TN-425: Certified Offensive AI Security Professional (C|OASP)

Certified Offensive AI Security Professional (COASP) validates the competencies required for practitioners who need to demonstrate offensive AI security skills, emulating adversaries, validating defenses, and leading red-team/blue-team exercises to keep AI resilient, reliable, and auditable

The Certified Offensive AI Security Professional (COASP) equips you to identify and neutralize AI-specific threats before attackers do. And Bridges security, engineering, and data science so controls exist across the full AI life cycle.

Participants will gain hands-on experience to perform end-to-end adversarial testing and deliver defensive validation evidence including the ability to simulate adversarial AI kill chains, Harden AI architectures by secure system prompts, context windows, tool integrations, RAG pipelines, and agent memory, Conducting AI security assessments aligned to MITRE ATLAS, OWASP LLM/ML Top 10, NIST AI RMF, and DoD Test & Evaluation practices , This course covers how to build SOC-ready capabilities for AI-focused detection logic, incident playbooks, and forensic procedures , & how to execute prompt injection, adversarial prompting , Assess AI supply-chain risk , Implement defensive engineering controls and Produce assurance and compliance artifacts.

By the end of the course, learners will be well-prepared to take the Certified Offensive AI Security Professional (COASP) exam and demonstrate the ability to exploit vulnerabilities in LLMs and agents, and build defense that survive real world attacks, learners will master offensive techniques that break AI before the attackers do.

 

Course Outline: 

01. Offensive AI and AI System Hacking Methodology

02. AI Reconnaissance and Attack Surface Mapping

03. AI Vulnerability Scanning and Fuzzing

04. Prompt Injection and LLM Application Attacks

05. Adversarial Machine Learning and Model Privacy Attacks

06. Data and Training Pipeline Attacks

07. Agentic AI and Model-to-Model Attacks

08. AI Infrastructure and Supply Chain Attacks

09. AI Security Testing, Evaluation, and Hardening

10. AI Incident Response and Forensics 

 

Prerequisites: 

TN-412: Artificial Intelligence Essentials (AI|E) 

 

Dates/Locations:

No Events

Contact Us

    After you press "Request Information" near the bottom of this form, within 30 seconds, status will be provided at the bottom of the form

    Tech Now can provide on-site training anywhere in the world. We'll customize a training package to meet your needs!

    First Name*

    Last Name*

    Your Email*

    Your Company*

    Your State*

    Area of Interest

    Phone

    Questions:

    After you press "Request Information" on this form, within 30 seconds, status will be provided at the bottom of the form

    from page:

    in   

    TN-565: Nessus Vulnerability & Compliance Auditing

    Course Overview:

    This course provides security professionals with the skills and knowledge to perform vulnerability and compliance scanning of supported operating systems, devices, and applications. Students will construct custom scan policies for topology discovery, network vulnerability detection, credentialed patch audits, and compliance benchmarks, and discuss the underlying technologies utilized by the Nessus scanner.

    This course provides students with the necessary information to prepare for the Tenable Certified Nessus Auditor (TCNA) exam.

    Date/Locations:

    No Events

    Duration: 5 days

    Course Objectives:

    • Introduction to Nessus and Vulnerability Scanning
    • Nessus Installation and Administration
    • Basic Nessus Scan Operation
    • Nessus Scan Configuration and Policy Creation
    • Vulnerability Analysis and Reporting with Nessus
    • Advanced Scan Configuration and Policy Creation
    • Introduction to Compliance and Auditing
    • Nessus Auditing Features
    • Windows System Auditing
    • Unix System Auditing
    • Cisco IOS Auditing
    • Nessus Database Auditing
    • Nessus Content Auditing
    • Auditing to Industry Guidelines
    • Auditing to Federal Guidelines

    Prerequisites:

    Students should possess a basic understanding of TCP/IP networking, operating systems security, and common client/server applications.

    Comments

    Latest comments from students

    Liked the class?  Then let everyone know!

    TN-345: Python for Penetration Testers

     

    Course Overview:

     

    This Python for Penetration Testing course is designed to give you the skills you need for maintaining or developing Python Penetration Testing tools oriented towards offensive operations.  We have a suite of courses and certifications that help  understand a problem, this course prepares the student to rapidly develop prototype code to attack or defend against it.

    The course concludes with a Capture the Flag event that will test both your ability to apply your new tools and coding skills in a Python Penetration Testing challenge.

    This course is not intended to be an Advanced Python course, but to exemplify penetration techniques utilizing Python.  The course covers Threading, Sockets, OOP, and third party modules that facilitate the offensive operator’s objective.

