs
  • Basic Commands of Linux: Files & Directories
  • Linux Basics
  • Linux File Structure
  • Linux Networking Commands
  • Linux Vulnerabilities
  • Why is Linux Hacked
  • How to Apply Patches to Vulnerable Programs
  • Firewall in Linux: IPTables
  • Basic Linux Operating System Defense
  • SARA (Security Auditor's Research Assistant)
  • Linux Tools
  • Linux Loadable Kernel Modules
  • Rootkits
  • Advanced Intrusion Detection Environment (AIDE)
  • Linux Security Auditing Tool (LSAT)
  • Linux Security Countermeasures
  • Steps for Hardening Linux

Module 23: Evading IDS, Firewalls and Detecting Honey Pots

  • Introduction to Intrusion Detection System
  • Terminologies
  • Intrusion Detection System (IDS)
  • What is a Firewall?
  • Common Tool for Testing Firewall and IDS
  • What is a Honeypot?
  • Tools to Detect Honeypots
  • What to do when hacked

Module 24: Buffer Overflows

  • Why are Programs/Applications Vulnerable?
  • Buffer Overflows
  • Reasons for Buffer Overflow Attacks
  • Knowledge Required to Program Buffer Overflow Exploits
  • Understanding Stacks
  • Understanding Heaps
  • Types of Buffer Overflows: Stack-based Buffer Overflow
  • Types of Buffer Overflows: Heap-based Buffer Overflow
  • Understanding Assembly Language
  • How to Detect Buffer Overflows in a Program
  • NOPs
  • How to Mutate a Buffer Overflow Exploit
  • Once the Stack is Smashed
  • Defense Against Buffer Overflows
  • Buffer Overflow Protection Solution: Libsafe
  • Simple Buffer Overflow in C

Module 25: Cryptography

  • Introduction to Cryptography
  • Classical Cryptographic Techniques
  • Cryptographic Algorithms
  • RSA (Rivest Shamir Adleman)
  • Data Encryption Standard (DES)
  • RC4, RC5, RC6, Blowfish
  • Message Digest Functions
  • SHA (Secure Hash Algorithm)
  • SSL (Secure Sockets Layer)
  • What is SSH?
  • Algorithms and Security
  • Disk Encryption
  • Government Access to Keys (GAK)
  • Digital Signature
  • Digital Certificates
  • PGP (Pretty Good Privacy)
  • Command Line Scriptor
  • Advanced File Encryptor
  • Code Breaking: Methodologies
  • Cryptanalysis
  • Cryptography Attacks
  • Brute-Force Attack
  • Cracking S/MIME Encryption Using Idle CPU Time
  • Use Of Cryptography

Module 26: Penetration Testing

  • Introduction to Penetration Testing (PT)
  • Categories of security assessments
  • Vulnerability Assessment
  • Penetration Testing
  • Risk Management
  • Do-It-Yourself Testing
  • Outsourcing Penetration Testing Services
  • Terms of Engagement
  • Project Scope
  • Pentest Service Level Agreements
  • Testing points
  • Testing Locations
  • Automated Testing
  • Manual Testing
  • Using DNS Domain Name and IP Address Information
  • Enumerating Information about Hosts on Publicly Available Networks
  • Testing Network-filtering Devices
  • Enumerating Devices
  • Denial-of-Service Emulation
  • GAP Analysis
  • Threat
  • Business Impact of Threat
  • Internal & External Metrics Threat
  • Calculating Relative Criticality
  • Test Dependencies
  • Phases of Penetration Testing
  • Penetration Testing Deliverables Templates

Module 27: Covert Hacking

  • Insider Attacks
  • What is Covert Channel?
  • Security Breach
  • Why Do You Want to Use Covert Channel?
  • Motivation of a Firewall Bypass
  • Covert Channels Scope
  • Simple Covert Attacks
  • Advanced Covert Attacks
  • Standard Direct Connection
  • Reverse Shell (Reverse Telnet)
  • Covert Channel Attack Tools
  • Covert Channel Hacking via Spam E-mail Messages

Module 28: Writing Virus Codes

  • Introduction of Virus
  • Types of Viruses
  • Symptoms of a Virus Attack
  • Prerequisites for Writing Viruses
  • Required Tools and Utilities
  • Virus Infection Flow Chart
  • Components of Viruses
  • Testing Virus Codes
  • Tips for Better Virus Writing

