Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
How to Test Network and Service Security
- What is penetration testing?
- Penetration testing vs. audit – similarities, differences, and what is appropriate?
- Practical challenges – what can go wrong?
- Scope of tests – what do we want to check?
- Sources of best practices and recommendations.
Penetration Testing – Reconnaissance
- OSINT – acquiring information from public sources.
- Passive and active methods of network traffic analysis.
- Identification of services and network topology.
- Security systems (firewalls, IPS/IDS, WAF, etc.) and their impact on testing.
Penetration Testing – Vulnerability Discovery
- System and version identification.
- Finding vulnerabilities in systems, infrastructure, and applications.
- Vulnerability assessment – "does it hurt?"
- Exploit sources and customization possibilities.
Penetration Testing – Attack and Taking Control
- Types of attacks – how they are conducted and their consequences.
- Attacks using remote and local exploits.
- Attacks on network infrastructure.
- Reverse shell – managing a compromised system.
- Privilege escalation – how to become an administrator.
- Ready-made "hacking tools."
- Analyzing a compromised system – interesting files, saved passwords, private data.
- Special cases: web applications, WiFi networks.
- Social engineering – how to "break" a person if system attacks fail.
Penetration Testing – Covering Tracks and Maintaining Access
- Logging systems and activity monitoring.
- Cleaning logs and covering tracks.
- Backdoor – leaving an open entry point.
Penetration Testing – Summary
- Report preparation and structure.
- Report delivery and consultation.
- Verification of recommendation implementation.
Requirements
- Familiarity with basic networking concepts (IP addressing, Ethernet, core services – DNS, DHCP) and operating systems.
- Knowledge of Windows and Linux (basic administration, system terminal).
Target Audience
- Personnel responsible for network and service security;
- Network and system administrators wishing to learn security testing methods;
- Anyone interested in the subject.
28 Hours
