Certified Ethical Hacking Course in Chandigarh

Ethical hacking training course is a hands-on journey into the hacking mindset, examining and practically applying the tools and techniques that hackers use to launch “infrastructure” attacks. Practical exercises reinforce theory as you experiment with a Windows 2008 domain (server and workstation) plus a Linux server.

Certified Ethical Hacker Training Course Chandigarh, Mohali and Panchkula.

Chandigarh institute demonstrates hacking techniques – there’s no better way to understand attacks than by doing them yourself – but this is always done with defence in mind and countermeasures are discussed throughout.

Ethical Hacking Course Syllabus:

  1. Networking Refresher
    1. Sniffing Traffic – Wireshark, Ettercap
  2. Information Discovery
    1. Information Gathering – wget, metadata, pdfinfo and extract
    2. DNS – dig, zone transfers, DNSenum and Fierce
  3. Target Scanning
    1. Host Discovery – Nmap and Netdiscover
    2. Port Scanning with Nmap – Connect, SYN and UDP scans, OS detection
    3. Banner Grabbing – Amap, Netcat, Nmap, Nmap scripts (NSE)
  4. Vulnerability Assessment
    1. Nikto
    2. Nessus
  5. Attacking Windows
    1. Windows Enumeration – net commands, Active Directory searches
    2. Enum4linux
    3. RID Cycling – Enum4linux, Cain
    4. Metasploit
    5. Client-side Exploits – Internet Explorer, Metasploit Auxiliary modules
  6. Privilege Escalation – Windows
    1. Information Gathering with Meterpreter – Stuxnet exploit, Meterpreter scripts
    2. Privilege Escalation – Keylogging
    3. Privilege Escalation exploit – Meterpreter’s hashdump, privileged keylogging
    4. Password Cracking with John The Ripper
    5. Password Cracking with Cain – fgdump, tailoring dictionaries
    6. Brute-Force Password Attacks
    7. Password Cracking with Rainbow Tables – Ophcrack Live CD, Ophcrack application
    8. Attacks on Cached Domain Credentials
    9. Token Stealing – PsExec, Incognito, local admin to domain admin
    10. Pass the Hash
  7. Attacking Linux
    1. Exploiting Linux
    2. Pivoting the Attack
    3. Online Password Cracking – Medusa
    4. ARP Poisoning Man in the Middle – clear-text protocols, secured protocols
  8. Privilege Escalation – Linux
    1. Privilege Escalation – standalone exploit
    2. Cracking UNIX Passwords – John The Ripper
    3. Exploiting sudo through File Permissions
    4. Exploiting SUID and Flawed Scripts – logic errors
    5. Further Shell Script Flaws – command injection, path exploits
  9. Retaining Access
    1. Netcat as a Backdoor (via a Java Exploit)
    2. Bandook RAT (via a PDF Exploit) – Metasploit Handlers, a full end-to-end attack
    1. Covering Tracks
    2. Simple Obfuscation
    3. HXD Rootkit
    4. Log Manipulation – wevtutil, Meterpreter scripts, audit policy

    Who Can Join this course:

    The course is therefore suited to:

    • System administrators
    • IT security officers
    • Budding penetration testers.