Module 29: Assembly Language Tutorial

  • Base 10 System
  • Base 2 System
  • Decimal 0 to 15 in Binary
  • Binary Addition (C stands for Canary)
  • Hexadecimal Number
  • Hex Example
  • Hex Conversion
  • nibble
  • Computer memory
  • Characters Coding
  • ASCII and UNICODE
  • CPU
  • Machine Language
  • Compilers
  • Clock Cycle
  • Original Registers
  • Instruction Pointer
  • Pentium Processor
  • Interrupts
  • Interrupt handler
  • Handlers
  • Machine Language
  • Assembly Language
  • Assembler
  • Assembly Language Vs High-level Language
  • Assembly Language Compilers
  • Instruction operands
  • MOV instruction
  • ADD instruction
  • SUB instruction
  • INC and DEC instructions
  • Directive
  • preprocessor
  • equ directive
  • %define directive
  • Data directives
  • Labels
  • Input and output
  • C Interface
  • Call
  • Creating a Program
  • Why should anyone learn assembly at all?
  • Assembling the code
  • Compiling the C code
  • Linking the object files
  • Understanding an assembly listing file
  • Big and Little Endian Representation
  • Skeleton File
  • Working with Integers
  • Signed integers
  • Signed Magnitude
  • Two’s Compliment
  • If statements
  • Do while loops
  • Indirect addressing
  • Subprogram
  • The Stack
  • The SS segment
  • ESP
  • The Stack Usage
  • The CALL and RET Instructions
  • General subprogram form
  • Local variables on the stack
  • General subprogram form with local variables
  • Multi-module program
  • Saving registers
  • Labels of functions
  • Calculating addresses of local variables

Module 30: Exploit Writing

  • Exploits Overview
  • Prerequisites for Writing Exploits and Shellcodes
  • Purpose of Exploit Writing
  • Types of Exploits
  • Attack Methodologies
  • Socket Binding Exploits
  • Tools for Exploit Writing
  • Steps for Writing an Exploit
  • Differences Between Windows and Linux Exploits
  • Types of Shellcodes
  • Tools Used for Shellcode Development
  • Steps for Writing a Shellcode
  • Issues Involved With Shellcode Writing

Module 31: Smashing the Stack for Fun and Profit

  • What is a Buffer?
  • Static Vs Dynamic Variables
  • Stack Buffers
  • Data Region
  • Memory Process Regions
  • What Is A Stack?
  • Why Do We Use A Stack?
  • The Stack Region
  • Stack frame
  • Stack pointer
  • Procedure Call (Procedure Prolog)
  • Compiling the code to assembly
  • Call Statement
  • Return Address (RET)
  • Word Size
  • Stack
  • Buffer Overflows
  • Error
  • Why do we get a segmentation violation?
  • Segmentation Error
  • Instruction Jump
  • Guess Key Parameters
  • Calculation
  • Shell Code
  • Using NOPs
  • Estimating the Location

Module 32: Windows Based Buffer Overflow Exploit Writing

  • Buffer & Stack Overflow
  • Writing Windows Based Exploits
  • Exploiting stack based buffer overflow
  • OpenDataSource Buffer Overflow Vulnerability Details
  • Simple Proof of Concept
  • Windbg.exe
  • Analysis
  • EIP Register
  • Execution Flow
  • But where can we jump to?
  • Offset Address
  • The Query
  • The payload
  • ESP
  • Limited Space
  • Getting Windows API/function absolute address
  • Memory Address
  • Other Addresses
  • Compile the program
  • Final Code

Module 33: Reverse Engineering

  • Positive Applications of Reverse Engineering
  • Ethical Reverse Engineering
  • World War Case Study
  • DMCA Act
  • What is Disassembler?
  • Why do you need to decompile?
  • Convert Machine Code to Assembly Code
  • Debugging a Simple Console Application

Module 34: MAC OS X Hacking

  • Introduction to MAC OS
  • Vulnerabilities in MAC
  • How a Malformed Installer Package Can Crack Mac OS X
  • Worm and Viruses in MAC
  • Anti-Viruses in MAC
  • Mac Security Tools
  • Countermeasures

Module 35: Hacking Routers, cable Modems and Firewalls

  • Network Devices
  • Identifying a Router
  • HTTP Configuration Arbitrary Administrative Access Vulnerability
  • Brute-Forcing Login Services
  • Analyzing the Router Config
  • Cracking the Enable Password
  • Implications of a Router Attack
  • Types of Router Attacks
  • Router Attack Topology
  • Denial of Service (DoS) Attacks
  • Packet "Mistreating" Attacks
  • Routing Table Poisoning
  • Hit-and-run Attacks vs. Persistent Attacks
  • Monitoring SMTP(port25) Using SLcheck
  • Monitoring HTTP(port 80)
  • Cable Modem Hacking

