-
HKLC
 - Joined on 12-18-2008
- Posts 487,838
- Points 1,799,435
|
Career Academy - Hacking Penetration Testing and Countermeas
| Code: |
Career Academy - Hacking Penetration Testing and Countermeasures Training
=========================================================================
These training videos will show you how to scan, test, hack and secure your
own systems. The intensive demonstrations give each student in-depth knowledge
and practical experience with the current security systems. You will begin by
understanding how perimeter defenses work and then be lead into scanning and
attacking your own networks. You will then learn how intruders escalate
privileges and what steps can be taken to secure a system. Students will also
learn about Penetration Testing and Countermeasures, Intrusion Detection,
Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus
Creation.
Module 01 - Ethical Hacking and Penetration Testing
---------------------------------------------------
Security 101
Hacking Hall of Fame
What are Today's hackers Like?
Today's Hackers
Risk Management
Evolution of Threats
Typical Vulnerability Life Cycle
What is Ethical Hacking?
Rise of the Ethical Hacker
Types of Security Test
Penetration Test (Pen-test)
Red Teams
Testing Methodology
VMWare Workstation
Windows and Linux Running VMWare
Linux Is a Must
Linux Survival Skills
Useful vi Editor Commands
Module 1 Review
Module 02 - Footprinting and Reconnaissance
-------------------------------------------
Desired Information
Find Information by the Target (Edgar)
terraserver.microsoft.com
Network Reconnaissance & DNS Search
Query Whois Databases
Command-Line Whois Searches
ARIN whois: Search IP Address Blocks
SamSpade Tool and Website
Internet Presence
Look Through Source Code
Mirror Website
Find Specific Types of Systems
Big Brother
AltaVista
Specific Data Being Available?
Anonymizers
Countermeasures to Information Leakage
Social Engineering
DNS Zone Transfer
Nslookup command-line utility
Zone Transfer from Linux
Automated Zone Transfers
Zone Transfer Countermeasures
www.CheckDNS.net
Tracing Out a Network Path
tracert Output
Free Tools
Paratrace
War Dialing for Hanging Modems
Manual and Automated War Dialing
Case Study
www.guidedogs.com
Footprinting Countermeasures
Demo - Footprinting & Info Gathering
Module 2 Review
Module 03 - TCP/IP Basics and Scanning
--------------------------------------
The OSI Model
TCP/IP Protocol Suite Layers
Encapsulation
Data-Link Protocols
IP - Internet Protocol, Datagram (Packet)
ICMP Packets
UDP � User Datagram Protocol
UDP Datagram
TCP � Transmission Control Protocol
TCP Segment
TCP/IP 3-Way Handshake and Flags
TCP and UDP Ports
Ping Sweeps
Good Old Ping, Nmap, TCP Ping Sweep
TCP Sweep Traffic Captured
Unix Pinging Utilities
Default TTLs
Pinging Countermeasures
Port Scanning
Nmap
Advanced Probing Techniques
Scanrand
Port Probing Countermeasures
Watch Your Own Ports
Demo - Scanning Tools
Module 3 Review
Module 04 - Enumeration and Verification
----------------------------------------
Operating System Identification
Differences Between OS TCP/IP Stack
Nmap -O
Active vs Passive Fingerprinting
Xprobe/Xprobe2
Countermeasures
SNMP Overview
SNMP Enumeration
SMTP, Finger, and E-mail Aliases
Gleaning Information from SMTP
SMTP E-mail Alias Enumeration
SMTP Enumeration Countermeasures
CIFS/SMB
Attack Methodology
Find Domains and Computers
NetBIOS Data
NBTscan
NULL Session
Local and Domain Users
Find Shares with net view
enum: the All-in-one
Winfo and NTInfoScan (ntis.exe)
Digging in the Registry
NetBIOS Attack Summary
NetBIOS Countermeasures
What�s this SID Thing Anyway?
Common SIDs and RIDs
whoami
RestrictAnonymous
USER2SID/SID2USER
psgetsid.exe and UserDump Tool
LDAP and Active Directory
GUI Tools to Perform the Same Actions
Demo - Enumeration
Module 4 Review
Module 05 - Hacking & Defending Wireless/Modems
-----------------------------------------------
Phone Numbers & Modem Background
Phone Reconnaissance
Modem Attacks
Wireless Reconnaissance
Wireless Background
Wireless Reconnaissance Continued
Wireless Sniffing
Cracking WEP Keys
Defending Wireless
Module 5 Review
Module 06 - Hacking & Defending Web Servers
-------------------------------------------
Web Servers in General: HTTP
Uniform Resource Locator: URL
Apache Web Server Functionality
Apache: Attacking Mis-configurations
Apache: Attacking Known Vulnerabilities
Defending Apache Web Server
Microsoft Internet Information Server (IIS)
IIS: Security Features
IIS: Attacking General Problems
IIS: IUSER or IWAM Level Access
IIS: Administrator or Sys Level Access
IIS: Clearing IIS Logs
IIS: Defending and Countermeasures
Web Server Vulnerability Scanners
Demo - Hacking Web Servers
Module 6 Review
Module 07 - Hacking & Defending Web Applications
------------------------------------------------
Background on Web Threat & Design
Basic Infrastructure Information
Information Leaks on Web Pages
Hacking over SSL
Use the Source, Luke�
Functional/Logic Testing
Attacking Authentication
Attacking Authorization
Debug Proxies: @stake webproxy
Input Validation Attacks
Attacking Session State
Attacking Web Clients
Cross-Site Scripting (XSS) Threats
Defending Web Applications
Module 7 Review
Module 08 - Sniffers and Session Hijacking
------------------------------------------
Sniffers
Why Are Sniffers so Dangerous?
