Best Ethical Hacking Training in Jalandhar & Best  Ethical Hacking Industrial Training in JalandharEthical Hacking

CHAPTER 1: Introduction to Information Security

  1. What is Information Security
  2. The misconception of the term Hackers and System
  3. Sun Tzu’s definitions and Workings
  4. Principle of Hacking
  5. Working of Security Triangle
  6. Biggest Threat – Security, Why?
  7. Elements of Security
  8. Terminologies of the Security
  9. Classes of Hackers
  10. Types of Attacks
  11. Steps followed for hacking into the system
  12. Important Websites to follow

 

CHAPTER 2: Networking and its Principles and it’s security

  1. Working on Network Technologies (Using Packet Tracer)

    1. Introduction to Networks (basics)
    2. Difference between OSI and TCP model
    3. IP addressing in depth
      1. Demo of Three Way Handshaking
      2. What is an IP?
      3. Types of Address
      4. Public IP address
      5. Private IP address
      6. Demos of Public and Private IP address
      7. Calculation of subnets/Subnet Mask
    4. Usage of Switches/ Routers/Hubs in practical scenarios
    5. Building up of Network Topologies
    6. Collisions and Broadcast Domains
  1. Routers in Depth (Demos in Packet Tracer)

    1. What are Routers??
    2. Routing in details
    3. Tools for networking
    4. Static and Dynamic Routing
    5. OSPF (open shortest path first)
    6. RIP (Routing Information Protocol)
    7. EIGRP (Enhanced Interior Gateway Routing Protocol)
  1. Switches in depth (Demos in packet tracer)

    1. Working of a Switch
    2. LAN Switching
    3. CSMA/CD
    4. VLANs (in depth)
      1. Introduction to VLAN’s
      2. Access Ports and Trunk Ports
      3. Configuring VLAN’s in Packet Tracer
      4. Native VLANs
      5. Inter-VLAN Routing
    5. Switch Security
    6. Port Security
    7. VTP (Virtual LAN Trunk Protocol)
      1. Working of VTP
      2. VTP Modes
      3. Configuring of VTP
    8. STP (Spanning Tree Protocol)
      1. Working of STP
      2. Configuring of STP
    9. NAT (Network Address Translations)
      1. What is NAT?
      2. Real-time Scenarios of using NAT
      3. Types of NAT
      4. Configuring of Static NAT
    10. DHCP (Dynamic Host Configuration Protocol)
      1. Introduction to DHCP
      2. Configuring of DHCP
  1. Ports

    1. Introduction to Ports
    2. Working of Ports
    3. Types of Interfaces and ports
    4. Scanning of Ports (using Nmap and Nessus)
    5. Demo of Services running on ports
 

CHAPTER 3: Concept of Virtualization

  1. Introduction to Virtualization
  2. Working on the real-time scenarios
  3. Working on the virtual machines
  4. Creation of a virtual network of different OS
  5. Creation of the client and server architecture on virtual machines
 

CHAPTER 4: Operating System Based Attacks

  1. Introduction to the Operating System
  2. Working of the Firmware
  3. Complete working of the Booting Process
  4. Importance of the Boot Loaders in OS hackings
  5. Difference between Linux and Windows
  6. Windows
  7. Introduction to Windows
  8. Installation of different flavors of Windows
  9. Introduction to the hash functions
  10. Hash functions securing the Windows
  11. Getting into the hash functions to compromise windows
  12. Introduction to System Administrations and its breaking
  13. Exploitation (Real-time Working Exploits)
  14. Basics of the Exploitation of real-time exploits
  15. Confirming the attack exploitation
  16. Configuring of the real-time test beds exploitation
  17. Confusing Payloads and making choice of real-time attacking payloads
  18. Demonstration of GUI and CLI payload working exploits
  19. In-depth working of the “meterpreter” payload
  20. Working of the Armitage – GUI exploitation of windows
  21. Organizing the MSF panels
  22. Introduction to the Post Exploitations
  23. Demonstration of the Kung-Fu Exploitations
  24. Complete Privilege Escalations of the Operating Systems
  25. Dismantling the Anti-viruses
  26. Disabling the Firewalls
  27. Working on the Backdoors for the Post Exploitation
  28. Getting into the Stealing of the Tokens
  29. Working on the Priv and Sniffer Extensions
  30. Introduction to the Port Forwarding and its demonstration
  31. Adding of the functions and the DLL files to the windows and it’s exploitation
  32. Demonstrations of the client-side working exploits
  33. Introduction to the rootkits and their exploitation
  34. Entering hands into the plugins support to the msf
  35. Working on the API’s of the msf
  36. Migrating the clone to the scripting under meterpreter
 

