Certified Ethical Hacker Course Outline

Certified Ethical Hacker

Revision: TE9948_20070316

(26.47 KB) View, Download, or Print Course as a PDF.

Course Length:

5 Days

Course Description:

This class will immerse the student into an interactive environment where they will be shown how to scan, test, hack and secure their own systems. The lab intensive environment gives each student in-depth knowledge and practical experience with the current essential security systems. Students will begin by understanding how perimeter defenses work and then be lead into scanning and attacking their own networks, no real network is harmed. Students then learn how intruders escalate privileges and what steps can be taken to secure a system. Students will also learn about Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation. When a student leaves this intensive 5 day class they will have hands on understanding and experience in Ethical Hacking. This course prepares you for EC-Council Certified Ethical Hacker exam 312-50.

Who Should Attend:

This course will significantly benefit security officers, auditors, security professionals, site administrators, and anyone who is concerned about the integrity of the network infrastructure.

Benefits of Attendance:

Upon completion of this course, students will be able to:

Understand how intruders escalate privileges and what steps can be taken to secure a system.
Understand Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation.
Understand Ethical Hacking.

Prerequisites:

Prior to attending this course, you will be asked to sign an agreement stating that you will not use the newly acquired skills for illegal or malicious attacks and you will not use such tools in an attempt to compromise any computer system, and to indemnify EC-Council with respect to the use or misuse of these tools, regardless of intent. Not anyone can be a student - the Accredited Training Centers (ATC) will make sure the applicants work for legitimate companies.

Course Outline:

Introduction to Ethical Hacking
1. Why Security?
2. Essential Terminologies
3. Elements of Security
4. The Security, Functionality, and Ease of Use Triangle
5. What Does a Malicious Hacker Do?
6. Types of Hacker Attacks
7. Operating System attacks
8. Application-level attacks
9. Shrink Wrap code attacks
10. Misconfiguration attacks
11. Hacktivism
12. Hacker Classes
13. Hacker Classes and Ethical Hacking
14. What Do Ethical Hackers Do?
15. Can Hacking be Ethical?
16. How to Become an Ethical Hacker?
17. Skill Profile of an Ethical Hacker
18. What is Vulnerability Research?
19. Why Hackers Need Vulnerability Research?
20. Vulnerability Research Tools
21. Vulnerability Research Websites
22. How to Conduct Ethical Hacking?
23. Approaches to Ethical Hacking
24. Ethical Hacking Testing
25. Ethical Hacking Deliverables
26. Computer Crimes and Implications
27. Legal Perspective
Footprinting
1. Revisiting Reconnaissance
2. Defining of Footprinting
3. Information Gathering Methodology
4. Unearthing Initial Information
5. Finding a Company’s URL
6. Internal URL
7. Extracting Archive 0f a Website
8. Google Search for Company’s Info.
9. People Search
10. Footprinting Through Job Sites
11. Passive Information Gathering
12. Competitive Intelligence Gathering
13. Why Do You Need Competitive Intelligence?
14. Companies Providing Competitive Intelligence Services
15. Competitive Intelligence
16. Public and Private Websites
17. Tools
18. Whois
19. Nslookup
20. Necrosoft
21. ARIN
22. Traceroute
23. Neo Trace
24. GEOSpider
25. Geowhere
26. GoogleEarth
27. VisualRoute Trace
28. Kartoo Search Engine
29. Touchgraph Visual Browser
30. SmartWhois
31. VisualRoute Mail Tracker
32. eMailTrackerPro
33. Read Notify
34. HTTrack Web Site Copier
35. Web Ripper
36. robots.txt
37. Website watcher
38. E-mail Spider
39. Power E-mail Collector Tool
40. Steps to Perform Footprinting
Scanning
1. Definition of Scanning
2. Types of Scanning
3. Port Scanning
4. Network Scanning
5. Vulnerability Scanning
6. Objectives of Scanning
7. CEH Scanning Methodology
Enumeration
1. Overview of System Hacking Cycle
2. What is Enumeration?
3. Techniques for Enumeration
4. Netbios Null Sessions
5. Tool
6. DumpSec
7. NetBIOS Enumeration Using Netview
8. Nbtstat
9. SuperScan4
10. Enum
11. sid2user
12. user2sid
13. GetAcct
14. Null Session Countermeasures
15. PSTools
16. SNMP Enumeration
17. Management Information Base
18. Tools
19. UNIX Enumeration
20. SNMP UNIX Enumeration
21. SNMP Enumeration Countermeasures
22. Tools
23. Steps to Perform Enumeration
System Hacking
1. Cracking Passwords
2. Password Types
3. Types of Password Attacks
4. Passive Online – Wire Sniffing
5. Passive Online Attacks
6. Active Online – Password Guessing
7. Offline Attacks
8. Non-Technical Attacks
9. Password Mitigation
10. Permanent Account Lockout – Employee Privilege Abuse
11. Administrator Password Guessing
12. Manual Password Cracking Algorithm
13. Automatic Password Cracking Algorithm
14. Performing Automated Password Guessing
15. Tools
16. Microsoft Authentication - LM, NTLMv1, and NTLMv2
17. Kerberos Authentication
18. What is LAN Manager Hash?
19. Salting
20. Tools
21. Password Sniffing
22. How to Sniff SMB Credentials?
23. Sniffing Hashes Using LophtCrack
24. Tools
25. SMBRelay Weaknesses & Countermeasures
26. Password Cracking Countermeasures
27. LM Hash Backward Compatibility
28. How to Disable LM HASH?
29. Tools
30. Escalating Privileges
31. Privilege Escalation
32. Cracking NT/2000 Passwords
33. Active@ Password Changer
34. Change Recovery Console Password
35. Privilege Escalation Tool: x.exe
36. Executing applications
37. What is Spyware?
38. Tools
39. Keylogger Countermeasures
40. Anti-Keylogger
41. PrivacyKeyboard
42. Hiding Files
43. Hacking Tool: RootKit
44. Why Rootkits?
45. Rootkits in Linux
46. Detecting Rootkits
47. Rootkit Detection Tools
48. Sony Rootkit Case Study
49. Planting the NT/2000 Rootkit
50. Rootkits
51. Rootkit Countermeasures
52. Patchfinder2.0
53. RootkitRevealer
54. Creating Alternate Data Streams
55. How to Create NTFS Streams?
56. NTFS Stream Manipulation
57. NTFS Streams Countermeasures
58. NTFS Stream Detectors
59. What is Steganography?