Collision & Broadcast Domains
VLANs and Layer-3 Segmentation
tcpdump & WinDump
Berkley Packet Filter (BPF)
Libpcap & WinPcap
BUTTSniffing Tool and dSniff
Ethereal
Mitigation of Sniffer Attacks
Antisniff
ARP Poisoning
MAC Flooding
DNS and IP Spoofing
Session Hijacking
Sequence Numbers
Hunt
Ettercap
Source Routing
Hijack Countermeasures
Demo - Sniffers
Module 8 Review
Module 09 - Hacking & Defending Windows Systems
-----------------------------------------------
Physical Attacks
LANMan Hashes and Weaknesses
WinNT Hash and Weaknesses
Look for Guest, Temp, Joe Accounts
Direct Password Attacks
Before You Crack: Enum Tool
Finding More Account Information
Cracking Passwords
Grabbing the SAM
Crack the Obtained SAM
LSA Secrets and Trusts
Using the Newly Guessed Password
Bruteforcing Other Services
Operating System Attacks
Hiding Tracks: Clearing Logs
Hardening Windows Systems
Strong 3-Factor Authentication
Creating Strong Passwords
Authentication
Windows Account Lockouts
Auditing Passwords
File Permissions
Demo - Attacking Windows Systems
Module 9 Review
Module 10 - Hacking & Defending Unix Systems
--------------------------------------------
Physical Attacks on Linux
Password Cracking
Brute Force Password Attacks
Stack Operation
Race Condition Errors
Format String Errors
File System Attacks
Hiding Tracks
Single User Countermeasure
Strong Authentication
Single Sign-On Technologies
Account Lockouts
Shadow Password Files
Buffer Overflow Countermeasures
LPRng Countermeasures
Tight File Permissions
Hiding Tracks Countermeasures
Removing Unnecessary Applications
DoS Countermeasures
Hardening Scripts
Using SSH & VPNs to Prevent Sniffing
Demo - Attacking Unix Systems
Module 10 Review
Module 11 - Rootkits, Backdoors, Trojans & Tunnels
--------------------------------------------------
Types Of Rootkits
A Look at LRK
Examples of Trojaned Files
Windows NT Rootkits
NT Rootkit
AFX Windows Rootkit 2003
Rootkit Prevention Unix
Rootkit Prevention Windows
netcat
netcat: Useful Unix Commands
netcat: What it Looks Like
VNC-Virtual Network Computing
Backdoor Defenses
Trojans
Back Orifice 2000
NetBus
SubSeven
Defenses to Trojans
Tunneling
Loki
Other Tunnels
Q-2.4 by Mixter
Starting Up Malicious Code
Defenses Against Tunnels
Manually Deleting Logs
Tools to Modify Logs
Demo - Trojans
Module 11 Review
|
| Code: |
http://rapidshare.com/files/211495652/Module_2001_20-_20Ethical_20Hacking_20and_20Penetration_20Testing.iso.crc
http://rapidshare.com/files/211499673/Module_2001_20-_20Ethical_20Hacking_20and_20Penetration_20Testing.iso.001
http://rapidshare.com/files/211495878/Module_2001_20-_20Ethical_20Hacking_20and_20Penetration_20Testing.iso.002
http://rapidshare.com/files/211495657/Module_2002_20-_20Footprinting_20and_20Reconnaissance.iso.crc
http://rapidshare.com/files/211499286/Module_2002_20-_20Footprinting_20and_20Reconnaissance.iso.001
http://rapidshare.com/files/211496402/Module_2002_20-_20Footprinting_20and_20Reconnaissance.iso.002
http://rapidshare.com/files/211498060/Module_2003_20-_20TCP_20IP_20Basics_20and_20Scanning.iso
http://rapidshare.com/files/211495653/Module_2004_20-_20Enumeration_20and_20Verification.iso.crc
http://rapidshare.com/files/211499326/Module_2004_20-_20Enumeration_20and_20Verification.iso.001
http://rapidshare.com/files/211496416/Module_2004_20-_20Enumeration_20and_20Verification.iso.002
http://rapidshare.com/files/211494844/Module_2005_20-_20Defending_20Wireless_20Modems.iso
http://rapidshare.com/files/211495655/Module_2006_20-_20Hacking_20Defending_20Web_20Servers.iso.crc
http://rapidshare.com/files/211496214/Module_2006_20-_20Hacking_20Defending_20Web_20Servers.iso.001
http://rapidshare.com/files/211495682/Module_2006_20-_20Hacking_20Defending_20Web_20Servers.iso.002
http://rapidshare.com/files/211497185/Module_2007_20-_20Hacking_20Defending_20Web_20Applications.iso
http://rapidshare.com/files/211494724/Module_2008_20-_20Sniffers_20and_20Session_20Hijacking.iso
http://rapidshare.com/files/211490319/Module_2009_20-_20Hacking_20Defending_20Windows_20Systems.iso
http://rapidshare.com/files/211485925/Module_2010_20-_20Hacking_20Defending_20Unix_20Systems.iso
http://rapidshare.com/files/211482443/Module_2011_20-_20Rootkits_20Backdoors_20Trojans_20Tunnels.iso
http://rapidshare.com/files/211495331/kismac.zip
http://rapidshare.com/files/211495052/Ares_27_20Cracking_20Tutorial.zip
http://rapidshare.com/files/211494934/Watchmac.zip
http://rapidshare.com/files/211494931/proxifier1.1.6.zip
|
Link checked on Sun Mar 22, 2009 4:41 pm [WBB_Linkchecker_Bot] |
|
|
|
|
|
|