Computer attackers are ripping our networks and systems apart in novel ways, while constantly improving their techniques. This day-long course covers the third step of many hacker attacks: gaining access.

Attackers employ a variety of strategies to take over systems, from the network level up to the application level. This section covers the attacks in depth, from the details of buffer overflow and format string attack techniques to the latest in session hijacking of supposedly secure protocols. Additionally, you'll get hands-on experience in running snifers and the incredibly flexible Netcat tool.

Administrators need to get into the "meat" of how the attacks and their associated defenses work to really defend against these attacks. For each attack, the course explains the vulnerability, how various tools exploit it, the signature of the attack, and how to harden the system or application against the attack.

Course Topics Include

• Session Hijacking: From Telnet to SSL and SSH
• Person-in-the-Middle Attacks
• Passive Sniffing

Gathering and Parsing Packets

• Active Sniffing: ARP Cache Poisoning and DNS Injection
• DNS Cache Poisoning: Redirecting Traffic on the Internet
• Using and Abusing Netcat, Including Backdoors and Nasty Relays
• IP Address Spoofing Variations

Operating System and Application-Level Attacks

• Buffer Overflows in Depth
• Format String Attacks

• Using Netcat to transfer files, create backdoors, and "shovelp;shell
• Netcat relays to obscure the source of an attack
• Replay attacks using Netcat

Hands-on Exercises with the Following Tools:

• Sniffers, Including Tcpdump and Sniffit 
• Sniffer Detection Tools, Including ifconfig, ifstatus, and promiscdetect
• Netcat for transferring files, creating backdoors, and setting up relays

Um die vollständige Liste unserer Kurse anzusehen, klicken Sie bitte hier