Certified Ethical Hacker (CEH)

Certified Ethical Hacker (CEH)

Mastering the hacking technologies. To beat a hacker, you need to think like one! Think like a hacker.

 


Next DATES       27-Mar-2017, Lisboa   Register now       15-May-2017, Lisbon   Register now       


course evaluation     4.9 in 5

Certified Ethical Hacker (CEH)

Introduction
Ethical Hacking and Countermeasures course mission is to educate, introduce and demonstrate hacking tools for penetration testing purposes only. Prior to attending this course, you will be asked to sign an agreement stating that you will not use the newly acquired skills for illegal or malicious attacks and you will not use such tools in an attempt to compromise any computer system, and to indemnify EC-Council with respect to the use or misuse of these tools, regardless of intent.

This class will immerse the students into an interactive environment where they will be shown how to scan, test, hack and secure their own systems. The lab intensive environment gives each student in-depth knowledge and practical experience with the current essential security systems. Students will begin by understanding how perimeter defenses work and then be lead into scanning and attacking their own networks, no real network is harmed. Students then learn how intruders escalate privileges and what steps can be taken to secure a system. Students will also learn about Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation. When a student leaves this intensive 5 day class they will have hands on understanding and experience in Ethical Hacking. This course prepares you for EC-Council ANSI accredited Certified Ethical Hacker exam 312-50

Legal Agreement
Ethical Hacking and Countermeasures course mission is to educate, introduce and demonstrate hacking tools for penetration testing purposes only. Prior to attending this course, you will be asked to sign an agreement stating that you will not use the newly acquired skills for illegal or malicious attacks and ou will not use such tools in an attempt to compromise any computer system, and to indemnify EC-Council with respect to the use or misuse of these tools, regardless of intent.
Not anyone can be a student - the Accredited Training Centers (ATC) will make sure the applicants work for legitimate companies.

Training Methodology
The Certified Ethical Hacker class will immerse the students into a hands-on environment where they will be shown how to conduct ethical hacking. They will be exposed to an entirely different way of achieving optimal information security posture in their organization; by hacking it! They will scan, test, hack and secure their own systems.

Audience
This course will significantly benefit security officers, auditors, security professionals, site administrators, and anyone who is concerned about the integrity of the network infrastructure.

Prerequisites
Your own laptop is required - bring your own device (BYOD) to training.

Duration (days)
5 days

Learning Objectives
At the end of the course students should be able to:
  • Key issues plaguing the information security world, incident management process, and penetration testing
  • Various types of footprinting, footprinting tools, and countermeasures
  • Network scanning techniques and scanning countermeasures
  • Enumeration techniques and enumeration countermeasures
  • System hacking methodology, steganography, steganalysis attacks, and covering tracks
  • Different types of Trojans, Trojan analysis, and Trojan countermeasures
  • Working of viruses, virus analysis, computer worms, malware analysis procedure, and countermeasures
  • Packet sniffing techniques and how to defend against sniffing
  • Social Engineering techniques, identify theft, and social engineering countermeasures
  • DoS/DDoS attack techniques, botnets, DDoS attack tools, and DoS/DDoS countermeasures
  • Session hijacking techniques and countermeasures
  • Different types of webserver attacks, attack methodology, and countermeasures
  • Different types of web application attacks, web application hacking methodology, and countermeasures
  • SQL injection attacks and injection detection tools
  • Wireless Encryption, wireless hacking methodology, wireless hacking tools, and wi-fi security tools
  • Mobile platform attack vector, android vulnerabilities, jailbreaking iOS, windows phone 8 vulnerabilities, mobile security guidelines, and tools
  • Firewall, IDS and honeypot evasion techniques, evasion tools, and countermeasures
  • Various types of buffer overflows, how to mutate a buffer overflow exploit, buffer overflow detection tools, and countermeasures
  • Different types of cryptography ciphers, Public Key Infrastructure (PKI), cryptography attacks, and cryptanalysis tools
  • Various types of penetration testing, security audit, vulnerability assessment, and penetration testing roadmap

Program
  1. Introduction to Ethical Hacking
    • Internet is Integral Part of Business and Personal Life - What Happens Online in 60 Seconds
    • Information Security Overview
    • Information Security Threats and Attack Vectors
    • Hacking Concepts, Types, and Phases
    • Ethical Hacking Concepts and Scope
    • Information Security Controls
    • Information Security Laws and Standards

  2. Footprinting and Reconnaissance
    • Footprinting Concepts
    • Footprinting Methodology
    • Footprinting Tools
    • Footprinting Countermeasures
    • Footprinting Penetration Testing

  3. Scanning Networks
    • Overview of Network Scanning
    • CEH Scanning Methodology

  4. Enumeration
    • Enumeration Concepts
    • NetBIOS Enumeration
    • SNMP Enumeration
    • UNIX/Linux Enumeration
    • LDAP Enumeration
    • NTP Enumeration
    • SMTP Enumeration
    • Enumeration Countermeasures
    • SMB Enumeration Countermeasures
    • Enumeration Pen Testing

  5. System Hacking
    • Information at Hand Before System Hacking Stage
    • System Hacking: Goals
    • CEH Hacking Methodology (CHM)
    • CEH System Hacking Steps
    • Hiding Files

