Certified Ethical Hacker -

Detailed Course Description:

Module 1: Ethics and Legality

§         Why Security?

§         The Security, functionality and ease of use Triangle

§         Can Hacking be Ethical?

§         Essential Terminology.

§         Elements of Security.

§         Legal Perspective (US Federal Laws).

 

Module 2: Foot printing

§         Defining Footprinting.

§         Information Gathering Methodology.

§         Locate the Network Range.

§         Hacking Tools:

§         Whois

§         Nslookup

§         ARIN

§         Traceroute

§         NeoTrace

§         VisualRoute Trace

§         SmartWhois

 

  • Module 3: Scanning

§         Definition of Scanning.

§         Types of scanning

§         Objectives of Scanning

§         Scanning Methodology

§         Classification of Scanning

§         Hacking Tools

§         Nmap

§         XMAS Scan

§         FIN Scan

§         Null Scan

§         Windows Scan

§         Nessus

§         Retina

§         Saint

§         HPing2

§         Firewalk

§         GFI Languard

§         ISS Security Scanner

§         Netcraft

§         War Dialer

§         Hacking Tools

§         THC Scan

§         Friendly Pinger

§         Cheops

 

§         Hacking Tools

§         Security Administrator’s Tool for Analyzing Network (SATAN)

§         IdentTCPScan

§         PortScan Plus

§         Strobe

§         Blaster Scan

§         OS Fingerprinting

§         Active Stack fingerprinting

§         Tool for Active Stack fingerprinting

§         XPROBE2

§         Passive Fingerprinting

§         Proxy Servers

§         Hacking Tools

§         Socks Chain

§         Anonymizers

§         HTTP Tunnel

§         HTTPort

§         Countermeasures

Module 4: Enumeration

§         What is Enumeration?

§         NetBios Null Sessions

§         Hacking Tools

§         DumpSec

§         Winfo

§         NetBIOS Auditing Tool (NAT)

§         Null Session Countermeasures

§         NetBIOS Enumeration

§         Hacking Tool :NBTScan

§         Simple Network Management Protocol (SNMP) Enumeration

§         Hacking Tools

§                     Solarwinds

§                     Enum

§                     SNScan

§         SNMP Enumeration Countermeasures

§         Management Information Base (MIB)

§         Windows 2000 DNS Zone Transfer

§         Blocking Win 2k DNS Zone Transfer

§         Enumerating User Accounts

§         Hacking Tools

§                     User2sid and Sid2user

§                     UserInfo

§                     GetAcct

§                     DumpReg

§                     Trout

§                     Winfingerprint

§                     PsTools (PSFile,PSLoggedOn,PSGetSid,PSInfo,PSService,PSList,PSKill,

§         PSSuspend, PSLogList, PSExec, PSShutdown)

§         Active Directory Enumeration and Countermeasures

 

Module 5: System Hacking

  • Administrator Password Guessing

  • Manual Password Cracking Algorithm

  • Automated Password Cracking

  • Password Types

  • Types of Password Attacks

  • Hacking Tool

  • NTInfoScan (CIS)

  • Performing Automated Password Guessing

  • Hacking Tool

  • Legion

  • Password Sniffing

  • Hacking Tools

  • LOphtcrack

  • pwdump2 and pwdump3

  • KerbCrack

  • NBTdeputy

  • NetBIOS DoS Attack

  • Hacking Tools

  • NBName

  • John the Ripper

  • LAN Manager Hash

  • Password Cracking Countermeasures

  • Syskey Utility

  • Cracking NT/2000 Passwords

  • Hacking Tool

  • NTFSDOS

  • SMB Logon

  • Hacking Tool: SMBRelay

  • SMBRelay Man-in-the-Middle Scenario

  • Hacking Tool : SMBRelay2

  • SMBRelay Weaknesses and Countermeasures

  • Hacking Tools

  • SMBGrind

  • SMBDie

  • Privilege Escalation

  • Hacking Tools

  • GetAdmin

  • hk.exe

  • Keystroke Loggers

  • Hacking Tools

  • IKS Software Keylogger

  • Ghost Keylogger

  • Hardware Key Logger

  • Spyware Spector

  • eBlaster

  • Hiding Files

  • Creating Alternate Data Streams

  • ADS creation and detection

 

  • Hacking Tools

  • Makestream

  • ads_cat

  • Streams

  • LADS (List Alternate Data Streams)

  • NTFS Streams Countermeasures

  • Stealing Files Using Word Documents

  • Field Code Countermeasures

  • Steganography

  • Spyware Tool - Desktop Spy

  • Hacking Tools

  • Steganography tools

  • DiSi-Steganograph

  • EZStego

  • Gif-It-Up v1.0

  • Gifshuffle

  • Hide and Seek

  • JPEG-JSTEG

  • MandelSteg and GIFExtract

  • Mp3Stego

  • Nicetext

  • Pretty Good Envelope

  • OutGuess

  • SecurEngine

  • Stealth

  • Snow

  • Steganography Tools 4

  • Steganos

  • Steghide

  • Stegodos

  • Stegonosaurus

  • StegonoWav

  • wbStego

  • Image Hide

  • MP3Stego

  • StegonoWav

  • Snow.exe

  • Camera/Shy

  • Steganography Detection

  • Hacking Tool

  • diskprobe.exe

  • Covering Tracks

  • Disabling Auditing and clearing Event Logs

  • Hacking Tool

  • Dump Event Log

  • elsave.exe

  • WinZapper

  • Evidence Eliminator

  • RootKit

  • Planting the NT/2000 RootKit

  • Hacking Tools

  • Fu

  • Vanquish

  • Rootkit Countermeasures

  • Hacking Tool

  • Patchfinder 2.0

Module 6: Trojans and Backdoors

§        Effect on Business

§        What is a Trojan?

