Category: Information Security  |  Vendor: LSO International

Advanced Penetration Tester (APT) Training and Certification - Pen Testing High Security Environments

Welcome hackers, to the newest and most heated training to increase your penetration testing skill set. Be ready to learn pentesting high security environments.

Summary
The Advanced Penetration Tester (APT) certification training class by LSO International is an intense, hands-on training class that makes traditional pentesting training classes look like a Security+ class. LSO International is a conglomorate of IT security and security training's most respected professionals. This team of industry seasoned professionals were looking to create a course that disects the art of hacking and creates professionals who deeply understand the "why's" of pen testing so that all traditional barriers can be broken.

Learn through hands-on training how to take different paths, use alternate methods and challenge traditional practices and software in penetration testing. This class will take the port-scanning security professional to a whole new frame of mind with a whole new level of skill sets. Hack into high security environments using tools and procedures that you have never thought of.

Advanced Penetration Tester Class Description

Advanced Penetration Testing (APT): Pentesting High Security Environments course is a five-day intensive that focuses attacking and defending highly secured environments such as 3-letter agencies, DoD, financial organizations, federal organizations, and large companies.

This is NOT your normal ethical hacking course. You won't be attacking unpatched Windows 2000 Servers, and you won't be learning a bunch of outdated tools like most ethical hacking courses.

In APT, you will be learning how to attack new operating systems such as Windows Vista, Windows 7, Windows Server 2008, and the latest Linux servers. All of these servers will be patched, and hardened. Both Network and Host-based Intrusion Detection/Preventions systems (IDS/IPS) will be in place as well. The learning curve is high, but the rewards are astronomical.

The course starts with attacking heavily protected environments from the outside and dealing with things like Load Balancing, Deep Packet Inspection, and Network-Based IDS/IPS. Next is attacking web applications and dealing with common application security measures in PHP/ASP.NET, and Web Application Firewalls.

Then the course moves on to attacking from the LAN, dealing with NAC solutions, locked down workstations/GPOs, and Host-Based IDS/IPS. Then finally the last section of the course covers gaining control of Active Directory.

Pentesting High Security Environments is NOT a death by powerpoint course. 80% of class is hands-on hacking labs.

Students that are Network/System Administrators with three (3) or more years experience working in environments such as financial institutions, DoD networks, or similar high security environments will benefit greatly from this course. It is however primarily designed for Network/Web Application Penetration testers that are looking for the little tricks that will help them better attack high security environments.


APT Course Syllabus

Advanced Scanning

        1. Bypassing Network Filtering

Stealth Scanning

        1. Bypassing IDS/IPS

Attacking From the Web

        1. XSS to command-shell

        2. SQL Injection to command-shell

                MS-SQL
                MySQL
                Oracle

        3. File Handling to command-shell

                File Upload to command-shell

                RFI to command-shell

                LFI to command-shell

Client-Side Pentesting

        1. Bypassing Antivirus

               Packing Binaries

               Modifying Binaries with OllyDBG

               Writing Custom Trojans

        2. Email Collection

        3. Pivoting into the LAN

Attacking From the LAN

        USB Hacksaw/USB Switchblade

        Bypassing Port Security

        Bypassing NAC Solutions

Breaking out of Restricted Environments

        Citrix in Kiosk Mode

        Restricted Desktops

        Group Policy Object Restricted Applications

Bypassing Network-Based IDS/IPS

        Enumerating the network

        Defeating IDS/IPS Signatures

Privilege Escalation
        Privilege Escalation in Windows XP

        Privilege Escalation in Windows Vista

Post-Exploitation

        Remote Command Execution

        Automating Tasks

        Enabling RDP/VNC

        Persistence


General Course Info

The course will be comprised of 5 days of 50 minute sessions with 5-10 minute breaks, and an hour for lunch.

Pre-requisites:

Students must be familiar with IT Security best practices, and have a good understanding of TCP/IP and common web technologies.

    * Basic Windows administration for servers and workstations

    * Basic Linux/*NIX system administration skill

    * Basic command line proficiency on both Windows and *NIX systems

 Students should be familiar with the following web technologies and languages:

    * HTTP
    * HTML
    * Javascript
    * ASP
    * PHP
    * SQL

Students should also be familiar with Metasploit, and VMWare.


Pricing

$3,500
All software and necessary equipment is provided.

*Repeat ACE Students remember to ask for the student discount.*

 


News Related to APT


There are no current articles related to this course. Please check back soon!



Copyright © 2010ACE Academy Of Computer Education. All Rights Reserved.