H3X – Ethical Hacking Expert | Orchidseven Infosec

Overview

H3X (Ethical Hacking Expert) is the First track in OrchidSeven certifications. It tests the approach skills of a candidate towards security and Ethical hacking. Unlike other programs which are tool oriented, Orchidseven’s H3X focuses more on practical aspects of approach, hands-on with live hacking, Application security issues, Managed Services pre-sales skills, Security Management and a lot more… If you are already into Security then H3X is the Certification to complete the missing gaps.

Powered by Boot camps, the certification is only attainable with good hands-on knowledge. You must be able to deploy, design and attack a network practically before attempting the Lab Exam.

Objectives

Ethical Hacking Expert is an advanced certification program and at the end of the training, following objectives will be achieved:

- Design and create attack plan methodologies
- Understand social engineering aspects used for fraud
- Get an insight into enterprise security trend
- Use latest techniques to hack into systems and networks
- Harden your critical servers and workstations
- Conduct regular audits and penetration test in your company
- Understand Reverse engineering and application security
- Get hands-on experience in reversing a software
- Understand Digital Forensics
- Understand importance of compliance
- Plan overall security for your enterprise

Duration

40 hours (five days full time)

Pre-requisites

The candidate must have a background of Networking. Following are the recommended topics to learn before attending a training for H3X

- LAN concepts
- TCP/IP concepts
- Port and Sockets
- VPN technology
- IPSec concepts
- Overview of DNS/DHCP/RAS/CA servers
- Awareness of firewalls / IDS and Anti-virus
- Regular user of Internet

Course outline: H3X v3.2

The program covers the following domains:

Module One: Art of Hacking
History of hacking
Hacker Culture
Moral debate: Ethics
The need of hacking
Defining a system
People, Process and Technology
Knowing your enemy

Module Two: Scenario of Enterprise security
The truth behind enterprise security
What happens in a real company?
Technology Vs Management
Security budget across different verticals
Insider trading
Business Applications
Why is it always possible to hack?

Module Three: Planning and gathering Information
Making the Plan
Creating a layout
Defining a process to work
Designing attack strategy
Conceiving possible threats
Exit strategy
Information Gathering
Footprinting
Scanning
Identifying weakness
Enumerating your target
Finding Loopholes

Module Four: Social Engineering
Introduction to Social Engineering
Understanding your victims
Character analysis
Body language
‘Blink’ factor
Physiological factors
Using Mobile and Social Networking for effectively gaining trust
Getting personal on SMS and Social Networking
Crafting emotions
Finding the right words
Making a person attached to you
Using the art effectively for gaining information
Possible Psychological damage
Not crossing the line
Scripting in daily life
Games people play
Transactional Analysis
Introduction to Reality Hacking

Module Five: Taking on the system
System Architecture
Introduction to systems
Active Directory Fundamentals
Hacking Techniques
Hiding Data – NTFS streaming
Gaining root access
Privilege Escalation
Man in the Middle attacks
Finding Vulnerabilities
Using exploits

Module Six: Attacking passwords
Password Hacking
Attacking SAM
Hacking a Domain Controller Password
Breaking Linux server password
Breaking application passwords
Other approaches
Using Brute Force Tools
Steganalysis concepts
Using Rainbow Tables
Default Passwords of devices
Using Key loggers

Module Seven: Malwares, Rootkits and Trojans
Viruses and Trojans
What are Malwares?
Building a Trojan
Binding a Trojan to another file
Approaches for deploying a Trojan
Using Bit-torrent to spread Trojans
Targeting Victims by Games and movies
Worms
Target Harvesting
Rootkits and Botnets
What are rootkits?
Rootkits infection techniques
How botnets work?
Analysis of a Malware.

Module Eight: Reality Hacking
Reality Hacking
Understanding reality hacking
Weakest link in security
Application in real life
Exploiting Religion and Occult Science
People and belief
How religion plays a big role
Understanding occult science
Astrology and daily life
How is Faith Exploited
How to be a walking Linda Goodman
How to get personal information
Bluff master: How to be a palmist
How to induce self-fulfilling prophecies
Respecting the science
Into the Mind: Inflicting damage
Introducing hope
Crafting your words carefully
Turning people against each other
Planning a sabotage against a business
Confidence: boosting and destroying
Using information for hacking
Using phishing and spam based on information gathered
Crafting mails and messages to lure people

Module Nine: Getting Offensive
DoS / DDoS attacks
Conduction Basic DOS Attack
Targeting Firewalls and Routers
Defense – Clustering and NLB
Honeypots Overview
Deploying Honeypots
Sniffing: Ethereal and Wireshark
Encryption – overview
Session Hijacking: T-sight / Hunt
Understanding identity management
Using a Live Distribution Toolkits
Using BackTrack
Hiren Boot CD
Using BartPE based CDs
Other Security Boot Disks

Module Ten: Web Application Hacking
Web applications Architecture
Web server Security
Web Application threats
Basic Authentication Attacks
SQL Injection
Cross site scripting
Directory Traversal
Google Hacking
Google Maps / WikiMapia
Advanced Google search techniques
Search engine optimization
Blog Hacking
Using blogs to gather Information
Misleading people
Using Splogs

Module Eleven: Buffer Overflow Attacks & Reverse Engineering
Buffer Overflow Attacks
Using OllyDbg
Practical Buffer Overflow walkthrough
Reverse Engineering
Essence of Cracking
General Protection mechanisms
Ripping it apart
Studying the target Monitoring techniques
Disassembling with Win32Dasm
Hex-Editing a binary application
Cracking / Reversing
Finding Valid Serial Keys
Removing NAG screens
Creating patches

Module Twelve: IDS, Firewalls and Forensics
IDS and Firewalls
Firewalls and UTM devices
Evasion Techniques
Removing Traces
Forensics Introduction
The Scene of Cyber Crime
Forensics foundation
Scenario based case study
Acquiring Evidence
Recovering data
Co-relating with log files
Using Anti-Forensic Tools
Removing evidence
IT Act Law – overview

Module Thirteen: Mobile and Wireless Security
Overview of Mobile Platforms
Mobile Hacking approaches
Wireless security standards
WEP and inherent vulnerabilities
Sniffing Wireless networks
Breaking WEP
Breaking WPA
Wireless security – Best practices

Module Fourteen: VA & PT
Vulnerability Assessment
Building an approach
Using a VA framework
Using Nessus
Fuzzing
Penetration Testing
Using Metasploit
Building reports
Web application penetration testing
Using Acunetix WVS
Case Studies
Firefox Plugins
Security as a continuous process
Impact of Log Analysis & co-relation
Importance of Audits
Need of compliance

Module Fifteen: Patch Management and ISMS
Insider Threats
Having people centric approach
Role of training
Importance of demonstrating faith
Containing insider threats
Patch Management
The need for compliance
ISO27001 Overview
Asset and Risk Management
ISO27001 implementation
Best practices & Case study

Certification

H3X certification requires clearing the Lab Exam.