    This course utilizes the “Violent Python” text book.

    Attendees to TN-345: Python for Penetration Testers Class will receive TechNow approved course materials and expert instruction.

    Dates/Locations:

    No Events

    Duration: 3 Days

    Course Objectives:

    • Python Lanuage Refress
    • Network Sockets
    • Exception Handling
    • Hashes and Cracking Passwords
    • Threading
      • Concepts and Python Implementation
      • Queues and Synchronization
      • urlparse and httplib to probe URLs
      • Crack a password protected zip file
    • Port Scanner
      • Threading a Port Scanner
    • nmap integration
    • Deploying shellcode
    • Mechanize, BeautifulSoup
      • HTTP Form Password Guessing
      • HTTP Proxies (Burp Suite)
      • HTTP Cookies Session Hijacking
        • CookieMonster
    • Images and Metadata
    • Justniffer
    • SQL Injection
      • sqlmap
      • SQLBrute
    • Antivirus and IDS evasion
      • PyInstaller
      • Metasploit
    • Scapy
      • Deploy shellcode
      • DNS Cache Poisoning
      • Packety Violence

    Prerequisites:

    Comments

    Latest comments from students

      

    Liked the class?  Then let everyone know!

    CL-355: Containers, Kubernetes, and Red Hat OpenShift Administration

     

    Course Overview:

    Through an introduction to Docker, Kubernetes, and Red Hat OpenShift Platform, this training course helps you understand one of the key tenets of the DevOps and DevSecOps Platform (DSOP) movement: continuous integration and continuous deployment. The CI/CD pipeline becomes well understood and implemented in an open architecture.  Containers have become a key technology for the configuration and deployment of applications and micro services. Kubernetes is a container orchestration platform that provides foundational services in Red Hat OpenShift Container Platform, which allows enterprises to manage container deployments and scale their applications using Kubernetes.

    This training course provides an overview of the DoD Enterprise DevSecOps Platform (DSOP) Reference Design, its current state, and ties to DoD Cloud Platform One (P1). Workflows of the DoD Iron Bank container repository are introduced, along with an overview of the DoD Pipeline as represented in Big Bang.  Continuous authorization cATO via Party Bus within NIST RMF is presented. You will become aware of the Platform One (P1) integrations and relationship to Docker, Kubernetes, Istio (Red Hat OpenShift Service Mesh) and Red Hat OpenShift Platform.

    In addition to gaining an understanding of these tools, you will build core administration skills through the installation, configuration, and management of an OpenShift cluster and containerized applications.

    Course Objectives:

    • Learn about Containers, Docker, Kubernetes, and OpenShift architecture
    • Overview DoD Enterprise DevSecOps Platform (DSOP) Reference Design and DoD Cloud Platform One (P1)
    • Tie together awareness of various DoD Cloud offerings and their relationships
    • Create containerized services
    • Manage containers and container images
    • Deploy multi-container applications
    • Install an OpenShift cluster
    • Configure and manage masters and nodes
    • Secure OpenShift
    • Control access to resources on OpenShift
    • Monitor and collect metrics on OpenShift
    • Deploy applications on OpenShift using source-to-image (S2I)
    • Manage storage on OpenShift

    Course Outline:

    • Getting started with container technology
    • Creating containerized services
    • Managing containers
    • Managing container images
    • Creating custom container images
    • Deploying containerized applications on OpenShift
    • Deploying multi-container applications
    • Troubleshooting containerized applications
    • Comprehensive Review of Introduction to Container, Kubernetes, and RedHat OpenShift
    • Introducing Red Hat OpenShift Container Platform
    • Installing OpenShift Container Platform
    • Describing and exploring OpenShift networking concepts
    • Executing commands
    • Controlling access to OpenShift resources
    • Allocating persistent storage
    • Managing application deployments
    • Installing and configuring the metrics subsystem
    • Managing and monitoring OpenShift Container Platform

    Dates/Locations:

    No Events

    Duration: 5 Days

    Prerequisites:

    • Ability to use a Linux® terminal session and issue operating system commands
    • Good foundation in Linux
    • Experience with web application architectures and their corresponding technologies

    Target Audience:

    • Developers who wish to containerize software applications
    • Administrators who are new to container technology and container orchestration
    • Architects who are considering using container technologies in software architectures
    • System administrators
    • System architects
    • Architects and developers who want to install and configure OpenShift Container Platform
    • Those working in the field of DevSecOps supporting DoD Platform One (P1) and other implementations

    Comments

    Latest comments from students

     

    Liked the class?  Then let everyone know!