Search Courses:
Home > Courses > Information Technology Certifications > Certification > Ethical Hacker Certification CEH (self-study)

Ethical Hacker Certification CEH (self-study) 
Keywords: Hacker, Ethics, Ethical, CEH
Categories: Certification
Short Description: The Certified Ethical Hacker course will teach you the fundamentals of ethical hacking, such as footprinting, scanning, system hacking, social engineering and sniffing. You’ll learn the difference between handling internet-based and database-based attacks, wireless attacks and countermeasures as well as session hacking and deterring electronic intrusions. Exam ECO-350 (312-50*)

Ethical Hacker (CEH)

40 Hours/ 12 Month Access/Self Study

Course Overview:

Gathering information about a company, its network, and the servers, services, and ports that it uses and has open is a very important part of preparing for an attack on a network; but it is also tremendously important for an ethical hacker to take the same steps and to find the same weaknesses. This course will examine the steps taken to gather information, find a network range, network scanning and tools, enumeration techniques, and the countermeasures used against all of these. This course also assists students who are preparing for the EC Council’s Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

Outline:

Footprinting, Scanning, and Enumeration:
  • Recognize how to use open source searching to gather information
  • Recognize the role of RIR
  • Recognize the purpose of NSlookup
  • Sequence the TTL process
  • Recognize how traceroute is used in footprinting
  • Recognize how e-mail tracking works
  • Identify port scanning issues
  • Recognize how the TCP three-way handshake works
  • Recognize the types of scans you can perform with Nmap
  • Differentiate between war driving and war dialing
  • Differentiate between active and passive fingerprinting
  • Recommend a reconnaissance and scanning strategy for ethical hacking
  • Recognize the difference between kernel mode and user mode in Windows NT systems
  • Recognize how certain Windows elements affect security
  • Recognize how to limit NetBIOS null session vulnerabilities
  • Recognize how to counter SNMP vulnerabilities
  • Recognize how to limit DNS zone transfer vulnerabilities
  • Recognize how to use Active Directory enumeration
System Hacking and Malicious Content:

Hacking systems and planting and or sending malicious content are the two most performed actions by hackers. As an ethical hacker, it will be your responsibility to test systems against hacking and to be prepared for the different types of malicious content that hackers will try to get into your network environment. This course examines password cracking methodologies and tools, privilege escalation, keyloggers, rootkits, steganography, trojans and backdoor types and tools, and different types of viruses and worms and their countermeasures. This course also assists students who are preparing for the EC Councils Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

  • Identify the tools used for password cracking and privilege escalation
  • Recognize examples of strong passwords
  • Differentiate between the types of password attacks
  • Categorize passwords as weak or strong and recognize the types of attacks they’re vulnerable to
  • Identify the characteristics of hardware and software key loggers
  • Recognize how to counter rootkits
  • Sequence the steps to create an alternate data stream in Windows
  • Recognize the tools used for steganography and erasing evidence
  • Recognize how trojans work
  • Recognize the hacking tools used for covert communication, port redirection, and wrapping
  • Recognize how e-mail can be used as a trojan attack vector
  • Recognize the countermeasures for trojans
  • Categorize viruses according to their infection techniques Recognize the countermeasures for viruses
  • Recognize key concepts about viruses and trojans
Social Engineering and Sniffing:

Employees are often a major security concern in big business, as social engineering is one of the most used methods to gain information and thus allow corporate networks to be hacked. Sniffing of corporate networks is also a method that hackers use to gain access to corporate resources. This course examines different types of social engineering and identity theft, along with sniffing techniques such as flooding and spoofing, the tools used both to perform and prevent them, and countermeasures that can be taken. This course also assists students who are preparing for the EC Councils Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