60. Tools
61. Video Steganography
62. Steganography Detection
63. SIDS ( Stego intrusion detection system )
64. High-Level View
65. Tool : dskprobe.exe
66. Covering tracks
67. Disabling Auditing
68. Clearing the Event Log
69. Tools
Trojans and Backdoors
1. Introduction
2. Effect on Business
3. What is a Trojan?
4. Overt and Covert Channels
5. Working of Trojans
6. Different Types of Trojans
7. What Do Trojan Creators Look For?
8. Different Ways a Trojan Can Get into a System
9. Indications of a Trojan Attack
10. Ports Used by Trojans
11. How to Determine which Ports are “Listening”?
12. Classic Trojans Found in the Wild
13. Trojans
14. Tini
15. iCmd
16. NetBus
17. Netcat
18. Beast
19. MoSucker
20. Proxy Server
21. SARS Trojan Notification
22. Wrappers
23. Wrapper Covert Program
24. Wrapping Tools
25. One file EXE Maker
26. Yet Another Binder
27. Pretator Wrapper
28. Packaging Tool: WordPad
29. RemoteByMail
30. Tool: Icon Plus
31. Defacing Application: Restorator
32. HTTP Trojans
33. Trojan Attack through Http
34. HTTP Trojan (HTTP RAT)
35. Shttpd Trojan - HTTP Server
36. Reverse Connecting Trojans
37. Nuclear RAT Trojan (Reverse Connecting)
38. Tool: BadLuck Destructive Trojan
39. ICMP Tunneling
40. ScreenSaver Password Hack Tool – Dummylock
41. Trojan
42. Hacking Tool: Loki
43. Atelier Web Remote Commander
44. Trojan Horse Construction Kit
45. How to Detect Trojans?
46. Tools
47. Delete Suspicious Device Drivers
48. Inzider - Tracks Processes and Ports
49. Tools
50. Anti-Trojan Software
51. Evading Anti-Virus Techniques
52. Evading Anti-Trojan/Anti-Virus Using Stealth Tools v2.0
53. Backdoor Countermeasures
54. Tools
55. Tripwire
56. System File Verification
57. MD5sum.exe
58. Microsoft Windows Defender
59. How to Avoid a Trojan Infection?
Sniffers
1. Definition of Sniffing
2. Protocols Vulnerable to Sniffing
3. Types of Sniffing
4. ARP - What is Address Resolution Protocol?
5. ARP Spoofing Attack
6. Tools for ARP Spoofing
7. MAC Flooding
8. Tools for MAC Flooding
9. Threats of ARP Poisoning
10. IRS – ARP Attack Tool
11. ARPWorks Tool
12. Tool: Nemesis
13. Sniffer Hacking Tools (dsniff package)
14. DNS Poisoning Techniques
15. Types of DNS Poisoning:
16. Interactive TCP Relay
17. Sniffers
18. Tools
19. How to Detect Sniffing?
20. AntiSniff Tool
21. ArpWatch Tool
22. Countermeasures
Denial of Service
1. What are Denial of Service Attacks?
2. Goal of DoS
3. Impact and the Modes of Attack
4. Types of Attacks
5. DoS Attack Classification
6. DoS Attack Tools
7. Botnets
8. Uses of botnets
9. Types of Bots
10. Tool: Nuclear Bot
11. What is DDoS Attack?
12. Characteristics of DDoS Attacks
13. DDOS Unstoppable
14. Agent Handler Model
15. DDoS IRC based Model
16. DDoS Attack Taxonomy
17. Amplification Attack
18. Reflective DNS Attacks
19. Reflective DNS Attacks Tool: ihateperl.pl
20. DDoS Tools
21. Worms
22. Slammer Worm
23. Spread of Slammer Worm – 30 min
24. MyDoom.B
25. SCO Against MyDoom Worm
26. How to Conduct a DDoS Attack
27. The Reflected DoS Attacks
28. Reflection of the Exploit
29. Countermeasures for Reflected DoS
30. DDoS Countermeasures
31. Taxonomy of DDoS Countermeasures
32. Preventing Secondary Victims
33. Detect and Neutralize Handlers
34. Detect Potential Attacks
35. Mitigate or Stop the Effects of DDoS Attacks
36. Deflect Attacks
37. Post-attack Forensics
38. Packet Traceback
Social Engineering
1. What is Social Engineering?
2. Human Weakness
3. “Rebecca” and “Jessica”
4. Office Workers
5. Types of Social Engineering
6. Preventing Insider Threat
7. Common Targets of Social Engineering
8. Factors that make Companies Vulnerable to Attacks
9. Why is Social Engineering Effective?
10. Warning Signs of an Attack
11. Tool : Netcraft Anti-Phishing Toolbar
12. Phases in a Social Engineering Attack
13. Behaviors Vulnerable to Attacks
14. Impact on the Organization
15. Countermeasures
16. Policies and Procedures
17. Security Policies - Checklist
18. Phishing Attacks and Identity Theft
19. What is Phishing?
20. Phishing Report
21. Attacks
22. Hidden Frames
23. URL Obfuscation
24. URL Encoding Techniques
25. IP Address to Base 10 Formula
26. Karen’s URL Discombobulator
