Contact Us Privacy Policy
SC_09: Exploiting and Defending Networks - Advanced Windows Edition
Length of Class 3 days
Audience

Experienced Security Administrators, Security Auditors, Security Consultants
Objective

This class aims to teach students how to perform sophisticated, cutting-edge attacks on a network with emphasis on Windows hosts.
Summary

The purpose of this course is to provide participants detailed security techniques and knowledge as applied to network security and host security. It emphasizes helping users understand how to find and write basic stack based exploits. Participants will also learn how to take advantage of vulnerabilities that might exists in an environment and use backchannels to connect back into a network.
Description

In the information age, an organization's network has become its lifeblood - carrying critical data with major requirements on data confidentiality, integrity, and availability. Protecting that network is crucial to the continued operations of the business. This class is aimed to better equip students on how to protect that network by teaching them the tools, techniques and mindset of and attacker.

This exciting course assumes an advanced knowledge of networks and windows, and goes into detail on topics such as identifying opportunities for and writing buffer overflows, advanced network attacks, creating back channels, and attacking wireless networks.

Students learn some of the most challenging, powerful, and cutting edge attack techniques. For instance, students learn how to install Linux on wireless routers and create a rogue access point. Using this access point they will perform sophisticated, hands-on man in the middle attacks such as stealing SSL sessions to retrieve data sent over supposedly confidential HTTPS.

Security Compass also leverages its unique expertise in buffer over flow attacks to explain in detail how such an attack can be performed and prevented. These attacks are the most dangerous to unmanaged code today and understanding them is a powerful tool for finding vulnerabilities in your organization's IT environment.
Requisite Knowledge Advanced Network and Windows knowledge; Basic UNIX/Linux programming, knowledge of compiling utilities on Linux
Curriculum Part 1: Introduction To Buffer Overflows
  • Buffer overflows
  • Basics of stack
  • Assembly basics
  • Understand stack overflows
  • Exploiting local stack overflows
  • Writing a local stack overflow
Part 2: Network Scanning & Attacks
  • Network scanning & hacking
  • Advanced port / network scanning techniques
  • MITM attacks
  • SSL MITM attacks
  • SSH MITM attacks
  • DNS spoofing attacks
  • Ettercap to the rescue
  • TCP hijacking
Part 3: Back Channels [Methods of hiding and bypassing firewalls]
  • Bash shell based back channels
  • XML based back channels
  • HTTP based back channels
  • MSN based back channels
Part 4: Wireless Networks
  • Basics of wireless hacking
  • How to find wireless networks
  • Breaking WEP/WPA/LEAP
  • Setting up a Fake AP to perform a MITM attack using OpenWRT to attack networks
Copyright © 2007-2008 Security Compass. All Rights Reserved.