TN-515: Implementing Cybersecurity and Information Assurance Methodologies

  

Course Overview: 

Learn to protect yourself and your company against hackers, by learning their tools and techniques, and then testing your network.  This course is heavily based on Kali and primarily on Metasploit.  In TN-515: Implementing Cybersecurity and Information Assurance Methodologies class you will learn the step by step process that hackers use to assess your enterprise network, probe it & hack into it, utilizing a mixed-platform target environment including Windows, Linux, Solaris, and Cisco.  This course is 90% hacking, but  defenses for demonstrated hacks will be discussed.  If you want to know the ins and outs of the hacks presented in this course, then this is the course for you.

Attendees to TN-515: Implementing Cybersecurity and Information Assurance Methodologies Class Attendees will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

  • Introduction to Pen Testing using the PTES model
  • Metasploit Basics
    • MSFconsole, MSFcli, Armitage, MSFpayload, MSFencode, NasmShell
  • Intelligence Gathering
    • Nmap, Databases in Metasploit, Port Scanning with Metasploit
  • Quick Intro to Ruby
    • Writing a simple Ruby script to create a custom scanner
  • Vulnerability Scanning
    • Importing Nessus Results
    • Scanning with Nessus from Within Metasploit
  • Exploitation
    • Using the Metasploit Framework and console to exploit
  • Meterpreter
    • Compromising a Windows System
    • Attacking MS SQL, xp_cmdshell
    • Dumping Usernames and Passwords, extracting and dumping hashes
    • Pass the Hash and Token Impersonation
    • Pivoting
    • Railgun
    • Using Meterpreter Scripts: Migrating a process, Killing AV, Persistence
  • Avoiding Detection
    • Creating Stand-Alone Binaries with MSFpayload
    • Encoding with MSFencode and Packers (go Green Bay:)
  • Exploitation Using Client Side Attacks
    • Introduction to Immunity Debugger
    • Using Immunity Debugger to Decipher NOP Shellcode
  • Metasploit Auxiliary Modules
  • Social Engineer Toolkit (SET)
    • Spear-Phishing, Web Attack
    • Creating a Multipronged Attack
  • Creating Your Own Module
    • Adapt an existing Module
    • Add some PowerShell and Run the Exploit
  • Meterpreter Scripting
  • Capture The Flag Exercise

Prerequisites:

  • This is an advanced  Cybersecurity and Information Assurance Course which requires basic Windows & UNIX competency
  • Certification or 2 years of experience in these operating systems is highly recommended
  • An understanding of TCP/IP

Comments

Latest comments from students

  

Liked the class?  Then let everyone know!

Contact Us

    After you press "Request Information" near the bottom of this form, within 30 seconds, status will be provided at the bottom of the form

    Tech Now can provide on-site training anywhere in the world. We'll customize a training package to meet your needs!

    First Name*

    Last Name*

    Your Email*

    Your Company*

    Your State*

    Area of Interest

    Phone

    Questions:

    After you press "Request Information" on this form, within 30 seconds, status will be provided at the bottom of the form

    from page:

    in   

    TN-345: Python for Penetration Testers

     

    Course Overview:

     

    This Python for Penetration Testing course is designed to give you the skills you need for maintaining or developing Python Penetration Testing tools oriented towards offensive operations.  We have a suite of courses and certifications that help  understand a problem, this course prepares the student to rapidly develop prototype code to attack or defend against it.

    The course concludes with a Capture the Flag event that will test both your ability to apply your new tools and coding skills in a Python Penetration Testing challenge.

    This course is not intended to be an Advanced Python course, but to exemplify penetration techniques utilizing Python.  The course covers Threading, Sockets, OOP, and third party modules that facilitate the offensive operator’s objective.

    This course utilizes the “Violent Python” text book.

    Attendees to TN-345: Python for Penetration Testers Class will receive TechNow approved course materials and expert instruction.

    Dates/Locations:

    No Events

    Duration: 3 Days

    Course Objectives:

    • Python Lanuage Refress
    • Network Sockets
    • Exception Handling
    • Hashes and Cracking Passwords
    • Threading
      • Concepts and Python Implementation
      • Queues and Synchronization
      • urlparse and httplib to probe URLs
      • Crack a password protected zip file
    • Port Scanner
      • Threading a Port Scanner
    • nmap integration
    • Deploying shellcode
    • Mechanize, BeautifulSoup
      • HTTP Form Password Guessing
      • HTTP Proxies (Burp Suite)
      • HTTP Cookies Session Hijacking
        • CookieMonster
    • Images and Metadata
    • Justniffer
    • SQL Injection
      • sqlmap
      • SQLBrute
    • Antivirus and IDS evasion
      • PyInstaller
      • Metasploit
    • Scapy
      • Deploy shellcode
      • DNS Cache Poisoning
      • Packety Violence

    Prerequisites:

    Comments

    Latest comments from students

      

    Liked the class?  Then let everyone know!

    Hardware, Software, and Consulting

    TechNow Provides Integrated Solutions

    TechNow delivers enterprise hardware, software, and consulting that implements technologies in the areas of virtualization, IP telephony, open source systems, or security.  If your company is interested in the benefits of cost effective and secure hardware, software and consulting solutions, please contact us for further information.

    TechNow Virtualization Solutions:  TechNow delivers virtualization solutions in several virtualization stacks: Microsoft HyperV, Oracle VM, and VMware.  TechNow integrates open system RAID NAS storage solutions that enable high availability solutions for all stacks.  High performance I/O is critical to virtualized solutions and TechNow delivers the hardware, software, and consulting to make that happen. Mission critical environment and optimized for be both scalable and secure.  If you are interested in purchasing a virtualization solution please contact TechNow to setup an appointed to discuss your requirements.

    TechNow VoIP Solutions:   TechNow  delivers VoIP affordable solutions utilizing SIP and integrating desktop softphones, physical handset phones, iPad/iPod clients, cell phones, web status, email, voicemail, extisting landlines, and VoIP SIP Trunks.  There are many marketing terms for highly integrated solutions, the term our product is "Great".  If you are interested in purchasing a VoIP solution please contact TechNow to setup an appointed to discuss your requirements.

    TechNow Security Solutions:   TechNow delivers security solutions that are enterprise centric.  As organizations grapple with managing security in their infrastructure, TechNow can architect, deliver, and implement  hardware, software, and consulting required to insure a responsive and integrated approach to infastructure security.

    in