Ethical Hacking and Network Penetration Testing Hands-On Training

Dimension Data uses the power of technology to help organisations achieve great things in the digital era. As a member of the NTT Group, we accelerate our clients’ ambitions through digital infrastructure, hybrid cloud, workspaces for tomorrow, and cybersecurity. With a turnover of USD 7.5 billion, offices in 57 countries, and 31,000 employees, we deliver wherever our clients are, at every stage of their technology journey. We’re proud to be the Official Technology Partner of Amaury Sport Organisation, organiser of the Tour de France, and the title partner of the cycling team, Team Dimension Data for Qhubeka.

Dimension Data Luxembourg PSF

Course description
Security is an issue that no forward-looking organisation can afford to ignore. Yet, only when a clear and in-depth understanding of the existing security posture, vulnerabilities and risk tolerance exists, can an organisation deal with.
In this intermediate to advanced level class, students will learn the art of exploiting at network and system level. The training will lead the students through several common security vulnerabilities and demonstrate how they're actually exploited using common tools and hacking trickery. We build scenarios using the compromised system as a pivot point to further penetrate the infrastructure, to demonstrate the potential impact of a successful attack. 
Our methodology aligns to best practice standards and guidelines from OSSTMM, NIST and OWASP.
<DIV CLASS="O0">•Identify attack paths that could lead to network or system breaches</DIV>
<DIV CLASS="O0">•Reveal the security risk of a vulnerability by demonstrating how an attacker could steal and manipulate data</DIV>
<DIV CLASS="O0">•By chaining attacks, determine if an attacker could gain administrator privileges via local privilege escalation techniques</DIV>
<DIV CLASS="O0">•Proven Penetration Testing Methodology</DIV>
<DIV CLASS="O0">•Use the tools and methodologies hackers use efficiently</DIV>
Audience
IT Security Professionals, System and network administrators, Penetration testers
Course Length
3 days
Course Style
This is a highly practical, hands-on course where students are encouraged to experiment, discuss, explore and exploit
Course Outline
<DIV CLASS="O0">•Advanced Port and Vulnerability Scanning </DIV>
<DIV CLASS="O0">•Exploit categories (server-side, client-side, and local privilege escalation)</DIV>
<DIV CLASS="O0">•Metasploit Framework and advanced usage of the Meterpreter</DIV>
<DIV CLASS="O0">•Advanced Password cracking (Rainbow table password attack, Password cracking using GPU, Pass-the-hash attacks, Cached domain credentials)</DIV>
<DIV CLASS="O0">•L2 attacks in the internal network</DIV>
<DIV CLASS="O1">oRemote Desktop Protocol (RDP) and man-in-the-middle attacks</DIV>
<DIV CLASS="O1">oSoftware updates attacks using Evilgrade</DIV>
<DIV CLASS="O0">•Windows exploitation against modern OS security features (ALSR, DEP, etc.)</DIV>
<DIV CLASS="O0">•Buffer Overflow basics and exploit coding (giving a better understanding how exploitation frameworks like Metasploit are working)</DIV>
<DIV CLASS="O0">•Client exploitation (From basic domain user to domain admin, bypassing Anti-Virus tools)</DIV>
<DIV CLASS="O0">•Post-Exploitation Capabilities (Pivot to backend system, privilege escalation)</DIV>
Methodology
Our training provides a strong understanding of penetration testing concepts and methodologies, as well as hands-on experience with crucial penetration testing tools. You will get the latest tools and techniques using Metasploit to exploit targets, and post exploitation techniques using Mimikatz, and Powershell together to enhance your attack. Utilize 'Pivoting' techniques to route into internal networks from compromised perimeter nodes to gain further exploitation. 
For each vulnerability, choose the right exploitation methods with 100% practical hands on examples of real life scenarios:
Definition - defining the vulnerability and its origin in the code
Impact - presenting the potential impact of an exploitation of the vulnerability
Hands-on Labs - explaining how to detect the vulnerability (manually or using vulnerability scanners) and presenting several attack scenarios showing how an hacker would exploit the vulnerability
Agenda
Day 1
• The Fundamentals: Pitfalls, Methodologies, Toolkits and more
• Reconnaissance and Open Source Intelligence (OSINT) Gathering
• Vulnerability Scanning and Enumeration
Day 2
• Advanced Metasploit
• Buffer Overflows
• Exploiting Linux Environments
• Exploiting Windows Environments
Day 3
• Hacking Windows Domains (Active Directory)
<DIV CLASS="O1">oDomain and User Enumeration</DIV>
<DIV CLASS="O1">oAppLocker / GPO Restriction Bypass</DIV>
<DIV CLASS="O1">oLocal Privilege Escalation</DIV>
<DIV CLASS="O1">oPost Exploitation #1 (AMSI Bypass & Mimikatz)</DIV>
<DIV CLASS="O1">oPost Exploitation #2 (LSASecrets)</DIV>
• Password Cracking
• Client-Side Exploitation
• Post Exploitation
• Advanced Post-Exploitation with Powershell
• Capture the Flag
Price: EUR 2,400 (discounts for groups of 3 people or more)
Want to register or hear more about the training? Please contact us at frederic.lavendhomme@dimensiondata.com

Dimension Data Luxembourg

Our {communityGuidelinesLink} describe the sort of content we prohibit on Eventbrite. If you suspect an event may be in violation, you can report it to us so we can investigate.

To report other categories of prohibited or illegal content, submit {link}

Ethical Hacking and Network Penetration Testing Hands-On Training

More events from Dimension Data Luxembourg PSF

Discover more events from Dimension Data Luxembourg PSF, from Science & Tech to other experiences you might love.

Ethical Hacking and Network Penetration Testing Hands-On Training

More events from Dimension Data Luxembourg PSF

Discover more events from Dimension Data Luxembourg PSF, from Science & Tech to other experiences you might love.

You might also like...

Browse more events with different dates, prices, and formats to find your next great experience.