Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Introduction
- Overview of Kali Linux.
- Installing and configuring Kali Linux.
- Using and updating Kali Linux.
Penetration Testing Standards and Classification
- Open Web Application Security Project (OWASP).
- Licencee Penetration Testing (LPT).
- White box and black box testing.
- Penetration testing vs. vulnerability assessment.
Advanced Penetration Methodology
- Target framework and scope definition.
- Gathering client requirements.
- Checklist for test plan.
- Profiling test boundaries.
- Advanced penetration testing using Kali Linux.
Information Discovery
- Hacking Google.
- Gathering DNS and WHOIS information.
- Gathering route and network information.
- Gathering all-in-one information.
Scanning and Enumerating Target
- Advanced network scanning.
- Port and UDP port scanning.
- Stealth port scanning techniques.
- Packet crafting with Hping.
- Nmap scanning and plugins.
- Active and passive banners and system OS enumeration.
- Enumerating users, groups, and shares.
- Enumerating DNS resource records and network devices.
Vulnerability Assessment Tools
- Nessus.
- OpenVAS.
Target Exploitation
- Setting up Metasploit.
- Exploitation with Metasploit.
- Meterpreter session.
- VNC exploitation.
- Stealing password hash.
- Adding custom modules to Metasploit.
- Using Immunity Debugger.
- Writing exploit.
Privilege Escalation and Access Maintenance
- Breaking password hash.
- Cracking telnet, SSH, and FTP passwords.
- Using Metasploit post-exploitation modules.
- Protocol tunneling.
- Proxy.
- Installing persistent backdoor.
Advanced Sniffing
- ARP poisoning.
- DHCP starvation.
- MAC flooding.
- DNS poisoning.
- Sniffing credentials from a secured website.
DoS Attack
- SYN attack.
- Application request flood attack.
- Service request flood.
- Service attack permanent denial.
Penetration Testing
- Web penetration testing.
- Wireless penetration testing.
Exploitation and Client Side Attack
- Exploiting browser vulnerability.
- Buffer overflow.
- Fuzzing.
- Fast-track hacking.
- Phishing passwords.
- Generating backdoors.
- Java applet attack.
Firewall Testing
- Firewall overview.
- Testing firewall and ports.
- Rules of testing firewall.
Management and Reporting
- Documentation and results verification.
- Dradis framework.
- MagikTree and Maltego.
- Data collection and evidence management.
- Report types and presentation.
- Post-testing procedure.
Summary and Next Steps
Requirements
- Basic knowledge of using Kali Linux for penetration testing.
- Foundational understanding of Linux/Unix operating systems and networking concepts.
- Understanding of network vulnerabilities.
Audience
- Ethical hackers.
- Penetration testers.
- Security engineers.
- IT professionals.
21 Hours