Module 36: Hacking Mobile Phones, PDA and Handheld Devices

  • Different OS in Mobile Phone
  • Different OS Structure in Mobile Phone
  • Evolution of Mobile Threat
  • Threats
  • What Can A Hacker Do
  • Vulnerabilities in Different Mobile Phones
  • Mobile: Is It a Breach to Enterprise Security?
  • Security Tools
  • Defending Cell Phones and PDAs Against Attack
  • Mobile Phone Security Tips

Module 37: Bluetooth Hacking

  • Bluetooth Introduction
  • Security Issues in Bluetooth
  • Security Attacks in Bluetooth Devices
  • Bluetooth hacking tools
  • Bluetooth Viruses and Worms
  • Bluetooth Security tools

Module 38: VoIP Hacking

  • What is VoIP
  • VoIP Hacking Steps
  • Footprinting
  • Scanning
  • Enumeration
  • Steps to Exploit the Network
  • How to Insert Rogue Application
  • SIP Rogue Application
  • Listening to/Recording Calls
  • Replacing/Mixing Audio
  • Dropping Calls with a Rogue SIP Proxy
  • Randomly Redirect Calls with a Rogue SIP Proxy
  • Additional Attacks with a Rogue SIP Proxy
  • What is Fuzzing
  • Commercial VoIP Fuzzing tools
  • Registration Addition & Removal
  • VoIP Phishing
  • Covering Tracks

Module 39: RFID Hacking

  • RFID - Definition
  • Components of RFID Systems
  • RFID Collisions
  • RFID Risks
  • Hazards of Electromagnetic Radiation
  • Computer Network Attacks
  • RFID and Privacy Issues
  • Countermeasures
  • RFID Security and Privacy Threats
  • Protection Against RFID Attacks
  • RFID Exploits
  • Vulnerabilities in RFID-enabled Credit Cards
  • RFID Security

Module 40: Spamming

  • Introduction
  • Techniques used by Spammers
  • How Spamming is performed
  • Types of Spam Attacks
  • Spamming Tools
  • Anti-Spam Techniques
  • Anti- Spamming Tools
  • Countermeasures

Module 41: Hacking USB Devices

  • Introduction to USB Devices
  • Electrical Attack
  • Software Attack
  • USB Attack on Windows
  • Viruses and Worms
  • Hacking Tools
  • USB Security Tools
  • Countermeasures

Module 42: Hacking Database Servers

  • Hacking Database server: Introduction
  • Hacking Oracle Database Server
  • Hacking SQL Server
  • Security Tools
  • SQL Server Security Best Practices

Module 43: Cyber Warfare - Hacking, Al-Qaida, and Terrorism

  • Cyber Terrorism Over Internet
  • Cyber-Warfare Attacks
  • Why Terrorists Use Cyber Techniques
  • Cyber Support to Terrorist Operations
  • Planning
  • Recruitment
  • Research
  • Propaganda
  • Cyber Threat to the Military

Module 44: Internet Content Filtering Techniques

  • Introduction to Internet Filter
  • Key Features of Internet Filters
  • Pros and Cons of Internet Filters
  • Internet Content Filtering Tools
  • Internet Safety Guidelines for Children

Module 45: Privacy on the Internet

  • Internet privacy
  • Proxy privacy
  • Spyware privacy
  • Email privacy
  • Cookies
  • Web Browsers
  • Web Bugs
  • Downloading Freeware
  • Internet Relay Chat
  • Electronic Commerce
  • Internet Privacy Tools: Anonymizers
  • Internet Privacy Tools
  • Best Practices
  • Protecting Search Privacy
  • Tips for Internet Privacy
  • Counter measures

Module 46: Securing Laptop Computers

  • Statistics for Stolen and Recovered Laptops
  • Statistics on Security
  • Percentage of Organizations Following the Security Measures
  • Fingerprint Reader
  • Protecting Laptops Through Face Recognition
  • Bluetooth in Laptops
  • Tools
  • Securing from Physical Laptop Thefts
  • Hardware Security for Laptops
  • Protecting the Sensitive Data
  • Preventing Laptop Communications from Wireless Threats
  • Protecting the Stolen Laptops from Being Used
  • Security Tips

