Penetration Testing and Ethical Hacking

Penetration Testing and Ethical Hacking

Contact Us | Register Now

Target Audience
The course is appropriate for both Novice and Experienced candidates under the following category:
 Web Testers
 Software Testers
 Software Developers
 Test Team Leads
 Information Security Consultants
 Test Engineers
 Quality Assurance Specialists
 Project Managers

The candidates must have Functional testing knowledge as well as a basic understanding of how applications work. No prior security testing experience is required.

Objectives
After the completion of the course, the participants would be able to:
 Have an understanding of web application security testing
 Identify why software security matters to their business
 Learn about the common web app vulnerabilities.
 Quickly Identify the riskiest areas of an application
 Report findings in a comprehensive manner in order to enable timely remediation

Outline

Topics
Introduction to Class
 Participants
 Familiarization with course material
 Familiarization with the protocols and timings
 Expectation setting and clarifications

Introduction to Ethical Hacking
 Foot printing and Reconnaissance
 System Hacking
 Server Fingerprinting
 Port Scanning
 Tools: HTTPrint, NMap, etc

Different types of malware
 Trojans and Backdoors
 Viruses and Worms

Other attacks
 Social Engineering
 Denial of Service

Introduction to Software Security
 Security in the System Development Lifecycle
 Thinking Like a Security Engineer
 Enumerating the Attack Surface

Standard Application Attack Vectors
 GET and POST
 Header
 Cookies
 Understanding the underlying protocols of the web
 Client server communications on the web (overview of HTTP requests and response)
 Adding session tracking to HTTP (the concept of sessions i.e. cookies, form based sessions etc)

Introduction to web app sec testing tools
 What are browser add-ons , firesheep, live http headers, tamper data
 What are web proxies burp, paros etc
 HTTP request interception and manipulation (including analysis of requests and
 Examining real HTTP requests/responses
 Session hijacking and session fixation.
 Insufficient Session Timeout
 Session Hijacking/Replaying (facebook) (demo)

Learn methods to discover various vulnerabilities
 Information leakage
 Command injection
 SQL injection
 Blind SQL injection
 Cross-Site Scripting (XSS)
 Cross-Site Request Forgery
 Session issues

Review of top web application vulnerabilities : (Hands on Exercise webgoat)
 Common Weaknesses
 Data Leakage Attacks
o Sniffing
o Path Traversal
o Parameter Tampering (Hands On!)
 Incorrect Resource Transfer between Spheres
o Bypassing Client-side Enforcement of Security
o Unrestricted File Upload
 Injection Attacks
o SQL Injection (Hands On!)
o Cross-site Scripting (XSS) (Hands On!)
o Session Riding/Cross-site Request Forgery (XSRF)

Introduction to Automated WebApp Testing tools
 IBM Rational AppScan
 Acunetix
 And many other automated open source Web app pen testing tools

Explore attack frameworks
 AttackAPI or
 BeEF or
 XSS-Proxy

Course Dates, Venue & Timings:

Sl.No. State City Batch1-Date Batch1-Date Batch2-Date Batch2-Date Batch3-Date Batch3-Date Batch4-Date Batch4-Date Venue Contact
01 AP Hyderabad - - 23-Apr'11 27-Apr'11 7-may'11 11-may'12 4-Jun’12 8-Jun’12 Ameerpet/Hightechcity Jason-91-40-64568797
02 Delhi Delhi/Gurgaon/Noida - - 28-Apr'12 29-Apr'12 26-May’12 27-May’12 23-Jun’12 24-Jun’12 Nehru place / Noida sector 6 Arun : 9810 328046
03 Karnataka Bangalore - - 5-May’12 6-May’12 26-MAY’12 27-May’12 2-June'12 3-June'12 DBS House 26, Cunningham Road ,Opp Indian Express Building, Bangalore - 560 052 Sundar Raj
04 Maharashtra Mumbai - - 21-Apr’12 22-Apr’12 19-May’12 20-May’12 16-Jun’12 17-Jun’12 DBS Heritage,Prescot Road,Opp. Cathedral Sr. School,Fort, Mumbai 400001. DBS Heritage (From Airport instruct the car / cab driver to drive to Fort, Fashion Street. It’s near Siddharth College, Budha Bhavan. Also there are schools like J. P. Pettit School & Cathedral Sr. School Mr.Vasudev
05 Maharashtra Pune 19-May'12 20-May'12 - - - - 30-Jun'12 1-Jul'12 Level-5, Tech Park-1, Airport Road, Yerwada, Pune - 411 006, India Mr.Manish
06 Tamilnadu Chennai - - 14-Apr'12 15-Apr'12 12-MAY'12 13-MAY'12 9-Jun’12 10-Jun’12 DBS House 31A, Cathedral Garden Rd ,Between Hotel Palmgrove and Valluvarkottam Nugambakkam,Chennai - 600034 Mr.Solomon
07 Westbengal Kolkata - - 30-Apr'12 1-May'12 30-May'12 31-May'12 30-Jun'12 1-Jul'12 DBS House 10/2, Hungerford Street,Opp. Exit Gate of Saturday Club,Kolkata - 700017 Mr.Sandeep
08 Kerala Trivandrum - - 30-Apr'12 1-May'12 30-May'12 31-May'12 30-Jun'12 1-Jul'12 DBS center Mr.Manoj
09 Kerala Cochin - - 30-Apr'12 1-May'12 30-May'12 31-May'12 30-Jun'12 1-Jul'12 ThomasMount ,ICTA Building,Changampuzha Nagar P.O.,Cochin- 682 033 Mr.Manoj: 9995881093
10 Tamilnadu Coimbatore - - - - 30-May'12 31-May'12 30-Jun'12 1-Jul'12 DBS Center Mr.Balaji
11 Maharashtra NAGPUR - - - - 30-May'12 31-May'12 30-Jun'12 1-Jul'12 DBS House Mr.Yogesh -9890952752
12 Gujarat Ahmedabad 16-Apr'12 17-Apr'12 - - - - 30-Jun'12 1-Jul'12 Aakruti Complex,Nr. Stadium Cross Road, Navrangpura,Ahmedabad-380009, Gujarat, INDIA Mr.Alok
13 Africa Johannesburg 29-MAY'12 31-MAY'12 - - - - - - Johannesburg,Africa Mr.Kamanbedu
14 Brazil São Paulo 26-JUN'12 28-JUN'12 - - - - - - Rua Rosa e Silva, No. 137, Apt - 4,Santa Cecilia,São Paulo, Brazil. CEP - 01230-020 Mr.Abhishek Ph - (55) - (11) - 87154930
15 Philippines Manila 24-JUL'12 26-JUL'12 - - - - - - Makati ,Philippines Mr.Sandeep : (+63)-917-872-3931
16 Nepal Khatmandu 28-AUG'12 30-AUG'12 - - - - - - Khatmandu Mr.ARun
17 Republic of Mauritius mauritius 25-SEPT'12 27-SEPT'12 - - - - - - mauritius Mr.ARun
18 Srilanka Colombo 1-MAY'12 3-MAY'12 - - - - - - Colombo,Srilanka Ms.Buddhini
19 Canada Toronto 23-OCT'12 25-OCT'12 - - - - - - 203 Royal Appian Cres, Concord ON 14K513 Mrs.Vala Ph.4169391252
20 USA Boston 16-Apr'12 17-Apr'12 - - - - - - Boston,USA Mr.Gaurav
21 UK London 21-DEC'12 23-DEC'12 - - - - - - London,UK Mr. BV Rao -0044-7891461544
22 USA California 16-Apr'12 17-Apr'12 - - - - - - 12128 Skylark Rd Clarksburg MD 20871 California ,USA Mr.Prashanth Ph : 001 - 240-257-2624
23 Bangladesh Dhaka 27-NOV'12 29-NOV'12 - - - - - - Dhaka Mr.Arun
24 ARMENIA GEORGIA 8-MAY'12 10-MAY'12 - - - - - - TIBLISI,Armenia Mr.Abata
25 Honkong Honkong 27-NOV'12 29-NOV'12 - - - - - - Honkong Mr.Peter
25 SAUDIARABIA RIYADH 28-MAY'12 30-MAY'12 - - - - - - RIYADH Mr.Rasheed 96626860652

Contact :vijay Cell:0-94400 89341

Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License