• Console Server
• Physical Layer Switch
• Data Access Switch
• Remote Access
• Network Taps
• Fiber Optic Cables

• Delay Simulators
• Web Stressor
• Jammer
• BERT
• Generator
• Fiber Simulator

• SAN Analysis
• LAN Analysis
• LAN Expert
• WLAN Analysis
• Handheld Analysis
  

• Network Manager
• SAN Monitor
• SAN Probe
• SAN Views
• SAN Portal
• LAN Monitor

• Security Classes

Anti-Hacking for Network Penetration Testing Methods ECSA Certification from EC-Council

ANTI-HACKING at it's BEST! How to look at your network through a hacker's eyesЙ and close the doors on unauthorized penetration.

Through groundbreaking penetration testing methods and tools, this 5 day class helps students perform the intensive assessments required to effectively identify vulnerabilities and risks to the security of the infrastructure. You'll learn the stealth mindset of a hacker, and how a real attacker strikes, and become more deliberate in the way you approach security and penetration testing.

Students will delve deep into techniques that are used by attackers to exploit vulnerabilities, and to analyze, assess and attack a network. Students receive hands-on training while learning the advanced uses of available methodologies, tools and techniques required to perform comprehensive information security testing.

Course Fee: $2,795
Time: 8:30am - 6:30pm ( evening labs)
Learning Level: Intermediate
CPE Credits 40

Request Class Dates or In-House Training of Classes.

Prerequisites:
Prior to enrolling in AH for Network Penetration Testing Methods & ECSA class, students have to provide proof of taking either the CEH class or exam, or have an equivalent amount of experience with Linux and Security Testing.
Students should have intermediate to advanced experience or education with security, testing, and vulnerability assessment, and must also be familiar with both Windows and Linux and have a minimum of one year of IT Security experience.

Who should attend:
System and Network Administrators, Security Personnel, Auditors, and
Consultants concerned with network security.

Class Completion
Our Anti-Hacking for Network Penetration Testing Methods: ECSA course will provide you with valuable skills and information, including:

* Latest exploit goals and methodologies
* Advanced information-gathering techniques
* Expert network discovery tools and techniques
* Identifying and exploiting architectural weaknesses
* Advanced enumeration of network devices, platforms and protocols
* Cracking contemporary authentication and authorization
* Advanced router, firewall and IDS testing
* Exploiting IPS
* Vulnerability research and automated scanning in the enterprise
* The anatomy of root kits, trojans, Malware and viruses
* Mastering web application testing
* Exploiting complex protocols, such as SSH, SSL, and IPSEC
* Using payload generators
* Advanced wireless testing tools and techniques
* Penetration testing of "Wetware"
* Penetration testing and the law

You'll learn how to gather viable data on your network's vulnerabilities using leading edge tools like Nessus , NeWT and NeVO vulnerability detection tools, Saint, SOLARWINDS, NMAP,App Detective and the latest in exploit tools, IMPACT from Core Security.

After all this, it's the hackers who will have to beware when it comes to your network.
Key topics: Run hacking attacks in our classroom labs, be a anti-hacker for a week:
Some of the penetration or hacking concepts you will learn to master during this hands on class...

* Attacking network infrastructure devices
* Hacking by brute forcing remotely
* Security testing methodologies
* Security exploit testing with IMPACT from Core Security
* Stealthy network recon
* Remote root vulnerability exploitation
* Multi-OS banner grabbing
* Privilege escalation hacking
* Unauthorized data extraction

* Breaking IP-based ACLs via spoofing
* Evidence removal and anti-forensics
* Hacking Web Applications
* Breaking into databases with SQL Injection
* Cross Site Scripting hacking
* Remote access trojan hacking
* Offensive sniffing
* Justifying a penetration test to management and customers
* Defensive techniques
Instructor-led hands-on lab exercises
* Capture the Flag hacking exercises
* Abusing DNS for host identification
* Leaking system information from Unix and Windows
* Stealthy Recon
* Unix, Windows and Cisco password cracking
* Remote buffer overflow exploit lab I - Stack mashing
* Remote heap overflow exploit lab - Beyond the Stack

* Desktop exploitation
* Remote keylogging
* Data mining authentication information from clear-text protocols
* Remote sniffing
* Malicious event log editing
* Transferring files through firewalls
* Hacking into Cisco routers
* Harvesting web application data
* Data retrieval with SQL Injection Hacking

Phase I — Gather the Data
A first look at a network site, from the eyes of a potential hacker. The simple, and often overlooked, things that tell hackers if a site is worth a penetration attempt.

Phase II — Penetrate the Network
How hackers get past the security and into the data.
Ґ Non-intrusive target search
Ґ Intrusive target search
Ґ Data analysis

Network Discovery Tools and Techniques: Hands-On Exercises
Ґ Discovery/profiling objectives
Ґ Locating Internet connections
Ґ Host-locating techniques: manual and automated
Ґ Operating system footprinting
Ґ Evaluating Windows and Unix-based network discovery software tools
Ґ Evaluating Windows and Unix-based application scanning software tools
Ґ Review Step-by-step process of each scanning and profiling tool
Ґ Directory services: DNS, DHCP, BOOTP, NIS
Ґ Look-up services: finger, whois, search engines
Ґ Remote sessions: telnet, "r" commands, X-Windows
Ґ File sharing and messaging: FTP, TFTP, World Wide Web
Ґ Windows Server Message Block (SMB), Network File
Ґ Systems (NFS), and e-mail
Ґ Sample exploits using common TCP/IP and NetBIOS utility software

Phase III — Analyze the Results
Tips and techniques for effective, actionable penetration test analysis.
Ґ Identifying network services
Ґ Pinpointing vulnerabilities
Ґ Demonstrating risks
Ґ Reviewing reports and screens from prominent discovery/profiling tools
Ґ Analyzing current configuration
Real-World Scenarios
Ґ Abusive e-mail
Ґ Embezzlement
Ґ Pornography
Ґ Denial-of-service
Ґ Web defacement
Ґ Trojan Horse

Phase IV — Write the Report
How to combine methodology, results, and analysis into a report that generates management attention and buy-inЙ and provides clear, workable action items.

In-Class Exercises
Ґ Building and maintaining a target list
Ґ Conducting multiple non-intrusive and intrusive target searches
Ґ Tools and techniques for testing for Web site vulnerabilities
Ґ Probing and attacking network firewalls
Ґ Performing multiple remote target assessment
Ґ Performing multiple host assessment
Ґ Writing up the final report
*Class fees are subject to change

Request Class Dates or In-House Training of Classes.