Advanced Penetration Tester Workshop (TechnoForensics Security Conference 2010)
Advanced Penetration Testing (APT): Pentesting High Security Environments course is a
two-day intensive that focuses attacking and defending highly secured environments
such as 3-letter agencies, DoD, financial organizations, federal organizations, and large companies.
This is NOT your normal Ethical Hacking, Pentesting, or Red Team course. You won't be attacking unpatched Windows 2000 Servers,
and you won't be learning a bunch of outdated tools like most Ethical Hacking courses.
In APT, you will be learning how to attack new operating systems such as Windows Vista, Windows 7,
Windows Server 2008, and the latest Linux servers. All of these servers will be patched, and hardened.
Both Network and Host-based Intrusion Detection/Preventions systems (IDS/IPS) will be in place as well.
The learning curve is high, but the rewards are astronomical.
The course starts with attacking heavily protected environments from the outside and dealing with things
like Load Balancing, Deep Packet Inspection, and Network-Based IDS/IPS. Next is attacking web applications
and dealing with common application security measures in PHP/ASP.NET, and Web Application Firewalls.
Then the course moves on to attacking from the LAN, dealing with NAC solutions, locked down workstations/GPOs,
and Host-Based IDS/IPS. Then finally the last section of the course covers gaining control of Active Directory.
Pentesting High Security Environments is NOT a death by powerpoint course. Over 80% of class is hands-on hacking labs.
Students that are Network/System Administrators with three or more years experience working in environments such
as financial institutions, DoD networks, or similar high security environments will benefit greatly from this course.
It is however primarily designed for Network/Web Application Penetration testers that are looking for the little tips
and tricks that will help them better attack high security environments.
BONUS!
All workshop attendees receive a free iPad, and complementary VIP conference pass to TechnoForensics 2010 conference!
APT Workshop Syllabus
Stealth Scanning
1. Bypassing IDS/IPS
Attacking From the Web
1. XSS to command-shell
2. SQL Injection to command-shell
MS-SQL
Client-Side Pentesting
1. Bypassing Antivirus
Packing Binaries
Writing Custom Trojans
2. Email Collection & Web Server Setup
3. Pivoting into the LAN
Attacking From the LAN
1. Bypassing Port Security
2. Bypassing NAC Solutions
Breaking out of Restricted Environments
1. Restricted Desktops
2. Group Policy Object Restricted Applications
Bypassing Network-Based IDS/IPS
1. Enumerating the network
2. Defeating IDS/IPS Signatures
Privilege Escalation
1. Privilege Escalation in Windows XP
2. Privilege Escalation in Windows Vista\Windows 7
Post-Exploitation
1. Remote Command Execution
2. Automating Tasks
3. Persistence
Course Instructor
The course instructor is security consultant and trainer Joe McCray. Joe McCray has 8 years of experience in the
security industry with a diverse background that includes network and web application penetration testing, incident
response, and forensics in the both DoD community and the private sector. Joe is also a frequent presenter and trainer at security
conferences such as BlackHat, Def Con, ToorCon, BruCON, LayerOne, TechnoSecurity, and TechnoForensics.
General Course Info
Course dates are Octover 22rd - 23rd. The course will be comprised of 2 days of 50 minute sessions with 5-10 minute
breaks, and an hour for lunch.
Pre-requisites:
Students must be familiar with IT Security best practices, and have a good understanding of TCP/IP and common web technologies.
* Basic Windows administration for both servers and workstations
* Basic Linux/*NIX system administration skill
* Basic command-line proficiency on both Windows and *NIX systems
Students should be familiar with the following web technologies and languages:
* HTTP
* HTML
* Javascript
* ASP
* PHP
* SQL
Students should also be familiar with Metasploit, and VMWare.
Pricing $1,500