CHAPTER 5: Web Security and It’s Exploitation

  1. Introduction to Web Applications

    • Overview of the Penetration Testing and it’s types
    • Overview of the Web from the penetration tester’s view
    • Difference between the Websites/Web Apps/Web-Servers
    • Confusion of what to hack??
    • Exploring the server-client architecture
    • The building of the test-beds for pentesting
  2. Exploring the Vulnerabilities

    • Working of the complete session state works of the web
    • Exploring and Gathering the different types of vulnerabilities (in RAW)
    • Methods to focus only on the vulnerability
    • Exploring the URL and the build part of the SSL layer and It’s a weakness.
    • Crawling into the pool of Spidering the websites
    • Working of the Browsers, HTTP based Protocols and their Request Methods
    • The Exploitation phases and it’s complete following path algorithms
    • Types of Web-Apps attacks
  3. Fundamentals of HTTP and HTTPS

    • Introduction to Ports
    • Explanation of the Working of WEB
    • Demonstrations on the Ports Services are given by IANA
    • Introduction to HTTP and HTTPS
    • Working of headers
    • Work on Getting a Web Page
    • HTTP Requests and It’s Responses
    • HTTP and HTTPS cookies
    • Working and Storing Demos of Port Services Based Cookies
    • Introduction to Meta Tags and It
  4. The XSS based attacks (Basic to Advance)

    • Introduction to the XSS
    • Discovering the back-end raw codes.
    • Learning the basic JavaScript
    • Preparing and Working of the test-beds for XSS based JavaScript codes
    • Types of the XSS attacks in the live world
    • Testing for the XSS based attacks
    • Stored Types of XSS
    • I-frame based XSS attacks
    • Cookie Stealing based XSS attacks
    • Reflected XSS basic testing
    • Reflected XSS of displaying the value over the URL
    • Cookie Stealing through Reflected XSS
  5. Cross Site Script Forgery

    • Introduction to CSRF
    • Working of the CSRF vulnerability
    • Complete working of Session Tokens/Tokens and Session ID’s
    • Flow-Chart designing of the complete attack
    • Algorithm for the working of the attack.
    • Practical Working of the Attack
    • Basic testing for the working of CSRF attack
    • Working on the URL’s for the test-bed CSRF attacks
    • Completely Rooting the user panels to the main rooted panels.
  6. Remote Command Execution Attack

    • Introduction to Linux and Windows kernel shell
    • Working on the basic commands of Linux
    • Working of the networking related to Linux
    • Complete configuring of the apache2 and the tomcat servers
    • Introduction to the Remote Command Execution
    • Working of the RCE to the server-end.
    • Working of the RCE to the client-end.
    • Exploitation of the servers from the client and server end through RCE
    • Extraction of the password files from inside the servers
    • Working of the netcat and it’s reverse_tcp back-connections
    • Creating the test-bed of RCE to the main attacker’s panel
    • Displaying the complete server configured by exploiting the RCE
  7. Structured Query Language Injection

    1. SQL Basics:

      • Introduction to SQL
      • What is Database
      • Working of Database
      • Working of Schemas
      • Working of the back Connections
      • Creation of the Database
      • Creation of Tables and Columns
      • Insertion of the Data into the columns
    2. SQL Syntaxes (Important from hacking point of view)

      • SQL Select
      • SQL Distinct
      • SQL Where
      • SQL And & Or
      • SQL Order By
      • SQL Insert Into
      • SQL Update
      • SQL Delete
      • SQL Select Top
      • SQL Like
      • SQL Wildcards
      • SQL In
      • SQL Between
      • SQL Aliases
      • SQL Union
      • SQL Select Into
      • SQL Into Select
      • SQL Create DB
      • SQL Create Table
      • SQL Constraints
      • SQL Not Null
      • SQL Unique
      • SQL Primary Key
      • SQL Foreign Key
      • SQL Create Index
      • SQL Drop
      • SQL Alter
      • SQL Auto Increment
      • SQL Views
      • SQL Dates
      • SQL Null Values
      • SQL Null Functions
      • SQL Data Types
      • SQL DB Data Types
    3. SQL Functions