27. HTML Image Mapping Techniques
28. Fake Browser Address Bars
29. Fake Toolbars
30. Fake Status Bar
31. DNS Cache Poisoning Attack
Session Hijacking
1. What is Session Hijacking?
2. Spoofing vs. Hijacking
3. Steps in Session Hijacking
4. Types of Session Hijacking
5. The 3-Way Handshake
6. TCP Concepts 3-Way Handshake
7. Sequence Number Prediction
8. TCP/IP Hijacking
9. RST Hijacking
10. RST Hijacking Tool: hijack_rst.sh
11. Programs that Perform Session Hijacking
12. Hacking Tools
13. Remote TCP Session Reset Utility
14. Dangers Posed by Hijacking
15. Protecting against Session Hijacking
16. Countermeasure: IP Security
17. IP-SEC
18. Module 11: Hacking Web Servers
19. How Web Servers Work
20. How are Web Servers Compromised?
21. How are Web Servers Defaced?
22. Apache Vulnerability
23. Attacks Against IIS
24. Unicode
25. Hacking Tool: IISxploit.exe
26. Msw3prt IPP Vulnerability
27. WebDAV / ntdll.dll Vulnerability
28. RPC DCOM Vulnerability
29. ASN Exploits
30. ASP Trojan (cmd.asp)
31. IIS Logs
32. Network Tool: Log Analyzer
33. Hacking Tool: CleanIISLog
34. Unspecified Executable Path Vulnerability
35. Metasploit Framework
36. Immunity CANVAS Professional
37. Core Impact
38. Hotfixes and Patches
39. What is Patch Management?
40. Solution: UpdateExpert
41. Patch Management Tool
42. cacls.exe Utility
43. Vulnerability Scanners
44. Online Vulnerability Search Engine
45. Network Tools
46. Hacking Tool: WebInspect
47. Network Tool: Shadow Security Scanner
48. SecureIIS
49. Countermeasures
50. File System Traversal Countermeasures
51. Increasing Web Server Security
52. Web Server Protection Checklist
Web Application Vulnerabilities
1. Web Application Setup
2. Web Application Hacking
3. Anatomy of an Attack
4. Web Application Threats
5. Cross-Site Scripting/XSS Flaws
6. Countermeasures
7. SQL Injection
8. Command Injection Flaws
9. Cookie/Session Poisoning
10. Parameter/Form Tampering
11. Buffer Overflow
12. Directory Traversal/Forceful Browsing
13. Cryptographic Interception
14. Cookie Snooping
15. Authentication Hijacking
16. Log Tampering
17. Error Message Interception
18. Attack Obfuscation
19. Platform Exploits
20. DMZ Protocol Attacks
21. Security Management Exploits
22. Web Services Attacks
23. Zero-Day Attacks
24. Network Access Attacks
25. TCP Fragmentation
26. Hacking Tools
Web-based Password Cracking Techniques
1. Definition of Authentication
2. Authentication Mechanisms
3. How to Select a Good Password?
4. Things to Avoid in Passwords
5. Changing Your Password
6. Protecting Your Password
7. How Hackers get hold of Passwords?
8. Windows XP: Remove Saved Passwords
9. Microsoft Password Checker
10. What is a Password Cracker?
11. Modus Operandi of an Attacker Using Password Cracker
12. How does a Password Cracker Work?
13. Classification of Attacks
14. Password Guessing
15. Query String
16. Cookies
17. Dictionary Maker
18. Available Password Crackers
19. Hacking Tools
20. Countermeasures
SQL Injection
1. Introducing SQL injection
2. Exploiting Web Applications
3. SQL Injection Steps
4. SQL Injection Techniques
5. How to Test for SQL Injection Vulnerability?
6. How does it Work?
7. Executing Operating System Commands
8. Getting Output of SQL Query
9. Getting Data from the Database Using ODBC Error Message
10. How to Mine all Column Names of a Table?
11. How to Retrieve any Data?
12. How to Update/Insert Data into Database?
13. Automated SQL Injection Tool
14. SQL Injection in Oracle
15. SQL Injection in MySql Database
16. Attack against SQL Servers
17. SQL Server Resolution Service (SSRS)
18. Osql L- Probing
19. SQL Injection Automated Tools
20. SQL Injection Countermeasures
21. Preventing SQL Injection Attacks
22. SQL Injection Blocking Tool: SQLBlock
23. Acunetix Web Vulnerability Scanner
Hacking Wireless Networks
1. Introduction to Wireless Networking
2. Wired Network vs. Wireless Network
3. Effects of Wireless Attacks on Business
4. Types of Wireless Networks
5. Advantages and Disadvantages of a Wireless Network
6. Wireless Standards
7. Related Technology and Carrier Networks
8. Antennas
9. Cantenna
10. Wireless Access Points
11. SSID
12. Beacon Frames
13. Is the SSID a Secret?
