Overview
National Security Database is a verified list of credible and trustworthy Information security experts who work to protect the National Critical Infrastructure and cyber space of the country. The database also acts as a security clearance credit for accessing and operating on information for higher positions in the industry.
A non-profit project of ISAC, supported by the Government of India, NSD empaneling for an Information Security Professional not only helps in gaining higher credibility but also makes it easier to both the Industry and the Government to identify professionals who can be trusted with protecting sensitive data.
NSD Specialty Domain – Penetration Testing
A penetration test, occasionally pentest, is a method of evaluating the security of a computer system or network by simulating an attack from malicious outsiders (who do not have an authorized means of accessing the organization’s systems) and malicious insiders (who have some level of authorized access).
The process involves an active analysis of the system for any potential vulnerabilities that could result from poor or improper system configuration, both known and unknown hardware or software flaws, and operational weaknesses in process or technical countermeasures. This analysis is carried out from the position of a potential attacker and can involve active exploitation of security vulnerabilities.
Security issues uncovered through the penetration test are presented to the system’s owner. Effective penetration tests will couple this information with an accurate assessment of the potential impacts to the organization and outline a range of technical and procedural countermeasures to reduce risks.
In this boot-camp, we will focus on in-depth approach and techniques to conduct penetration testing.
Pre-requisites
1.Thorough knowledge of Networking Concepts
2.In-Depth understanding of various OS Architectures
3.Experience in usage of common Open-Source as well as commercial Tools for VA/PT
4.Exposure to programming will be beneficial
5.In-Depth knowledge of Web Applications
Bootcamp Course Contents
The Art of Hacking
The Hackers’ Manifesto
The Cult behind it
The Scope
The Art of Breaking Things
Everything is a ‘System’
Looking Beyond the Obvious
The Fundamental Flaws
Developing Intuition
The Essential Skills
Becoming a Programmer
Understanding how Systems work
The Ability to adapt quickly
The Google-Skills
Understanding the Network
Networking Basics
Understanding the Network Devices
Finding your way
Common Network level Attacks
Wisdom of Network Exploitation
Understanding Web-Applications
Web Application basics
Seeing how everything works
Known & the unknown Vulnerabilities
Exploiting Web-Applications
Possibilities & limitations
What next?
Reconnaissance
Mapping the entire Network
Studying the Web-Apps
Going a step further
Vulnerability Scanning
Planning the Attack
Identifying the Weak Targets
Selecting the easiest route
Importance of Lab-Testing
Making the Attack Layout
Selecting the right tools
Taking on the System
Understanding the existing tools
The art of tweaking
Web-Shells & Backdoors
Finding Juicy Info
In-Depth Case-Studies
Post Exploitation Kung-Fu
When to stop?
Knowing the Possibilities
Digging Deeper
In-Depth Case-Studies
Over 100+ hands-on labs and 25 Case studies covered in the boot-camp!
Registration benefits include:
- 5 Day hands-on boot-camp on NSD specialty domain – Penetration Testing
- NSD Lab exam voucher for specialty domain – Penetration Testing
- Training Participation certificate from ISAC
- Study Materials (Hands-on lab videos in DVDs)
- Additional tool-kits for Penetration testing labs
Cost: INR 25,000/-
All applicable taxes extra!
Contact us for registration!