      • SQL Avg()
      • SQL Count()
      • SQL First()
      • SQL Last()
      • SQL Max()
      • SQL Min()
      • SQL Sum()
      • SQL Group By
      • SQL Having
      • SQL Ucase()
      • SQL Lcase()
      • SQL Mid()
      • SQL Len()
      • SQL Round()
      • SQL Now()
      • SQL Format()
    1. URL’s

      • Composition of the URL
      • Working of URL
      • Browser’s importance to SQL part
      • Connection of URL with the Back-end Servers
      • Maintenance of the URL’s for browsing effects
      • Introduction to the URL Encoding
      • Demonstration of the UTF-8, ASCII, hex, and other encoding and decoding algorithms.
    2. Fundamentals of HTTP and HTTPS

      • Introduction to Ports
      • Explanation of the Working of WEB
      • Demonstrations on the Ports Services are given by IANA
      • Introduction to HTTP and HTTPS
      • Working of headers
      • Work on Getting a Web Page
      • HTTP Requests and It’s Responses
      • HTTP and HTTPS cookies
      • Working and Storing Demos of Port Services Based Cookies
      • Introduction to Meta Tags and It’s Working
    1. SQL Injection Basics:

      • Introduction to SQL Injection
      • Working of Small Example of SQL Injection
      • Working of the String Based SQL Injection
      • Demonstration of the Browser’s effect in the attack.
      • Introduction to Plug-ins and add-ons
      • Working of Plug-ins and add-ons
      • Effect of Different Plug-ins and add-ons
      • Introduction to Google Dorks
      • Demonstration of the Google Dorks
      • Turning Search Engines into the Attacker’s Spy
      • Difference Between the GET and POST Header Response

    WORKING ON GETTING METHOD

    1. Error Based SQL Injection

      • Introduction to Error Based SQL Injection
      • Working and displaying the URL value enumerations
      • Introduction to the quote levels and their methodologies.
      • Breaking of the Query with different Quotes
      • Working of the Single Quotes
      • Working of the Double Quotes
      • Working of the Single Quotes with Magic Utilization.
      • Working of the Double Quotes with Magic Utilization
      • Working of the Single Quotes with the Magic Bracket’s
      • Working of the Double Quotes with the Magic Brackets
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of version
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Working on more Complexed examples of Error-Based
    2. Double Query Based SQL Injection

      • Introduction to Double Query Injection
      • Demonstration Partial Bits Extraction Algorithm
      • Designing of the Algorithm for the attack at Back-end
      • Demonstration of the various SQL functions
      • Explanation and Demonstration of the True and False Statements
      • Explanation and Demonstration of the Random Function Statements
      • Explanation and Demonstration of the Rounding OFF Statements
      • Introduction to the Logic Gates
      • Mathematics Including to the Logic Gates
      • How Logic Gates helpful in executing the attacks
      • Introduction to the LIMIT function
      • Demonstration and how limit function plays a vital role in the attack
      • Rescuing off the whole algorithm design part
      • Working on the URL encoding enumerating values
      • Introduction to the quote levels and their methodologies.
      • Breaking of the Query with different Quotes
      • Working of the Single Quotes
      • Working of the Double Quotes
      • Working of the Single Quotes with Magic Utilization.
      • Working of the Double Quotes with Magic Utilization
      • Working of the Single Quotes with the Magic Bracket’s
      • Working of the Double Quotes with the Magic Brackets
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Working on More Complexed Algorithms Designing for Double Query Based SQL Injections
    3. Blind Query Based SQL Injection

      • Introduction to Blind Query SQL Injection
      • Enumerating the different ID values
      • Differentiating the Blind SQL on ID value enumeration
      • Defining Boolean Based and Time Based SQL Injection
      • Explanation of the Boolean Based SQL Injection
      • Designing of the Boolean Based SQL Algorithm
      • Explanation and Demonstration of the True and False Statements
      • Explanation and Demonstration of the AND, OR Statements
      • Explanation and Demonstration of the Length Statements
      • Explanation and Demonstration of the Substring Statement
      • Explanation and Demonstration of the ASCII Statement Function
      • Role of ASCII values in designing and executing of the Attacks
      • Explanation and Demonstration of the True and False Statements for enumerating the data values over the guessing less than or greater than statement functions
      • Monitoring of the true and false values based Statements
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Introduction to the Time-Based Blind Query Injection
      • Following up the main misconception over the attack
      • Designing of the Time-Based Blind Query Injection Algorithm
      • Explanation and Demonstration of the Sleep Statements
      • Explanation and Demonstration of the IF and Else Statements
      • The explanation for the importance of the NULL Statements
      • Extraction of the Database Name, Version Number and Current User and it’s directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Extraction of the complete list of username and passwords.
    4. Source List Files

