Certified Ethical Hacker Training

Overview
Overview
Syllabus
Syllabus
Prerequisites
Prerequisites
Included
Included
Certification
Certification
Understand the psychology, motivations and modus operandi of black hat hackers by attending our 5-day Certified Ethical Hacker (C|EH) training course, delivered onsite at your location.

The course provides students with in-depth, hands-on training in the field of hacking and penetration testing. Using skills learned in the class, students will be armed with insight and techniques that go beyond what automated tools alone can accomplish.

As an EC-Council Accredited Training Partner (ATP), our certified course takes the EC-Council standard curriculum and expands and enhances it with real-world examples and hands-on exercises. Also, because our EC-Council Certified Instructors (CEI) are all Certified Ethical Hackers who operate in the corporate world every day, our C|EH training exposes students to scenarios that mimic the real world.

The 5-day C|EH training course provides students with in-depth, hands-on training in the field of security and penetration testing. Using skills learned in the class, students will be armed with the knowledge to perform penetration testing, applying techniques that go beyond what automated tools alone can accomplish.

Our C|EH courses are developed by certified ethical hackers who live in the corporate world of penetration testing and vulnerability scanning. Helping you protect what's yours is what Halock's C|EH course is all about.

C|EH training course offers valuable insight into the minds and methods of black hat hackers who work to exploit your systems through techniques such as buffer-overflow vulnerabilities and implanted "root-kits". These attacks cost corporations millions of dollars every year, so understanding and addressing these risks proactively makes the difference.

Historically, there were two groups of security administrators: those who have been hacked and those who will be. Halock's goal is to educate and train security professionals with the expertise needed to understand and defend against black hats - creating a third group:

...those that won't be hacked.
Halock's C|EH course covers the following topics in depth through instructor led discussion and hands-on learning:

Module 0 - Introductions, Expectations, and more general course introduction
  • Meet attendees, go over schedule, logistics, and course outline
Module 1 - The Playing Field
  • The state of the 'Net today
  • Hacker history (how we got here)
  • Terms and methodologies
Module 2 - Scope and Bidding the Project
  • General practices for determining the size and scope of a given undertaking (from a hacking perspective)
Module 3 - Performing Reconnaissance: Passive Information Gathering
  • Public information gathering (tools, techniques)
  • Footprinting an organization
Module 4 - Networking Fundamentals
  • Networking 201
  • Fundamentals of IP, TCP, UDP, ARP, etc
  • Sniffing
  • ARP Poisoning
  • Packet inspection/interception
  • Wireless Hacking
Module 5 - Scanning and Enumeration: Active Information Gathering
  • Active information gathering (tools, techniques)
  • Ping sweeps
  • Port scanning
Module 6 - Fingerprinting and Vulnerability Scanning
  • Stack fingerprinting
  • Service fingerprinting
  • Vulnerability identification
  • Scanning, Fingerprinting, and Enumeration
  • Automated scanners (Nessus, etc.)
Module 7 - Application Testing and Hacking Web Applications (now for something completely different)
  • Application hacking, with a concentration on web applications
  • SQL Injection
  • Cross Site Scripting
  • Automated scanners, proxy tools, and vulnerability identification
Module 8 - Smashing the Stack
  • Buffer overflows - what they are and how they work
  • Stack overflows vs. Heap overflows
  • Tools of the trade - debuggers, decompilers
  • Tools of the trade - Metasploit
  • Tools of the trade - Core Impact
Module 9 - p0wning the Box - Breaking Windows
  • Tips and tricks for gaining access, maintaining access and escalating privileges on Windows
Module 10 - p0wning the Box - Got Root?
  • Tips and tricks for gaining access, maintaining access and escalating privileges on Windows
Module 11 - Viruses and Malware
  • Definitions (virus, rootkit, Trojan, malware)
  • Discussion of the evolution and current state of malware
  • Testing and evading antivirus detection
  • Tools of the trade (RATs, Trojans, and rootkits)
Module 12 - Testing Intrusion Detection
  • Types and functions of IDS/IPS systems
  • Detecting IDS/IPS
  • Evading IDS/IPS
Module 13 - Social Engineering: P0wning the People
  • Definitions
  • General types of social engineering
  • Tips for successful exploitation of people
Students participating in the C|EH class do not need to be security experts, but should have an intermediate level of experience and understanding in one or more of the following areas:
  • Network architecture and design
  • Network administration
  • Application development
  • Linux and/or Windows deployment and support
  • Client Server OS administration
  • Desktop support
Students are responsible for bringing a laptop system running Windows XP with a USB 2.0 port

Halock will provide each student with:

Complete set of EC-Council reference materials and study guides
Halock course guide to follow instructional content
Custom live, bootable USB key complete with hundreds of hacking and penetration testing tools
Access to a fully functional lab environment, including:
- corporate network
- ecommerce web application
- web servers
- database servers
- directory server (Active Directory)

Breakfast is provided each day
Lunch is provided on the first day
C|EH exam voucher for sit for the C|EH test (proctored on day 5)

Snacks, beverages, and some surprise Swag ;)
Halock's C|EH course prepares the student for the Certified Ethical Hacker (C|EH) exam. Students wishing to take the exam may do so on the fifth and final day of the class.

 

On-Demand Vulnerability Scanning: