CODENAME: Ninja Skills Course

Home   /   CODENAME: Ninja Skills Course

Welcome to Our Advanced Penetration Testing Course

CODENAME: Ninja Skills

In this Course you will Learn : 

 

  • Building a Complex Penetration Testing Lab
  • Advanced Web Application Vulnerability Hunting
  • Bypassing and Defeating Web Defenses
  • Bypassing and Defeating Windows Defenses
  • Bypassing and Defeating Network and Host Based Defenses:
  • Stealth Auditing Techniques
  • Advanced and Uncommon Attacking Techniques
  • Attacking Routing Infrastructure
  • Advanced Client Side Attacks Techniques
  • Advanced Post Exploitation Techniques
  • Advanced Data Exfiltration
  • Blackhat Attacking Style

 

_______________________________________________________________________________________________________

Sample Course Outline :

 

Pre-Module:

1- Advanced methodologies and processes
2- From a BlackHat Perspective
3- From a professional Penetration testing prospective
4- Building a Complex Penetration Testing Lab

Module 1: Advanced Web Application Vulnerability Hunting:

1- Advanced SQL Injection vulnerability Hunting
2- Advanced Blind SQL Injection vulnerability Hunting
3- Advanced XSS stored/Reflected Vulnerability Hunting
4- Advanced Local File Inclusion Vulnerability Hunting
5- Advanced Remote File Inclusion Vulnerability Hunting
6- Advanced HTML5 attacks
7- Attacking Web Services and leveraging attack surfaces such as XML/Soap
8- Accessing and Debugging Ajax functionality

Module 2: Bypassing and Defeating Web Defenses:

1 – Bypassing PHP Security Defenses
2 – Bypassing Web Application Firewalls (WAF)
3 – Defeating XSS Defenses and Security Filters
4 – Defeating SQL Injection Defenses and Security Filters
5 – Defeating File upload Defenses and Security Filters
6 – Defeating Local File Include Defenses and Security Filters
7 – Defeating CSRF Defenses and Security Filters
8 – Bypassing Flash login pages

Module 3: Bypassing and Defeating Windows Defenses:


1 –  Bypassing Windows User Access Control (UAC)
2 –  Bypassing Windows Security Essentials and Others
3 –  Bypassing Windows Group Policy (GPO)
4 –  Bypassing Windows Restricted Desktops Environments
5 –  Defeating Windows Software Restriction Policies (SRP) and AppLocker restrictions
6 –  Bypassing Windows server 2008 Firewall and Scanning Through it
7 –  Bypassing Windows Internet Information Services (IIS) WebDAV
8 –  Bypassing Windows Login Screen from Windows XP to Windows 7
9 –  Bypassing Windows Limited User Privileges
10 – Defeating Antivirus during Browsers Exploitation

Module 4: Bypassing and Defeating Network and Host Based Defenses:

1 – Bypassing Intrusion Prevention Systems (IPS)
2 – Bypassing Network Access Controls and Port Security
3 – Defeating Intrusion Detection Systems (IDS)
4 – Bypassing DNS and HTTP Load Balancers
5 – Bypassing Application Control and Whitelisting
6 – Defeating Arp Static Entry

Module 5: Stealth Auditing Techniques:

1 – Stealth Nmap scan
2 – Stealth Nessus Scan
3 – Stealth BurpSuite Scan
4 – Stealth Nikto Scan
5 – Stealth Sqlmap Scan and Exploitation
6 – Stealth Web Applications Security Scan (Joomla, WordPress, Drupal)
7 – Stealth Windows Environments Enumeration

Module 6: Advanced and Uncommon Attacking Techniques:

1 – Attacking ColdFusion
2 – Attacking jboss
3 – Attacking oracle
4 – Attacking SharePoint
5 – Attacking IPv6 Networks
6 – Attacking Scada Systems
7 – Attacking Apache tomcat and Apache Struts
8 – Attacking MySQL Server
9 – Attacking Microsoft SQL Server
10 – Attacking Oracle
11 – Attacking WPAD
12 – Attacking Kerberos
13 – Attacking NBNS
14 – Attacking SMB
15 – Attacking VPN

Module 7: Attacking Routing Infrastructure:

1 – Profiling routing attack surfaces
2 – Understanding and reviewing router configuration files
3 – GNS3 labs and configuration setups, configuring your infrastructure
3 – Local and remote password attacks
4 – Port mirroring and Span porting traffic
6 – Bypassing Vlan Restrictions
7 – Other advanced traffic routing manipulation attacks leveraging loki and Yersinia

Module 8: Advanced Client Side Attacks Techniques :

1 – Attacking Microsoft Office 2007/2010
2 – Attacking JAVA
3 – Crypting Browser exploits
4 – Advanced Delivery Methods

Module 9: Advanced Post Exploitation Techniques:

1 – Account and domain expanding access
2 – Privilege Escalation via services and token passing
3 – Using Memdump to gain clear text passwords
4 – Finding useful files and information on linux(History, ssh keys, etc etc)
5 – Attacking SSH-Agent to extend access rights on linux
5 – Bypassing network segmentation via Tunneling/Proxying
6 – Persistent access (persistent shells, rootkits, Botnets)
7 – Leveraging meterpreter scripts and post exploitation capabilities

Module 10: Advanced Data Exfiltration:

1 – Searching for gold (data exfiltration methodologies)
2 – Manually attacking data sources and file shares
2 – Attacking and searching file shares with OpenDLP
3 – Targeted data extraction and validation with the pillager
4 – Moving data and files around the network

Module 11: What’s next:

1  - From a BlackHat Perspective
2 – From a professional Penetration testing prospective

 

 

_Very Soon_