      • Introduction to the Source Files
      • The explanation for the Raw data produced in attack
      • Dumping of the SQLI in a source outfile
      • Working on various other methodologies for dumping the queries

    WORKING ON THE POST BASED METHODS

    1. Error Based SQL Injection

      • Introduction to Error Based SQL Injection
      • Working and displaying the URL value enumerations
      • Introduction to the quote levels and their methodologies.
      • Breaking of the Query with different Quotes
      • Working of the Single Quotes
      • Working of the Double Quotes
      • Working of the Single Quotes with Magic Utilization.
      • Working of the Double Quotes with Magic Utilization
      • Working of the Single Quotes with the Magic Bracket’s
      • Working of the Double Quotes with the Magic Brackets
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of version
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Working on more Complexed examples of Error-Based
    2. Double Query Based SQL Injection

      • Introduction to Double Query Injection
      • Demonstration Partial Bits Extraction Algorithm
      • Designing of the Algorithm for the attack at Back-end
      • Demonstration of the various SQL functions
      • Explanation and Demonstration of the True and False Statements
      • Explanation and Demonstration of the Random Function Statements
      • Explanation and Demonstration of the Rounding OFF Statements
      • Introduction to the Logic Gates
      • Mathematics Including to the Logic Gates
      • How Logic Gates helpful in executing the attacks
      • Introduction to the LIMIT function
      • Demonstration and how limit function plays a vital role in the attack
      • Rescuing off the whole algorithm design part
      • Working on the URL encoding enumerating values
      • Introduction to the quote levels and their methodologies.
      • Breaking of the Query with different Quotes
      • Working of the Single Quotes
      • Working of the Double Quotes
      • Working of the Single Quotes with Magic Utilization.
      • Working of the Double Quotes with Magic Utilization
      • Working of the Single Quotes with the Magic Bracket’s
      • Working of the Double Quotes with the Magic Brackets
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Working on More Complexed Algorithms Designing for Double Query Based SQL Injections
    3. Blind Query Based SQL Injection

      • Introduction to Blind Query SQL Injection
      • Enumerating the different ID values
      • Differentiating the Blind SQL on ID value enumeration
      • Defining Boolean Based and Time Based SQL Injection
      • Explanation of the Boolean Based SQL Injection
      • Designing of the Boolean Based SQL Algorithm
      • Explanation and Demonstration of the True and False Statements
      • Explanation and Demonstration of the AND, OR Statements
      • Explanation and Demonstration of the Length Statements
      • Explanation and Demonstration of the Substring Statement
      • Explanation and Demonstration of the ASCII Statement Function
      • Role of ASCII values in designing and executing of the Attacks
      • Explanation and Demonstration of the True and False Statements for enumerating the data values over the guessing less than or greater than statement functions
      • Monitoring of the true and false values based Statements
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Introduction to the Time-Based Blind Query Injection
      • Following up the main misconception over the attack
      • Designing of the Time-Based Blind Query Injection Algorithm
      • Explanation and Demonstration of the Sleep Statements
      • Explanation and Demonstration of the IF and Else Statements
      • An explanation for the importance of the NULL Statements
      • Extraction of the Database Name, Version Number and Current User and it’s directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Extraction of the complete list of username and passwords.
    4. Cookie Header Injection

