Loading...

360° Penetration Testing seminář

Zveme vás na exkluzivní seminář 360° Penetration Testing, který proběhne 19. 9. 2017 pod vedením mezinárodně uznávané bezpečnostní expertky Pauly Januszkiewicz.

Seminář*, jako související akce konference HackerFest 2017 má formu BYOD a jeho účastníci získají CQURE Academy certifikát.

Anotace: 
The Masterclass: 360° Penetration Testing seminar teaches infrastructure security concepts, including the techniques on how to attack and how to respond with an appropriate countermeasure implementation. Seminar has been developed around professional penetration testing and security awareness in the business and IT fields. To make sure that all participants gain the necessary infrastructure security knowledge, our classes have an intensive hands-on format.
All labs are always up to date and have 3 levels of difficulty. They can be easily adjustable to the overall level of the group. Every exercise is supported with lab instructions and multiple tools, both traditional and specialized.

Note: Seminar is BYOD type and participants receive certificate and recognition from world renowned CQURE Academy. There is a recommendation to participants to have some knowledge of security concepts, such as operating system services and architecture. However, all required concepts will be covered throughout the seminar.

Materials
Author’s unique tools, over 150 pages of exercises and presentations slides with notes.

Target audience
Network administrators, infrastructure architects, security professionals, systems engineers, network administrators, IT professionals, security consultants and other people responsible for implementing network and perimeter security, Chief Security Officers.


Program: 

08:30 - 09:00 Registration
09:00 - 10:00 Module 1: Evolution of Hacking
                     Module 2: Operating System Services Security Overview
10:00 - 10:15 Coffee break (drinks & snack)
10:15 - 11:15 Module 3: Operating System Internal Security
                     Module 4: Databases Security
11:15 - 12:15 Lunch
12:15 - 13:15 Module 5: Reconnaissance and Target Profiling
                     Module 6: Tampering with Communication (Wired and Wireless)
13:15 - 13:30 Coffee break (drinks)
13:30 - 14:30 Module 7: Malicious Files Execution
                     Module 8: Google Hacking
14:30 - 14:45 Coffee break (drinks & snack)
14:45 - 15:45 Module 9: HTTP Request Building
15:45 - 16:00 Coffee break (drinks)
16:00 - 16:30 Module 10: Legal Issues


Agenda

Module 1: Evolution of Hacking
a. Evolution of vulnerabilities
b. Persistent Threats
c. Malware evolution

Module 2: Operating System Services Security Overview
a. Services Security
b. Active Directory Security

Module 3: Operating System Internal Security
a. Permissions and Privileges
b. Password Security
c. Offline Attacks
d. Pass-The-Hash Attacks with custom CQURE Tools
e. Pass-The-Ticket Attacks
f. DPAPI Attacks with custom CQURE Tools
g. Cached Logons Attacks with custom CQURE Tools
h. Exploiting a lack of access controls

Module 4: Databases Security
a. SQL Server Service
b. Authentication Modes
c. Stored Procedures

Module 5: Reconnaissance and Target Profiling
a. Network Scanning
b. Man-in-the-middle Attacks

Module 6: Tampering with Communication (Wired and Wireless)
a. Wireless Protocols Security
b. NetBIOS Spoofing
c. SMB Security

Module 7: Malicious Files Execution
a. Anti-antimalware techniques
b. Non-exe Malware

Module 8: Google Hacking
a. Open Source Intelligence
b. Possible Targets
c. Building Advanced Queries

Module 9: HTTP Request Building
a. Cross Site Scripting
b. Injection Attacks
c. Information Leakage and Error Handling

Module 10: Legal Issues
a. Paperwork
b. Reporting
c. Responsibility

* Seminář není součástí konference HackerFest 2017!

více informací

místa konání konference a workshopu

Konference Workshop
Multikino CineStar Praha – Černý Most                
Obchodní centrum Černý Most
Chlumecká 756/6
Metro: Černý Most
Autobus: 240, 250, 296 – Černý Most
Zobrazit na mapě

Microsoft Czech Republic and Slovakia
Zasedací místnost Praha
Vyskočilova 1561/4a, 140 00  Praha 4

Autobus č. 118, 124, 170 – zastávky Vyskočilova / Brumlovka 
Zobrazit na mapě

Venkovní i kryté parkoviště je ZDARMA.
Bezbariérový přístup.
Na workshop doporučujeme příjezd MHD,
parkování není zajištěno.