14. Setting Up a WLAN
15. Detecting a Wireless Network
16. How to Access a WLAN
17. Terminologies
18. Authentication and Association
19. Authentication Modes
20. Authentication and (Dis)Association Attacks
21. Rogue Access Points
22. Tools to Generate Rogue Access Points: Fake AP
23. Tools to Detect Rogue Access Points: Netstumbler
24. Tools to Detect Rogue Access Points: MiniStumbler
25. Wired Equivalent Privacy (WEP)
26. What is WPA?
27. WPA Vulnerabilities
28. WEP, WPA, and WPA2
29. Steps for Hacking Wireless Networks
30. Cracking WEP
31. Weak Keys (a.k.a. Weak IVs)
32. Problems with WEP’s Key Stream and Reuse
33. Automated WEP Crackers
34. Pad-Collection Attacks
35. XOR Encryption
36. Stream Cipher
37. WEP Tools
38. Temporal Key Integrity Protocol (TKIP)
39. LEAP: The Lightweight Extensible Authentication Protocol
40. LEAP Attacks
41. MAC Sniffing and AP Spoofing
42. Tool to Detect MAC Address Spoofing: Wellenreiter V2
43. Man-in-the-Middle Attack (MITM)
44. Denial-of-Service Attacks
45. Dos Attack Tool: Fatajack
46. Phone Jammers
47. Scanning Tools
48. Sniffing Tools
49. Multiuse Tool: THC-RUT
50. PCR-PRO-1k Hardware Scanner
51. Tools
52. Securing Wireless Networks
53. Auditing Tool: BSD-Airtools
54. AirDefense Guard
55. WIDZ: Wireless Intrusion Detection System
56. Radius: Used as Additional Layer in Security
57. Google Secure Access
Virus and Worms
1. Introduction to Virus
2. Virus History
3. Characteristics of a Virus
4. Working of Virus
5. Why People create computer viruses?
6. Symptoms of Virus-Like Attack
7. Virus Hoaxes
8. Chain Letters
9. How is a Worm different from a Virus?
10. Indications of Virus Attack
11. Hardware Threats
12. Software Threats
13. Virus Damage
14. Modes of Virus Infection
15. Stages of Virus Life
16. Virus Classification
17. How does a Virus Infect?
18. Storage Patterns of a Virus
19. System Sector Viruses
20. Stealth Virus
21. Bootable CD-ROM Virus
22. Self-Modification
23. Encryption with a Variable Key
24. Polymorphic Code
25. Viruses
26. Famous Virus/Worms – JS.Spth
27. Klez Virus Analysis
28. Writing a Simple Virus Program
29. Virus Construction Kits
30. Virus Detection Methods
31. Virus Incident Response
32. What is Sheep Dip?
33. Sheep Dip Computer
34. Virus Analysis - IDA Pro Tool
35. Prevention is Better than Cure
36. Latest Viruses
37. Top 10 Viruses- 2006
38. Anti-Virus Software
39. Socketshield
40. Popular Anti-Virus Packages
41. Virus Databases
Physical Security
1. Security Statistics
2. Physical Security Breach Incidents
3. Understanding Physical Security
4. What Is the Need for Physical Security?
5. Who Is Accountable for Physical Security?
6. Factors Affecting Physical Security
7. Physical Security Checklist
8. Information Security
9. EPS (Electronic Physical Security)
10. Wireless Security
11. Laptop Theft: Security Statistics
12. Laptop Theft
13. Laptop Security Tools
14. Laptop Tracker - XTool Computer Tracker
15. Tools to Locate Stolen Laptops
16. Stop's Unique, Tamper-proof Patented Plate
17. Tool: TrueCrypt
18. Laptop Security Countermeasures
19. Mantrap
20. TEMPEST
21. Challenges in Ensuring Physical Security
22. Spyware Technologies
23. Spying Devices
24. Physical Security: Lock Down USB Ports
25. Tool: DeviceLock
26. Blocking the Use of USB Storage Devices
27. Track Stick GPS Tracking Device
Linux Hacking
1. Why Linux?
2. Linux Distributions
3. Linux – Basics
4. Linux Live CD-ROMs
5. Basic Commands of Linux
6. Linux File Structure
7. Linux Networking Commands
8. Directories in Linux
9. Compiling the Linux Kernel
10. How to Install a Kernel Patch?
11. Compiling Programs in Linux
12. GCC Commands
13. Make Install Command
14. Linux Vulnerabilities
15. Chrooting
16. Why is Linux Hacked?
17. Linux Vulnerabilities in 2005
18. How to Apply Patches to Vulnerable Programs?
19. Scanning Networks
20. Tools
21. Password Cracking in Linux
22. Firewall in Linux: IPTables
23. Basic Linux Operating System Defense
24. SARA (Security Auditor's Research Assistant)
25. Linux Tool
26. Linux Loadable Kernel Modules
27. Hacking Tool: Linux Rootkits
28. Rootkits
29. Rootkit Countermeasures
30. Linux Tools: Application Security
