Foundstone Essentials of Hacking Training Class

Day 1 - Setting the Foundation

Set the foundation in which penetration tests are performed by thoroughly
understanding the target network and how to extract critical information that
will be used to exploit vulnerabilities.

1. Security Foundations

• Security Principles


• CIA


• Ethics and Legality


• The Ethical Hacker


• Penetration Testing / Methodology


• Social Engineering


• Physical Security

2. Internet Footprinting

• Reviewing publicly available information


• Network and domain enumeration


• "whois" and ARIN lookups


• DNS Interrogation


• Network reconnaissance

3. Scanning/Landscape Discovery

• Ping sweeps


• Port scanning


• Banner grabbing


• OS guessing

Day 2 - Operating Systems Security

Day two focuses on attacking and securing the Windows and UNIX operating
systems. Incorporating best practices recommendations, student labs and
exercises allow you to put your new skills to the test.

1. Windows security overview

2. Attacking Windows systems

• Null sessions


• Windows Enumeration


• NT passwords


• Password guessing


• Password sniffing


• Password cracking


• Vulnerable windows services


• Gaining interactive access (psexec)

3. Securing Windows systems

• NSA Guidelines


• Microsoft Recommendations


• Industry Best Practices

4. UNIX security overview

5. Attacking UNIX systems

• UNIX systems enumeration


• UNIX hacking platforms


• Passwords


• Privilege escalation attacks / Buffer Overflows


• X-Windows security


• Rootkits

6. Securing UNIX systems

• NSA Guidelines


• NIST security guide


• Industry best practices

Day 3 - Web and Network Security

Day three begins with assessing and securing web applications, which have
become the prime target for many attacks. The second half of the day focuses on
network security including IDS and IPS systems.

1. Web Security

• E-commerce primer


• Information gathering


• Web security scanners


• Viewing source


• SQL Injection


• File system traversal


• Input validation


• OWASP Top Ten

2. Network Security

• Router security


• Port redirection


• Network sniffing


• Sniffing switched networks (Ettercap)


• Session Hijacking


• DDOS


• Honeypots


• Network Monitoring


• Intrusion Detection Systems


• Intrusion Prevention Systems

Day 4 -Incident Response and Security Grab Bag

On day four, you'll learn to prepare for and respond to security incidents.
Malware, spyware, and cryptography topics are covered, and the day concludes
with a "capture the flaglab, which challenges you to use everything you
have learned to fully compromise a real-world network.

1. Incident Response

• Preparation


• Initial Response Tactics


• Incident Management


• Forensics


• Tools Analysis

2. Cryptography

• SSH


• SSL


• RSA


• PGP


• Encryption Best Practices

3. Malware

• Backdoors


• Trojans


• Zombies and bots


• Keystroke loggers


• Spyware

If you are a system and network administrator, security personnel, an auditor,
and/or consulta