Vulnerability Assessment and Penetration Testing (VAPT)

  Goal

 “If you want to stop hackers from invading your network, first you've got to invade their minds”.

 The goal of the VAPT course is to help your organization take preventive measures against malicious attacks by attacking the system itself; all the while staying within legal limits. This philosophy stems from the proven practice of trying to catch a thief, by thinking like a thief. As technology advances and organisations depend on technology increasingly, information assets have evolved into critical components of survival.

 If hacking involves creativity and thinking 'out-of-the-box', then vulnerability testing and security audits will not ensure the security proofing of an organization. To ensure that organizations have adequately protected their information assets, they must adopt the approach of “defense in depth”. In other words, they must penetrate their networks and assess the security posture for vulnerabilities and exposure.

 The VAPT Program prepares individuals in the specific network security discipline to sit for several certifications such as CEH, CPTS, AIS from a vendor-neutral perspective. These certifications will fortify the application knowledge of security officers, auditors, security professionals, site administrators, and anyone who is concerned about the integrity of the network infrastructure. A VAPT is a skilled professional who understands and knows how to look for the weaknesses and vulnerabilities in target systems and uses the same knowledge and tools as a malicious hacker.

 The goal of our five-day VAPT Instructor-Led Training modules is to equip information security professionals with the knowledge to identify and correct exploits that make information systems vulnerable to attack.

Content

  Module 1: Introduction to Ethical Hacking

  Module 2: Hacking Laws

  Module 3: Footprinting

  Module 4: Google Hacking

  Module 5: Scanning

  Module 6: Enumeration

  Module 7: System Hacking

  Module 8: Trojans and Backdoors

  Module 9: Viruses and Worms

  Module 10: Sniffers

  Module 14: Denial of Service

  Module 15: Session Hijacking

  Module 16: Hacking Webservers

  Module 17: Web Application Vulnerabilities

  Module 18: Web based Password Cracking Techniques

  Module 19: SQL Injection

  Module 20: Hacking Wireless Networks

  Module 22: Linux Hacking

  Module 23: Evading IDS Firewall and Honeypot

  Module 24: Buffer Overflows

  Module 25: Cryptography

 

 Prerequisites:

 Basic knowledge on TCP/IP, Linux and Windows 

 Audience

  IT Security Consultants, Engineers / Technicians and System / Network Administrators.

 Duration: 5 days