In this advanced course, you will test and develop your skills with the latest knowledge and weapons to defend against sophisticated attacks while discovering how to safeguard your organization's critical information assets. Taught by a select group of industry-leading consultants, this course is the most advanced penetration testing course available today.

What You'll Learn

• How to effectively monitor the network for inappropriate behavior
• Intrusion detection techniques and how to implement an Intrusion Detection System (IDS)
• Network reconnaissance techniques
• Advanced attack and defense strategies
• Capabilities of advanced hackers
• Common misconfigurations to avoid
• Techniques to bypass firewalls, anti-virus, and IDS
• SQL injection, XSS techniques, and CSRF detection and exploitation
• How to identify and exploit buffer overflows

Who Needs to Attend

For experienced security administrators, security auditors, and/or security consultants.

Prerequisites

Advanced UNIX and Windows competency is required for the course to be fully beneficial.

Follow-On Courses

• Foundstone Ultimate Hacking: Web
• Foundstone Ultimate Hacking: Wireless
• Foundstone Forensics & Incident Response
• Foundstone Building Secure Software

Course Outline

1. Network Monitoring

• The Case for Monitoring and Detection
• Advanced Usage of Network Monitoring Tools
• Analyzing Full-Content and Session Data
• Implementing an Intrusion Detection System (IDS)
• Advanced Features and Analysis of Snort

2. Illicit Monitoring

• ARP
• Intercepting and Monitoring Popular Protocols
• Sniffing in a Switched Environment
• Creating Customer Man-in-the-Middle Attacks
• Man-in-the-Middle Methods
• Countermeasures
• Common Tools and Techniques

3. Network Reconnaissance

• Exploration of the Most Popular Tools
• Creating Custom Reconnaissance Scripts
• Scanning Methodology
• Scanning Efficiently
• Advanced OS and Service Identification
• Countermeasures
• Advanced Port Scanning Techniques

4. Pen Testing with Metasploit

• Exploitation
• Payloads and Post Exploitation
• Avoiding Detection
• Advanced Features of Metasploit
• Tracking Progress
• Extending Metasploit
• Enumeration
• Countermeasures
• Brute Force Attacks

5. Advanced Web Hacking

• SQL Injection
• Advanced Topics in SQL Interjection
• Cross-Site Scripting (XSS)
• Advanced XSS
• XSS Frameworks
• Cross-Site Request Forgery (CRSF)
• Countermeasures

6. Database Hacking

• Database Discovery and Service Enumeration
• Common Misconfigurations
• Database Content Enumeration
• Analysis of MSSQL Stored (and Extended Stored) Procedures
• OS Interaction Through the Database (Shovel the Shell)
• Countermeasures

7. Windows Rootkits and Memory Analysis

• Rootkit
• Using Rootkits
• Windows Memory Analysis
• Detecting and Removing Windows Rootkits
• Countermeasures

8. Code-Based Vulnerabilities

• Foundational Study of Computer Architecture, Memory, and Data Structures
• Static Code Analysis
• Using Debuggers to Discover Potential Vulnerabilities
• Creating Buffer Overflow Exploits
• Types of Code-Based Vulnerabilities
• Countermeasures

Labs

All topics are supported by hands-on exercises and labs specifically designed to increase knowledge retention. Classroom exercises provide the extensive hands-on experience needed to effectively identify, exploit, and secure complicated and obscure vulnerabilities in the network, applications, and Windows and Unix systems.