      • Introduction to the Cookies
      • Working of the Cookies
      • Role of Cookies in the Injection Parameters
      • Working on the Valid Cookie Parameter Injections
      • Introduction to the Cookie Grabbers
      • Working of the Cookie Grabbers
      • Demonstration of the simplest cookie grabbing
      • Generation of the Error and Balancing the query
      • Monitoring the Cookie Values (the format ASCII checking)
      • Execution of the Attack
      • Grabbing the Database name and the version number
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Extraction of the usernames and passwords
      • Working on the complexed form of the Cookie Header Injection
      • Introduction to the Crypt values of the HTTP based services
      • Misconception for the Crypt and the Encode Values
      • Working on the Encoder algorithm (Base-64)
      • Decoding the encoded grabbed values.
      • Hijacking the Session during the specific time enumeration
      • Designing the attack algorithm for such formats of the encoders
      • Generation of the Error over such platforms
      • Balancing of the Errors generated with special characters
      • Extraction of the complete database name from decoded values
      • Extraction of the complete version number from decoded values
      • Extraction of the complete table names from decoded values
      • Extraction of the complete column names from decoded values
      • Extraction of the usernames and passwords from decoded values
      • Examples of more complexed cookie header injections and their monitoring based attacks.
    1. Injection for the more Complexed Form Designed by Developers (Inserting value Statements chunked by Developer)

      • Working on the PHP based coding beds
      • Designing the algorithm for the blocked coded values
      • Monitoring of the block-chain values
      • Introduction to the Temper dumped data
      • Configuring of the plug-ins to grab the tempered data
      • Monitoring of the HTTP/HTTPS sniffed data
      • Dumping of the useful Grabbed data
      • Introduction to the Agents Field and Submitting the Validations
      • Introduction and working of the Burp-Suite
      • Intercepting the Proxies and working on the sniffed proxy Socket
      • Fuzzing of the data and intercepting the generated values
      • Balancing the generated values
      • Grabbing the database name and version number
      • Extraction of the Table names and Column names
      • Extraction of the Username and Passwords
    2. Injections in the Updating Logged in Users (Hacking into Session Tokens)

      • Monitoring of the Logged in Users
      • Updation of the username and passwords by random users
      • Working on the back-end for checking of the updating validating values.
      • Fuzzing the web-apps for the generation of the error
      • Updating the SET validating values
      • Caution while working on the SET queries
      • Fixing of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
    1. Bypassing the Black-List Filters, Add-lashes

      • Introduction to the Add-lashes
      • Demonstration and Working of the PHP based code testbed
      • Working on the UTF-16 for the decoding and encoding of quotes
      • Introduction the Impedance Mismatch code values
      • Extraction of the complete database and its hand values
      • Introduction to the Black-list filters and their URL encoded values
      • Grabbing of the %- restoring validations
      • Bypassing the SPACE restricted validations
      • Extracting the complete database hand –on values
    2. Mod Security Firewalls Bypass action

      • Introduction to the Mod Security Firewalls
      • Configuring of the Firewalls to provide the security
      • Configuring of the test-bed servers (Tomcat-Apache)
      • Configuring of the java based JDK
      • Difference between the JAVA and JSP based servers
      • Working on both the test-bed platforms
      • Extraction of the complete database hands-on

    Phishing

    Introduction to Phishing and it’s the concept of exploitation
    Working on different techniques of phishing

    ISR – Internet Stealers

    • Introduction to Stealers
    • Types of Stealers
    • Configuring of the Stealers
    • Stealing the passwords from the browsers
    • Stealing from the web-apps configured

    LFI and RFI based Attacks

    • Overview of the LFI and RFI based Attacks
    • Working of the LFI and RFI attacks
    • Uploading of the PHP based shells through LFI
 

CHAPTER 6: Linux Hacking and It’s Security Parameters

  1. Linux
  2. Introduction to Linux
  3. History of LINUX
  4. Planning your Installation
  5. Issues with Software’s
  6. Issues with hardware
  7. Installation of LINUX
  8. Updation and Registration of LINUX
  9. Some basic commands of LINUX
  10. Introduction to Linux Security
  11. Boot Security – Working on the Booting Security for Linux
  12. Shell Security – How shell could be proved with dangerous attacks
  13. Utilities—Working on some of the Linux based security utilities
  14. NTP Configuration – How the Network Time Protocol differs with SSL
  15. Syslog Replication – Making up of the Replicas with system logs
  16. Resonance tools – gathering the information for the Linux Hacking
  17. Xinetd TCP wrappers – Wrapping of the packets transmitted on N/W
  18. Chatter and Lsattr – Unbreakable security of the Linux Security Files
  19. TCPDump Telnet – How telnet is dangerous to open textures
  20. SSH PKI Creation – Linux securing file transferring
  21. SSH, SCP, and SFTP — Working on some other secured File transfer techniques
  22. SSH Port Forwarding – Concept and working on Port Forwarding
  23. MD5sum – Hashing technique explanation and it’s breaking
  24. Encryption —
  25. GPG creating keys
  26. GPG creating data encryption
  27. GPG import-export of the file
  28. GPG signing
  29. System-config-users
  30. John the ripper
  31. AIDE security
  32. Bastille security
 