  • Recognize methods for computer-based social engineering
  • Identify examples of insider attacks
  • Identify types of phishing attacks
  • Identify the countermeasures for social engineering
  • Analyze social engineering scenarios and recommend countermeasures
  • Recognize how ARP spoofing works
  • Recognize how DNS spoofing works
  • Recognize how to counter sniffing
  • Recognize the techniques used for ARP, MAC, and DNS sniffing
Deterring Electronic Intrusions:

Securing electronic access to an environment forms the backbone of IT security professionals jobs. IT security specialists deal with methods to secure network access, both internally and externally. This course examines firewall, intrusion detection system (IDS), and honeypot detection techniques, as well as evasion techniques that can be used by an ethical hacker to determine whether a network is secure from hackers. This course also assists students who are preparing for the EC Councils Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

  • Recognize the firewall architectures
  • Identify ways to breach and bypass firewalls
  • Identify ways in which to evade IDS
  • Recognize the main IDS detection methods
  • Recognize how honeypots can be used by IT security professionals
  • Recognize key concepts about electronic intrusion detection and evasion methods
Denial of Service and Session Hacking:

Denial of Service and Distributed Denial of Service attacks are common methods used by hackers to disrupt service to networks and to corporate environments. Session hijacking is used by hackers as a method to take over sessions after a user has successfully authenticated with a server. This course examines how DoS and DDoS attacks, along with Bots and Botnets, disrupt corporate environments. And it examines session hijacking and the methods that are used to both accomplish it, and to prevent it. This course also assists students who are preparing for the EC Councils Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

  • Categorize some typical DoS attacks
  • Recognize how DDoS works
  • Recognize how to use defense in depth to prevent DoS
  • Sequence the stages of a botnet attack
  • Recognize how to defend computers from bots
  • Recognize how DoS and DDoS attacks work and how to counter them
  • Identify how session hijackers can close a clients session with a server and impersonate the client
  • Recognize the functions of the TCP/IP layers
  • Sequence the session hijacking steps
  • Recognize how to defend against session hijacking
  • Recognize how session hijacking works and how it can be countered
Linux Hacking:

The various distributions of Linux are becoming more and more popular. This course examines the history of Linux, the different flavors that are available, and the file structures used. This course also examines the methods that can be used to secure Linux systems, along with the tools that can be used both to test the security, and to penetrate it. Finally, this course examines the countermeasures that can be put in place to maintain the security of Linux systems. This course also assists students who are preparing for the EC Councils Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

  • Sequence the steps to compile a Linux kernel
  • Assign specific permissions to a file or directory in Linux
  • Recognize the purposes of Linux hacking tools
  • Recognize the purpose of Linux security tools
  • Recognize where information is stored in Linux and basic Linux commands
  • Recognize the commands for scanning and remote control for certain Linux hacking tools
  • Recognize how to assign permissions to users, groups, and others in Linux
Cryptography:

Cryptography has been used for thousands of years to secure messages, identities, vital information, and communications mechanisms. This course analyzes the invention of cryptography, the use of algorithms and ciphers, and the secure mechanisms used for message authentication and certificate authority. And the course examines electronic security measures and the hacking tools that can be used to break encryption. This course also assists students who are preparing for the EC Councils Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

  • Define key cryptographic terms
  • Distinguish between the most common types of symmetric key algorithms
  • Select the appropriate message format for a scenario
  • Distinguish between types of asymmetric algorithms
  • Determine the appropriate cryptography implementation for a given scenario
  • Distinguish between hash algorithms
  • Recognize whats involved in different types of attack against hash algorithms
  • Recognize the guidelines for key management and distribution
  • Identify the characteristics of digital signatures
  • Recognize how to implement best practices for e-mail encryption
  • Distinguish between the security mechanisms for electronic transactions and e-mail
  • Differentiate between various types of cipher
  • Recognize the features of common hacking tools used in cryptanalysis
  • Apply e-mail encryption guidelines and determine the appropriate hash algorithm for a given scenario
Internet-based and Database-based Attacks:

Internet-based attacks and the mechanisms used to both accomplish and to defend against them is a staple of both hackers and ethical hackers today. This course examines how to hack web servers, and conversely, how to defend against those attacks, how to examine web applications for vulnerabilities, and how to fix them, how web-based password cracking is done, and how it is defended against. This course examines SQL injection attacks and defense mechanisms, along with buffer overflows and the countermeasures that can be put in place to deal with them. This course also assists students who are preparing for the EC Councils Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

  • Recognize how to use Telnet for banner grabbing
  • Identify the countermeasures you can take against web server attacks
  • Recognize the IIS server attack types
  • Identify web application vulnerabilities
  • Recognize the countermeasures to web server application attacks
  • Recognize common methods of authentication
  • Recognize countermeasures to password-cracking attacks
  • Recommend countermeasures to Internet-based attacks
  • Identify examples of SQL injection attacks
  • Recognize the steps an attacker may take when preparing to perform a SQL injection attack
  • Identify SQL injection countermeasures
  • Recognize various types of SQL injection attacks
  • Recognize how buffer overflow attacks occur
  • Recognize how to defend off-the-shelf products against buffer overflow attacks
  • Recognize how to perform and defend against SQL injections and buffer overflows
Wireless Attacks and Countermeasures:

Wireless networking is becoming more and more prevalent in corporate networks. The methods used to set up and secure these networks are often tested by hackers to see if they can penetrate and gain information from them. This course examines wireless systems and 802.11x WLAN operational modes. This course discusses WEP and other wireless security protocols, along with WLAN threats, wireless hacking tools, and the security countermeasures that can be used to counter these threats. This course also assists students who are preparing for the EC Councils

  • Recognize features of the primary modes used for cellular communication
  • Recognize features of the RF technologies for 2.4 Ghz wireless LANs
  • Identify the components of Bluetooth security algorithms
  • Sequence the steps of the association process
  • Recognize how wireless systems work
  • Recognize features of the WEP authentication methods
  • Identify the vulnerabilities of WEP
  • Recognize how wireless networks are vulnerable to DoS attacks
  • Recognize how the broadcast bubble makes wireless networks vulnerable to eavesdropping
  • Recognize common wireless hacking tools
  • Recognize how to increase the security of wireless LANs
  • Recognize how wireless security protocols work and how to defend a wireless network
Physical Security:

Physical security is the foundation for all networking security mechanisms. Unless a network is physically secure from threats, all other types of security can be negated. This course focuses on the need for, and implementation of physical security and how it is used as an all encompassing backbone for enterprise security. This course also assists students who are preparing for the EC Councils Ethical Hacking and Countermeasures (CEHv6) exam 312-50.

  • Recognize the major sources of physical loss for an organization
  • Recognize the key objectives of a layered defense solution
  • Recognize perimeter security mechanisms
  • Recognize how CPTED strategies are used in loss and crime prevention
  • Identify the appropriate physical security mechanisms to implement in a given scenario
  • Identify the appropriate controls for securing the inside of a building or facility
  • Identify the appropriate fire-protection technique for a scenario
  • Identify the most appropriate intrusion detection technology for a scenario
  • Determine the appropriate intrusion detection system to implement, given a specific scenario
  • Recognize best practices for securing the data center or server room, for protecting portable equipment, and for ensuring protection at object level
  • Identify the appropriate strategy for securing compartmentalized areas in a given scenario
Recommended System Requirements:
  • Intel® Pentium® 166 MHz processor or greater
  • 64 MB RAM minimum, 128 MB recommended
  • Minimum video resolution of 800x600, with 16-bit color
  • Internet Connection
  • Connection speed of 40 Kbps minimum, 56 Kbps recommended
  • Windows® 95, 98, 2000, NT or XP
  • Valid Email address
  • Supported browser versions: Internet Explorer (any version), Netscape Communicator 4.7 - 7.2
Home | Courses | Services | Partners | About Us | Contact Us | FAQs
  © ProTrain Edu. All Rights Reserved. Developed by Instancy