31. Advanced Intrusion Detection Environment (AIDE)
32. Linux Tools
33. Linux Security Countermeasures
34. Steps for Hardening Linux
Evading IDS, Firewalls, and Honeypots
1. Introduction to Intrusion Detection Systems
2. Terminologies
3. Intrusion Detection System (IDS)
4. Firewall
5. Firewall Identification
6. Firewalking
7. Banner Grabbing
8. Breaching Firewalls
9. Bypassing a Firewall Using HTTP Tunnel
10. Placing Backdoors Through Firewalls
11. Hiding behind a Covert Channel: LOKI
12. ACK Tunneling
13. Tools to Breach Firewalls
14. Common Tool for Testing Firewall & IDS
15. Honeypot
16. What is a Honeypot?
17. The Honeynet Project
18. Types of Honeypots
19. Advantages and Disadvantages of a Honeypot
20. Where to Place a Honeypot ?
21. Honeypots
22. Physical and Virtual Honeypots
23. Tools to Detect Honeypots
24. What to do When Hacked?
Buffer Overflows
1. Why are Programs/Applications Vulnerable?
2. Buffer Overflows
3. Reasons for Buffer Overflow Attacks
4. Knowledge Required to Program Buffer Overflow Exploits
5. Types of Buffer Overflows
6. How to Detect Buffer Overflows in a Program
7. Attacking a Real Program
8. NOPS
9. How to Mutate a Buffer Overflow Exploit
10. Defense Against Buffer Overflows
11. Tool to Defend Buffer Overflow
12. Vulnerability Search – ICAT
13. Simple Buffer Overflow in C
14. Code Analysis
Cryptography
1. Public-key Cryptography
2. Working of Encryption
3. Digital Signature
4. RSA (Rivest Shamir Adleman)
5. RC4, RC5, RC6, Blowfish
6. Algorithms and Security
7. Brute-Force Attack
8. RSA Attacks
9. Message Digest Functions
10. One-way Bash Functions
11. MD5
12. SHA (Secure Hash Algorithm)
13. SSL (Secure Sockets Layer)
14. RC5
15. What is SSH?
16. SSH (Secure Shell)
17. Government Access to Keys (GAK)
18. RSA Challenge
19. distributed.net
20. Cleversafe Grid Builder
21. PGP (Pretty Good Privacy)
22. Code Breaking: Methodologies
23. Cryptography Attacks
24. Disk Encryption
25. Hacking Tool
Penetration Testing
1. Introduction to Penetration Testing
2. Categories of Security Assessments
3. Vulnerability Assessment
4. Limitations of Vulnerability Assessment
5. Types of Penetration Testing
6. Risk Management
7. Do-it-Yourself Testing
8. Outsourcing Penetration Testing Services
9. Terms of Engagement
10. Project Scope
11. Pentest Service Level Agreements
12. Testing Points
13. Testing Locations
14. Automated Testing
15. Manual Testing
16. Using DNS Domain Name and IP Address Information
17. Enumerating Information about Hosts on Publicly-Available Networks
18. Testing Network-Filtering Devices
19. Enumerating Devices
20. Denial of Service Emulation
21. Tools
22. Evaluating Different Types of Pentest Tools
23. Asset Audit
24. Fault Trees and Attack Trees
25. GAP Analysis
26. Threat
27. Business Impact of Threat
28. Internal Metrics Threat
29. External Metrics Threat
30. Calculating Relative Criticality
31. Test Dependencies
32. Defect Tracking Tools
33. Disk Replication Tools
34. DNS Zone Transfer Testing Tools
35. Network Auditing Tools
36. Trace Route Tools and Services
37. Network Sniffing Tools
38. Denial-of-Service Emulation Tools
39. Traditional Load Testing Tools
40. System Software Assessment Tools
41. Operating System Protection Tools
42. Fingerprinting Tools
43. Port Scanning Tools
44. Directory and File Access Control Tools
45. File Share Scanning Tools
46. Password Directories
47. Password Guessing Tools
48. Link Checking Tools
49. Web Testing-based Scripting Tools
50. Buffer Overflow Protection Tools
51. File Encryption Tools
52. Database Assessment Tools
53. Keyboard Logging and Screen Reordering Tools
54. System Event Logging and Reviewing Tools
55. Tripwire and Checksum Tools
56. Mobile-Code Scanning Tools
57. Centralized Security Monitoring Tools
58. Web Log Analysis Tools
59. Forensic Data and Collection Tools
60. Security Assessment Tools
61. Multiple OS Management Tools
62. Phases of Penetration Testing
63. Penetration Testing Deliverables Templates
Self-Study Modules
1. Covert Hacking
2. Writing Virus Codes
3. Assembly Language Tutorial
4. Exploit Writing
5. Smashing the Stack for Fun and Profit
6. Windows Based Buffer Overflow Exploit Writing
7. Reverse Engineering