Hands-On Penetration Testing
“If you know the enemy and know yourself, you
need not fear the result of hundred battles” – Sun Tzu, Art of
War Course Title: Hands-On
Penetration Testing (Improved version of Ethical Hacking Course)
Who can attend: Software engineers, System
administrators, Programmers, and anyone interested in the field of
Security and Hacking.
Requirements: - Intermediate Programming skills
- Basic knowledge of network concepts:
1. IP Addressing
2. Standard protocols: HTTP, DNS, etc.
- Basic Dos/Linux commands: ls, cd, cp, mkdir, etc.
Duration: 4 days (Weekend)
Dates*: January 16-January 19, 2019
Location: Information and Computer Science
Department, KFUPM, Al-Dhahran, Saudi Arabia.
Instructor: Dr. Sami Zhioua
Course Fees: 5000SAR
(Special fees available for KFUPM students and staff)
Registration: Department of Continuing
Education, Building 54, Room 107.
For Course details:
zhioua@kfupm.edu.sa
* If you are a group and
you are interested to take the course in a different date, you can
contact the instructor for arrangement. |
|
What to bring ?
The short course is delivered in a fully equipped ICS
Cybersecurity Lab. But optionally, if you want to work on your personal laptop, we highly recommend
that you bring a Laptop with the following minimum requirements:
- i7 processor
- More than 8GB of RAM
- 150GB of free hard-disk (internal or external)
- VirtualBox 6.0 installed.
In addition, if you want to practice with Wireless Security, you
should bring:
- Alfa AWUS036H (https://saudi.souq.com/sa-en/alfa-awus036h/s/?as=1)
What you will get ?
- Course material (Hard copy of course slides)
- Lab Manual: detailed instructions for the Lab steps
- More than 100GB of Virtual Machines well configured for learning and
practicing with penetration testing.
- Offical Penetration Testing Certificate from KFUPM.
Reasons to take the course
- Understand the Cybersecurity field from an offensive
point of view (How hackers proceed).
- Unlike online courses which take a couple of
weeks/months, this course is intensive (4 days) and very practical.
- Penetration testing certifications are very demanded in
the industry and the job market.
Penetration Testing:
The explosive growth of the Internet has brought many good things: electronic
commerce, easy access to vast stores of reference material, collaborative
computing, e-mail, and new avenues for advertising and information distribution,
to name a few. As with most technological advances, there is also a dark side:
criminal hackers.
Governments, companies, and private citizens around the world are anxious to be
a part of this revolution, but they are afraid that some hacker will break into
their Web server and replace their logo with adult images, read their e-mail,
steal their credit card number from an on-line shopping site, or implant
software that will secretly transmit their organization’s secrets to the open
Internet.
In their search for a way to approach the problem, organizations came to realize
that one of the best ways to evaluate the intruder threat to their interests
would be to have independent computer security professionals attempt to break
into their computer systems. This scheme is similar to having independent
auditors come into an organization to verify its bookkeeping records. In the
case of computer security, these “tiger teams” or “ethical hackers” would
employ the same tools and techniques as the intruders, but they would neither
damage the target systems nor steal information. Instead, they would evaluate
the target systems’ security and report back to the owners with the
vulnerabilities they found and instructions for how to remedy them.
If a hacker wants to get inside your system, he/she will,
and there is nothing you can do about it
The only thing you can do is make it harder for him to get in.
Interesting facts about Hacking and Security:
- The majority of computer systems aren’t managed properly
- Most network and security administrators simply can’t keep up with the
deluge of new vulnerabilities and attack methods
- Information systems grow more complex every year
- The law of averages works against security
- With the increased number of hackers and their expanding knowledge and
the growing complexity of IT systems, eventually, all computer systems and
applications will be hacked or compromised in some way.
- Hacking preys on weak security practices and undisclosed
vulnerabilities.
- Firewalls, encryption, and passwords can create a false feeling of
safety.
- These security mechanisms often focus on high-level vulnerabilities
without affecting how the bad guys work.
- Attacking your own systems to discover vulnerabilities helps make them
more secure.
- Ethical hacking is the only proven method of greatly hardening your
systems from attacks.
- If you don’t identify weaknesses, it’s only a matter of time before the
vulnerabilities are exploited.
- It’s one thing to know generally that your systems are under fire from
hackers around the world and malicious users around the office;
- It’s another to understand and to see specific attacks against your
systems that are possible.
- As hackers expand their knowledge, so should you.
- You must think like them and work like them to protect your systems from
them.
- As an ethical hacker, you must know the activities that hackers carry
out and how to stop their efforts.
- An ethical hacker possesses the skills, mindset, and tools of hacker but
is also trustworthy.
- Ethical hacking involves the same tools, tricks, and techniques that
hackers use, but with one major difference: Ethical hacking is performed
with the victim’s permission.
- The intent of ethical hacking is to discover vulnerabilities from a
malicious attacker’s viewpoint to better secure systems.
1. Introduction to Network Security
Footprinting
Scanning
Enumeration
Open Source Intelligence (OSINT)
Vulnerability Scanning
Web Application Scanning
2. Hacking and Intrusion
Understanding Vulnerabilities (B.O)
Creating back-doors
Transferring and executing files in the victim
Opening sessions
Writing exploits
Meta-Exploitation Tools
3. Advanced Penetration Techniques
Pivoting
PowerShell
zero-day exploits
Dictionary Based Password Cracking
Rainbow Table Password Cracking
Resisting password cracking attacks
4. Network Attacks and Security
Network Sniffing to observe traffic
ARP Poisoning attacks
Man-In-The-Middle attacks
Session Hijacking
Network Configuration against Sniffing attacks
5. Web Application Hacking
Burp Suite Tutorial
SQL Injection Attacks
Session Hijacking
XSS Scripting Attacks
Defending against web hacking
6. Malware and Rootkits
Different Types of malwares
Malware coding
Malware binders and packers
Bypassing Antivirus Tools
Social Engineering Toolkits
7. Wireless and Physical Penetration
Testing
Sniffing Wireless Traffic (Monitor Mode)
Using Alfa AWUS036H Wifi Adapter
Aircrack-NG Tutorial
Cracking WEP
Cracking WPA/WPA2
Creating and Detecting Rogue AP
Wireless Denial Of Service (DoS) Attacks
Etc.
A Seminar on Hacking by Dr. Sami Zhioua
(November 2011):
Sami Zhioua, December 2018
|