CHAPTER 7: Wireless Security and Hacking

  1. Getting Started with Wireless
  2. The difference in the world of wired and wireless
  3. Existence and working of wireless
  4. Creating the test-bed demo of wireless
  5. Comparing bands for wireless with different countries
  6. Introduction to channels and their working
  7. Explaining the concept of Sniffing and it’s a hacking technique
  8. Introduction to Beacon Frames, how they are working and it’s exploitation
  9. Explaining the different terminologies with wireless
  10. Working on the Man In the Middle Attack
  11. Introduction to WEP
  12. Working on the WEP Keys
  13. Explaining the concept of the Three-Way-Handshaking
  14. Complete Explanation for the Encryption Process
  15. Cracking of the WEP
  16. Introduction to WPA/WPA2
  17. Working on the 4-way handshaking and it’s packet formation techniques
  18. Breaking of WPA/WPA2
 

CHAPTER 8: Cryptography and Steganography

  1. Introduction to Steganography
  2. Demonstration of the Steganography techniques
  3. Discussing the case-study for the World Trade Center
  4. The problem of Trust—Evolution of Cryptography
  5. Introduction of Cryptography and Basic Terminologies
  6. Classical Cryptosystems – Techniques of Cryptography (15+ Practical Cryptographic Techniques)
  7. Cryptanalyst Techniques (Breaking of Cryptosystems)
  8. Block Ciphers (Concept of Boxes)
  9. Data Encryption Standards (DES)
  10. Cryptanalysis of DES
  11. Advanced Encryption Standards (AES)
  12. Cryptanalysis on AES
  13. Linear Cryptanalysis
  14. Differential Cryptanalysis
  15. Public Key Cryptography
  16. Digital Signatures and Certificates and their Constructions
  17. Stream Ciphers
  18. Introduction to Cryptographic Hash Functions
  19. Difference between Hash Functions and Encryption Standards
  20. Construction of Iterated Hash Functions
  21. Practical Attacks on Cryptographic hash functions (Commitment Pitfalls)
  22. Message Authentication Codes and Message Detection Codes (The tree Structure)
  23. Construction of Hash Functions (SHA0, SHA1, SHA2, SHA3 and their Families)
  24. Attacks on Hash Functions and their practical workings
  25. Construction of Message Detection Codes (MD5)
  26. Attacks on Message Detection Codes (Breakage of MD5) (Published in Hackin9)
  27. The RSA cryptosystem (complete explanation and modeling) and its construction
  28. Testing for the generation of Prime Numbers – Primality Testing Algorithms
  29. Security of RSA Cryptosystem
  30. Diffie-Hellman Key Exchange cryptosystem
  31. The attack on Diffie-Hellman Cryptosystem
 

CHAPTER 9: Cyber Forensics

  1. Introduction to Cyber Forensics
  2. Working on Practical Case Studies
  3. Incident Handling and it’s working demo practical’s
  4. Autopsy
  5. Checksum
  6. FTK – Forensics Toolkits
  7. File Recovery
  8. Helix
  9. Data Hiding Techniques
  10. Hiren Boot CD’s
  11. Lime Forensics
  12. Password Clearing
  13. Process Tools
  14. Volatile Framework
  15. Web Browsing
  16. Windows Tools used for Forensics
 

CHAPTER 10: Google — The GOD

  1. Demonstrating the Power of Google
  2. Understanding the basics of Search Engines
  3. Working of the Search Engines
  4. Understanding in depth crawling and spidering of Search Engines
  5. How to search anything anonymously on Google
  6. Working on the basics of gathering the site complete information
  7. Gathering the inbound URL’s of the website
  8. Sites prone to leak hackable materials
  9. Leaking the footholds of the web-servers
  10. Gathering the files in Google contains the Username/Passwords
  11. Gathering the Sensitive directories prone to the leak of data-servers
  12. Collecting all the vulnerable sites on Google
  13. Collection of materials that contains the juicy information about servers
  14. Gathering the advisories and vulnerabilities through Google
  15. Linux tools to gather out much advance information about Google
 

WHY CHOOSE US FOR ETHICAL HACKING TRAINING IN JALANDHAR?