  6. Malware Threats
    • Introduction to Malware
    • Trojan Concepts
    • Trojan Infection
    • Types of Trojans
    • Virus and Worms Concepts
    • Malware Reverse Engineering
    • Malware Detection
    • Countermeasures
    • Anti-Malware Software
    • Penetration Testing

  7. Sniffing
    • Sniffing Concepts
    • MAC Attacks
    • DHCP Attacks
    • ARP Poisoning
    • Spoofing Attack
    • DNS Poisoning
    • Sniffing Tools
    • Sniffing Tool: Wireshark
    • Follow TCP Stream in Wireshark
    • Display Filters in Wireshark
    • Additional Wireshark Filters
    • Sniffing Tool
    • Packet Sniffing Tool: Capsa Network Analyzer
    • Network Packet Analyzer
    • Counter measures
    • Sniffing Detection Techniques
    • Sniffing Pen Testing

  8. Social Engineering
    • Social Engineering Concepts
    • Social Engineering Techniques
    • Impersonation on Social Networking Sites
    • Identity Theft
    • Social Engineering Countermeasures
    • Penetration Testing

  9. Denial of Service
    • DoS/DDoS Concepts
    • DoS Attack Techniques
    • Botnets
    • DDoS Case Study
    • DoS/DDoS Attack Tools
    • Counter-measures
    • DoS/DDoS Protection Tools
    • DoS/DDoS Attack Penetration Testing

  10. Session Hijacking
    • Session Hijacking Concepts
    • Application Level Session Hijacking
    • Network-level Session Hijacking
    • Session Hijacking Tools
    • Counter-measures
    • Session Hijacking Pen Testing

  11. Hacking Webservers
    • Webserver Concepts
    • Webserver Attacks
    • Attack Methodology
    • Webserver Attack Tools
    • Counter-measures
    • Patch Management
    • Webserver Security Tools
    • Webserver Pen Testing

  12. Hacking Web Applications
    • Web App Concepts
    • Web App Threats
    • Web App Hacking Methodology
    • Web Application Hacking Tools
    • Countermeasures
    • Security Tools
    • Web App Pen Testing

  13. SQL Injections
    • SQL Injection Concepts
    • Types of SQL Injection
    • SQL Injection Methodology
    • SQL Injection Tools
    • Evasion Techniques
    • Counter-measures

  14. Hacking Wireless Networks
    • Wireless Concepts
    • Wireless Encryption
    • Wireless Threats
    • Wireless Hacking Methodology
    • Wireless Hacking Tools
    • Bluetooth Hacking
    • Counter-measures
    • Wireless Security Tools
    • Wi-Fi Pen Testing

  15. Hacking Mobile Platforms
    • Mobile Platform Attack Vectors
    • Hacking Android OS
    • Hacking iOS
    • Hacking Windows Phone OS
    • Hacking BlackBerry
    • Mobile Device Management (MDM)
    • Mobile Security Guidelines and Tools
    • Mobile Pen Testing

  16. Evading IDS, Firewalls, and Honeypots
    • IDS, Firewall and Honeypot Concepts
    • IDS, Firewall and Honeypot System
    • Evading IDS
    • Evading Firewalls
    • IDS/Firewall Evading Tools
    • Detecting Honeypots
    • IDS/Firewall Evasion Counter-measures
    • Penetration Testing

  17. Cloud Computing
    • Introduction to Cloud Computing
    • Cloud Computing Threats
    • Cloud Computing Attacks
    • Cloud Security
    • Cloud Security Tools
    • Cloud Penetration Testing

  18. Cryptography
    • Market Survey 2014: The Year of Encryption
    • Case Study: Heartbleed
    • Case Study: Poodlebleed
    • Cryptography Concepts
    • Encryption Algorithms
    • Cryptography Tools
    • Public Key Infrastructure(PKI)
    • Email Encryption
    • Disk Encryption
    • Cryptography Attacks
    • Cryptanalysis Tools

Exam
312-50 - Certified Ethical Hacker (CEH)
Number of Questions: 125
Passing Score: 70%
Test Duration: 4 Hours
Test Format: Multiple Choice
CEH Exam will be scheduled for Behaviour Testing Center. If you prefer to do your exam in another location, let us know before register for this course.

Certification
Certified Ethical Hacker.

Trainer
Trainer certified by EC-COUNCIL.

General Information
  • Training in Portuguese or English language.
  • Course manual in English.
  • Hands on Labs - environment that simulates a real time information infrastructure. iLabs is a subscription-based sandboxed Cyber Range where InfoSec Professionals can hone their skills, launch attacks, perform investigations, and test new attack & defense tools with just a click of the mouse. Students can access cloud-based iLabs virtual Lab environment by using any standard web browser.
  • Behaviour Participation Certificate.
  • Coffee break in the morning and afternoon (Applies to all training that take place in Behaviour facilities)

Benefits

Dates and Price

Guaranteed Dates Program
Course date subject to a minimum number of participants.

Volume Discounts
For companies, Behaviour offer discounts, between 10% and 40% of the value of training, starting from the registration of the 2nd participant, in the same course and on the same date.
Simulate the prices for the number of participants you want to register to training@behaviour-group.com or contact us via chat.

Hotels and Useful Information
Know where you can stay in Lisbon, near Behaviour. For more information please see >> Booking <<