Advance Hacking Syllabus

ETHICAL HACKING SYLLABUS

The Advance Level Hacking Syllabus is as follows:-

Network Security Expert Syllabus

• Security testing methodologies

• The Ethical Hacking Profession

• Passive Intelligence Gathering – 2007 Version

• Network Sweeps

• Stealthily Network Recon

• Passive traffic identification

• Identifying system vulnerabilities

• Abusing Domain Name System (DNS)

• Abusing Simple Network Management Protocol(SNMP)

Exploit Writing Syllabus

• Introduction to Remote Exploits

• Engineering remote exploits

• Running shellcode in RAM vs. on disk

• Heap Buffer Overflows

• Compromising Windows 2003 Server Systems

• Compromising Solaris Unix and Linux Systems

• Attacking RDP (Remote Desktop Protocol) in

Windows XP, 2003 & Vista

• Windows password weaknesses & Rainbow Tables

• Unix password weaknesses

• Attacking Cisco’s IOS password weaknesses

Trojan genres

• Windows, Unix and Linux Trojans

• Kernel Mode Windows Rootkits – System Call

Hijacking and Direct Kernel Object Modification

• Kernel Mode Linux Rootkits

• Covert communication channels

• Spoofing endpoints of communication tunnels

• Tunneling through IPSec VPNs by abusing ESP

• Steganographic Tunnels

• Remote command execution

• Sniffing and hijacking SSL encrypted sessions

• Installing sniffers on low privilege account in

Windows 2003 Server

• Stealthy Remote keylogger installation

• Circumventing Antivirus

Cyber Forensics Expert 

• Raw binary editing to prevent forensic

investigations

• Editing the Windows Event Log

• Abusing Windows Named Pipes for Domain

Impersonation

• Impersonation of other Users- Hijacking kernel tokens

• Disguising network connections

• Attacking Cisco IOS

• Attacking STP & BGP protocols

• Wireless Insecurity

• Breaking Wireless Security – WEP, WPA, WPA2

• Blinding IDS & IPS

• Attacking IDS & IPS