Ethical Hacking Training in Jalandhar can become the best career option for students and it has some reason to sat this phrase.

  • We provide flexible class timings according to student’s convenience and availability.
  • We support any training with more practical sessions & real-time scenarios.
  • Our way of training makes the student capable of working on live projects & latest technologies.

 

ITRONIX TRAINER’s PROFILE FOR ETHICAL HACKING TRAINING IN JALANDHAR

Ethical Hacking trainers at ITRONIX SOLUTIONS:

  • Our Expertise is fully up-to-date in the subjects & have hands-on experience in real-world industry application.
  • Have received awards and recognition from our partners and various recognized IT Organizations.
  • Our expertise is certified in their particular field.
  • Have received awards from top leading brands & our partner like Google, IBM, Microsoft & Intel.
  • Our trainer for this Ethical Hacking has hands-on experience in Ethical Hacking, including an immense year of experience teaching Ethical Hacking for entrepreneurs and professionals.

 

ITRONIX’S Placement Assistance

Being one of the top Ethical Hacking Training Institute and a Certified Google Partner, Itronix Solutions deals with 100% Job Placements for Eligible Students after successful completion of the course.

  • ITRONIX helps in Learn how to keep yourself updated with latest trends and technologies.
  • ITRONIX helps in updating your resume according to the job requirement
  • ITRONIX helps in sorting and training the candidates according to company requirement.
  • ITRONIX helps in Interview Training Questions and Answers, Spoken English, Group Discussions, Mock Interviews, Presentation skills to prepare students to face a challenging interview situation with ease.
  • ITRONIX helps in providing placement assistance in top IT FIRMS like Google, Youtube, Sasken, Amazon, HCL, TCS, Infosys, Wipro, Intel, Robert Bosch, Mindtree, Accenture and many more.

ITRONIX SOLUTIONS Course duration for Ethical Hacking Industrial Training in Jalandhar

  • Fast Track Training Program (6+ hours daily)
  • Regular Classes(Morning, Daytime & Evening)
  • Weekend Training Classes(Saturday, Sunday & Holidays)

Top 25 Reasons to Choose ITRONIX for Ethical Hacking Training in Jalandhar

  • Ethical Hacking training in Jalandhar is designed according to current IT field scenarios.
  • We offer the best Ethical Hacking training and placement in Jalandhar with well-defined training modules & curriculum
  • We facilitate regular, weekend and personal Ethical Hacking training in Jalandhar.
  • We have one of the biggest team of certified expertise with 7+ years of real industry experience.
  • Mentors of Ethical Hacking training in Jalandhar helps in major project training, minor project training, live project preparation, interview preparation, and job placement support.
  • Smart labs with fully equipped &latest equipment’s.
  • 24×7 lab facility. Students are free to access the labs for an unlimited period of hours as per their own preferred timings.
  • Smart classrooms fully equipped with projectors, live racks, Wi-Fi connectivity, digital pads. We have the latest labs equipment.
  • Weekly Group Discussions.
  • On training included mock test series, interview preparation, group discussions
  • Free of cost weekly seminars on personality development & personal presentation.
  • A series of Study Material provided: Books, PDF’s, Video Lectures, Sample questions, Interview Questions (Technical and HR), and live Projects.
  • PG/Flats facilities available at Rs.4,500/- per month for Ethical Hacking training in Jalandhar.
  • 24*7 assistance from our expertise.
  • Globally recognized course completion certification.
  • Extra Time Slots (E.T.S.) for Practical ’s, Absolutely Free.
  • Doubt Sessions on weekends.
  • The ability to retake the class at no-charge as often as desired.
  • One-on-One attention and guidance by our trainers.
  • Instructors help students to take knowledge of complex technical concepts.
  • Payment options: Cheque, Cash, Credit Card, Debit card, Net Banking, Paytm, Google Pay.
  • We are committed to helping students achieving their desired goals
  • Our years of experience helps us in delivering true value solutions to students, professionals, and entrepreneurs.
  • Success in ITRONIX SOLUTIONS gives students admission to the world’s best MNC’s
  • ITRONIX SOLUTIONS is passionate about the education of students, this factor makes us an extremely popular & first choice for learners.