Penetration Testing using OSSTMM.

Network intrusion, security testing, & penetration testing course.

	Back to List
	Provisionally Book Course
	Penetration Testing using OSSTMM
Code:	PTEST/051
Dates:	See Course Schedule
Duration:	5 Days
Fee:	Contact us for current prices
Description:	This 5-day Penetration Testing course is for those IT professionals who are required to test their own internal networks or the networks of an external client. The Penetration Testing course will cover the principles of penetration testing and ethical hacking and give hands on training with some of the tools available. Students will be taught the difference between a hacker and a penetration tester. They will learn in the process, the types of procedures followed by professional penetration testers. The course will also have discussions on the common vulnerabilities of computer systems along with methods used by penetration testers to take advantage of them. The Open Source Security Testing Methodology Manual (OSSTMM), provides a complete methodology on performing security testing from the outside to the inside. It is also beneficial in testing from the internal network to the DMZ and the DMZ to the internal network.
Objectives:	To learn and practice the techniques used in Penetration Testing and Ethical Hacking.
Target Audience:	IT professionals who have an interest in specialising in Penetration Testing or simply want to improve their knowledge about the Penetration Testing subject to supervise or monitor others in the network intrusion field.
Prerequisites:	Delegates should come prepared to answer questions about their existing Windows infrastructure (domain design, domain name server (DNS), networking topologies, security practices, messaging applications, desktops, server –based applications, WWW services etc.).
Course Synopsis:	1) ISECOM and Methodologies Overview of ISECOM Rules of Engagement Rule of Thumb The Process The Security Map Risk Assessment Sections, Modules and Tasks 2) Building a Testing Environment Building a Windows machine Building a Linux machine Installing software and tools Connecting the two machines 3) Vulnerabilities Monitoring & Intrusion Detection (Lack of) Network Architecture Network File System NT Ports 135-139 (NetBIOS & File Sharing) NT Null Connection Poor Passwords & User Ids Remote Administration Services Remote Procedure Call (RPC) Sendmail Services started by default Simple Mail Transport Protocol (SMTP) Buffer Overflows Application Holes BIND Implementations Common Gateway Interface (CGI) Clear Text Services Default Accounts Domain Name Service (DNS) File Permissions FTP and Telnet ICMP, IMAP & POP Modems Simple Network Management Protocol Web server Viruses and hidden code 4) Internet Research Internet Search Engines WHOIS Servers 5) Network Surveying DNS Searches Ping sweeps Traceroute 6) System Services Identification Enumerate systems Enumerate ports Identify services Identify systems 7) Sniffers Using Windows Network Monitor Ethereal / Wireshark Aniffit Ettercap TCPdump WinDump 8) Social Engineering Introduction The Telephone Technical support Disgruntled customer Get help logging in Dumpster Diving Desktop Information 9) War-Dialling Introduction Attacks Methods Tools and Software 10) Internal Penetration Introduction Scenarios Evil Consultant Disgruntled employee Dishonest service staff Mapping the Network Banner Grabbing 11) Enumeration NT/2K Built-in Windows utilities The Null share Third Party Tools Unix Finger Command Rtools Queries Showmount RPCInfo SNMP Browsing 12) Vulnerability Scanners Introduction Cerberus Internet Scanner LANguard Network Scanner Nessus 13) Password Crackers Introduction Brutus L0pht Crack John the Ripper 14) Intrusion Detection Systems Introduction Types Methodologies Placement Rules Logging Concerns 15) Firewalls Introduction Stateless Packet Filters Proxy Firewalls Stateful Packet Filters DMZ NAT Hardening Topologies Evading Firewalls
	Back to List