§        Overt and Covert Channels

§        Working of Trojans

§        Different Types of Trojans

§        What Trojan Creators look for?

§         Different ways a Trojan can get into a system

§         Indications of a Trojan Attack

§         Some famous Trojans and ports used by them

§         How to determine which ports are “Listening”?

§         Different Trojans found in the Wild

§         Beast 2.06

§         Phatbot

§         Senna Spy

§         CyberSpy

§         Remote Encrypted Callback UNIX Backdoor (RECUB)

§         Amitis

§         QAZ

§         Back Orifice

§         Back Orifice 2000

§         Tini

§         NetBus

§         SubSeven

§         Netcat

§         Subroot

 

§         Let me Rule 2.0 Beta 9

§         Donald Dick

§         Graffiti.exe

§         EliteWrap

§         IconPlus

§         Restorator

§         Whack-a-mole

§         Firekiller 2000

§         BoSniffer

§         Wrappers

§         Packaging Tool : Wordpad

§         Hard Disk Killer (HDKP 4.0)

§         ICMP Tunneling

§         Hacking Tool: Loki

§         Loki Countermeasures

§         Reverse WWW Shell – Covert Channels using HTTP

§         Hacking Tools

§         fPort

§         TCP View

§         Tripwire

§         Process Viewer

§         Inzider-Tracks Processes and Ports

§         System File Verification

§         Trojan horse Construction Kit

§         Anti-Trojan

§         Evading Anti-Trojan/Anti-Virus using Stealth Tools v 2.0

§         Reverse Engineering Trojans

§         Backdoor Countermeasures

 

Module 7: Sniffers

  • Definition of sniffing
  • How a Sniffer works?
  • Passive Sniffing
  • Active Sniffing
  • Hacking Tool: EtherFlood
  • Man-in-the-Midle Attacks
  • Spoofing and Sniffing Attacks
  • ARP Poisoning and countermeasures
  • Hacking Tools
  • Ethereal
  • Dsniff
  • Sniffit
  • Aldebaran
  • Hunt
  • NGSSniff
  • Ntop
  • pf
  • IPTraf
  • Etherape
  • Netfilter

 

  • Network Probe

  • Maa Tec Network Analyzer

  • Snort

  • Macof, MailSnarf, URLSnarf, WebSpy
  • Windump
  • Etherpeek
  • Ettercap
  • SMAC
  • Mac Changer
  • Iris
  • NetIntercept
  • WinDNSSpoof
  • NetIntercept
  • Win DNSpoof
  • TCPDump
  • Network Monitor
  • Gobbler
  • ETHLOAD
  • Esniff
  • Sunsniff
  • Linux_sniffer
  • Sniffer Pro
  • Sniffing Countermeasures

 

Module 8: Denial of Service

§   What is Denial of Service?

§   Goal of DoS(Denial of Service)

§   Impact and Modes of Attack

§   DoS Attack Classification

§                     Smurf

§                     Buffer Overflow Attacks

§                     Ping Of death

§                     Teardrop

§                     SYN

§                     Tribal Flow Attack

§   Hacking Tools

§                     Jolt2

§                     Bubonic.c

§                     Land and LaTierra

§                     Targa

§   Distributed DOS Attacks and Characteristics

§   Agent Handler Model

§   IRC-Based DDoS Attack Model

§   DDoS Attack taxonomy

 

§   DDoS Tools

§                     Trin00

§                     Tribe Flow Network (TFN)

§                     TFN2K

§                     Stacheldraht

§                     Shaft

§                     Trinity

§                     Knight

§                     Mstream

§                     Kaiten

§   Reflected DOS Attacks

§   Reflection of the Exploit

§   Countermeasures for Reflected DoS

§   Tools for Detecting DDOS Attacks

§                     ipgrep

§                     tcpdstat

§                     findoffer

§   DDoS Countermeasures

§   Defensive Tool: Zombie Zapper

§   Worms: Slammer and MyDoom.B

Module 9: Social Engineering

§   What is Social Engineering?

§   Art of Manipulation

§   Human Weakness

§   Common Types of Social Engineering

§   Human Based Impersonation

§   Example of social engineering

§   Computer Based Social Engineering

§   Reverse Social Engineering

§   Policies and procedures

§   Security Policies-checklist

 

Module10: Session Hijacking

§         Understanding Session Hijacking

§         Spoofing vs Hijacking

§         Steps in Session Hijacking

§         Types of Session Hijacking

§         TCP Concepts 3 Way Handshake

§         Sequence numbers

§         Hacking Tools

§   Juggernaut

§   T-Sight

§   TTY Watcher

§   IP Watcher

§   Hunt

§   Paros v3.1.1

§   TTY-Watcher

§