Module 47: Spying Technologies

  • Spying
  • Motives of Spying
  • Spying Devices
  • Vendors Hosting Spy Devices
  • Spying Tools
  • Anti-Spying Tools

Module 48: Corporate Espionage - Hacking Using Insiders

  • Introduction To Corporate Espionage
  • Information Corporate Spies Seek
  • Different Categories of Insider Threat
  • Driving Force behind Insider Attack
  • Common Attacks carried out by Insiders
  • Techniques Used for Corporate Espionage
  • Process of Hacking
  • Facts
  • Key Findings from U.S Secret Service and CERT Coordination Center/SEI study on Insider Threat
  • Tools & Countermeasures

Module 49: Creating Security Policies

  • Key Elements of Security Policy
  • Defining the Purpose and Goals of Security Policy
  • Role of Security Policy
  • Classification of Security Policy
  • Design of Security Policy
  • Contents of Security Policy
  • Configurations of Security Policy
  • Implementing Security Policies
  • Types of Security Policies

Module 50: Software Piracy and Warez

  • Software Activation: Introduction
  • Process of Software Activation
  • Piracy
  • Impacts of piracy
  • Piracy Blocking
  • Warez

Module 51: Hacking and Cheating Online Games

  • Basics of Game Hacking
  • Threats in Online Gaming
  • Cheating in Online Computer Games
  • Types of Exploits
  • Stealing Online Game Passwords
  • Best Practices for Secure Online Gaming

Module 52: Hacking RSS and Atom

  • Areas Where RSS and Atom is Used
  • Building a Feed Aggregator
  • Routing Feeds to the Email Inbox
  • Monitoring the Server with Feeds
  • Tracking Changes in Open Source Projects
  • Risks by Zone
  • Reader Specific Risks
  • Utilizing the Web Feeds Vulnerabilities

Module 53: Hacking Web Browsers (Firefox, IE)

  • Introduction
  • How Web Browsers Work
  • Protocols for an URL
  • Hacking Firefox, IE, Opera, Safari, and Netscape
  • Securing Firefox, IE, Opera, Safari, and Netscape

Module 54: Proxy Server Technologies

  • Working of Proxy Server
  • Types of Proxy Server
  • Use of Proxies for Attack
  • How Does MultiProxy Work
  • Tools

Module 55: Data Loss Prevention

  • Causes of Data Loss
  • How to Prevent Data Loss
  • Impact Assessment for Data Loss Prevention
  • Tools

Module 56: Hacking Global Positioning System (GPS)

  • Terminologies
  • Manufacturers
  • Gpsd-GPS Service Daemon
  • Sharing Waypoints
  • Wardriving
  • Areas of Concern
  • Sources of GPS Signal Errors
  • Methods to Mitigate Signal Loss
  • GPS Secrets
  • Hard Reset/ Soft Reset
  • Firmware Hacking
  • GPS Security Guard Functions
  • UberTracker

Module 57: Computer Forensics and Incident Handling

  • Computer Forensics
  • Incident Handling
  • Incident Management
  • Why don’t Organizations Report Computer Crimes
  • Estimating Cost of an Incident
  • Whom to Report an Incident
  • Vulnerability Resources
  • What is CSIRT

Module 58: Credit Card Frauds

  • E-Crime
  • Statistics
  • Credit Card Generators
  • Credit Card Fraud Detection
  • Best Practices

Module 59: How to Steal Passwords

  • Password Stealing Techniques
  • Password Stealing Trojans
  • Password Stealing Tools
  • Recommendations for Improving Password Security
  • Best Practices

Module 60: Firewall Technologies

  • Hardware Firewalls
  • Software Firewalls
  • Windows Firewalls
  • Linux Firewalls
  • Mac OS X Firewalls

Module 61: Threats and Countermeasures

  • Domain Level Policies
  • Password Policies
  • Account Lockout
  • Enforce User Logon Restrictions
  • Maximum Lifetime for Service Ticket
  • Maximum Tolerance for Computer Clock Synchronization
  • Audit Policy
  • User Rights
  • Event Log

Module 62: Case Studies

Module 63: Botnets

Module 64: Economic Espionage

Module 65: Patch Management

Module 66: Security Convergence

Module 67: Identifying the Terrorist

For a more in-depth course outline, please visit EC-Council's full course outline.

*Content, days, and times vary depending on your location. Please view the outline prior to purchase or contact the local center for more information.