The following is a list of available SANS Institute - Network Penetration Testing & Ethical Hacking classes at ISInc. If you do not see the course you are interested in, please contact us. We can setup dedicated, online and onsite classes too! Minimum students required: 4, Maximum students: 15
Find security flaws before the bad guys do.
Security vulnerabilities, such as weak configurations, unpatched systems, and botched architectures, continue to plague organizations. Enterprises need people who can find these flaws in a professional manner to help eradicate them from our infrastructures. Lots of people claim to have penetration testing, ethical hacking and security assessment skills, but precious few can apply these skills in a methodical regimen of professional testing to help make an organization more secure. This six day long course covers the ingredients for successful network penetration testing to help attendees improve their enterprise?s security stance.
We address detailed pre-test planning, including setting up an effective penetration testing infrastructure and establishing ground rules with the target organization to avoid surprises and misunderstanding. Then we discuss a time-testing methodology for penetration and ethical hacking across the network, evaluating the security of network services and the operating systems behind them.
Attendees will learn how to perform detailed reconnaissance, learning about a target?s infrastructure by mining blogs, search engines and social networking sites. We?ll then turn our attention to scanning, experimenting with numerous tools in hands-on exercises. Our exploitation phase will include the use of exploitation frameworks, stand-alone exploits and other valuable tactics, all with hands-on exercises in our lab environment. The class also discusses how to prepare a final report tailored to maximize the value of the test from both a management and technical perspective. The final portion of the class includes a comprehensive hands-on exercise in which students will conduct a penetration test against a hypothetical target organization following all of the steps.
The course also describes the limitations of penetration testing techniques and other practices that can be used to augment penetration testing to find vulnerabilities in architecture, policies and processes. We address how penetration testing should be integrated as a piece of a comprehensive enterprise information security program
SEC560 is one of the most technically rigorous courses offered by SANS. Attendees are expected to have a working knowledge of TCP/IP; cryptographic routines, such as DES< AES and MDS; and the Windows and Linux command lines before they step into class. Although SEC401 and SEC540 are not prerequisites for this course, these courses cover the groundwork that all SEC560 attendees are expected to know. The course is technically in-depth and programming knowledge is NOT required.
$3350.00
Serving the business community since 1982, ISInc provides in depth, hands-on training on a wide variety of topics
3017 Douglas Blvd., Ste 300
Roseville CA 95661
Tel: 800-877-1707
Email: [email protected]