Über den Kurs
As organizations scramble to protect themselves and their customers against privacy or security breaches, the ability to conduct penetration testing is an emerging skill set that is becoming ever more valuable to the organizations seeking protection, and ever more lucrative for those who possess these skills. In this course, you will be introduced to general concepts and methodologies related to pen testing, and you will work your way through a simulated pen test for a fictitious company.
This course will prepare students for the CompTIA PenTest+ (PT0-002) exam and verify the successful candidate has the knowledge and skills required to:
– Plan and scope a penetration testing engagement
– Understand legal and compliance requirements
– Perform vulnerability scanning and penetration testing using appropriate tools and techniques, and then analyze the results
– Produce a written report containing proposed remediation techniques, effectively communicate results to the management team, and provide practical recommendations
Agenda
– Scoping Organizational/Customer Requirements
– Defining the Rules of Engagement
– Footprinting and Gathering Intelligence
– Evaluating Human and Physical Vulnerabilities
– Preparing the Vulnerability Scan
– Scanning Logical Vulnerabilities
– Analyzing Scanning Results
– Avoiding Detection and Covering Tracks
– Exploiting the LAN and Cloud
– Testing Wireless Networks
– Targeting Mobile Devices
– Attacking Specialized Systems
– Web Application-Based Attacks
– Performing System Hacking
– Scripting and Software Development
– Leveraging the Attack: Pivot and Penetrate
– Communicating During the PenTesting Process
– Summarizing Report Components
– Recommending Remediation
– Performing Post-Report Delivery Activities