Learn about Penetration Testing and their types. Penetration Testing is the Follow-On Steps once Vulnerability Assessment Completed. This Module Covers Web Server Pentesting & Attacks, including a comprehensive attack methodology used to audit vulnerabilities in web server infrastructures and countermeasures.

Key Points:

• Introduction of Penetration Testing
• Types of Penetration Testing
• White Box, Grey Box, Black Box Pentesting
• Sample Penetration Testing Report
• Manual Vs Automated Penetration Testing
• Introduction of Web Server
• Web Server Concepts
• How To Create a Web Server
• Python Module for Web Server
• Services for Webserver
• How to get IP Address of Remote Machine with your own Web Server
• How to Search for Exploits
• Fundamentals of Metasploit Framework (An Exploitation Tool)
• Payload Creation
• Penetration Testing / Hacking Without Metasploit
• Use of exploit-db.org
• Discovering Risks & Misconfiguration in Web Servers
• Web Defacement
• Penetration Testing Tools
• Countermeasures of Server Hacking
• Patch Management
• Patch Management Tools

Learn about packet-sniffing techniques and how to use them to discover network vulnerabilities, as well as
countermeasures to defend against sniffing attacks.

Key Topics:

• Sniffing Concepts
• Man in the Middle (MITM) Attack
• MAC Attacks
• DHCP Attacks
• ARP Poisoning
• Spoofing Attacks
• DNS Poisoning
• Sniffing Tools
• Countermeasures
• Sniffing Detection Techniques

Understand the various session hijacking techniques used to discover network-level session management,
authentication, authorization, and cryptographic weaknesses and associated countermeasures.

Key Topics:

• Session Hijacking Concepts
• Web Application-Level Session Hijacking
• Network Level Session Hijacking
• Session Hijacking Tools
• Countermeasures

Learn social engineering concepts and techniques, including how to identify theft attempts, audit human-level
vulnerabilities, and suggest social engineering countermeasures.

Key Topics:

• Social Engineering – Introduction
• Types of Social Engineering
• Insider Threats
• Impersonation on Social Networking Sites
• Social Engineering Tools
• Countermeasures

Learn different types of Malwares such as Trojans, viruses, and worms as well as system auditing for malware
attacks, malware analysis, and countermeasures.

Key Topics:

• Introduction to Malwares
• Types of Malwares
• What is VIRUS
• What is Worm
• Virus Vs Worms
• Trojan Concepts
• Spyware (Keylogger)
• Installing Bots on Target Machines
• Working of Bots
• Malware Detection & Prevention
• Anti-malware Strategies

Learn about different Denial of Service (DoS) and Distributed DoS (DDoS) attack techniques, as well as the tools used to audit a target and devise DoS and DDoS countermeasures and protections.

Key Topics:

• Introduction to DOS & D-DOS Attack
• Types & Techniques of DOS/D-DOS Attack
• Botnet Distribution
• DOS/D-DOS Tools
• Identification & Prevention Techniques & Tools

Learn about Protection of Data with the concept of Backup (Online/Offline), Restore, Erasing Techniques &
Cryptography Techniques that include Encryption algorithms, cryptography tools, Public Key Infrastructure
(PKI), Disk & Drive Encryption, Encryption/Decryption, Steganography, Hashing attacks, and Data Recovery
Tools.

Key Topics:

• Introduction of Data Security
• Data Security Concepts
• Data Backup Strategies
• Data Recovery
• Data Erasing
• Cryptography Concepts
• Hashing
• Steganography
• Data Security Frameworks

Learn about SQL injection attack techniques, injection detection tools, and countermeasures to detect and defend
against SQL injection attempts. Perform an SQL Injection attack against MySQL to extract database & Detect
SQL Injection vulnerabilities using various SQL Injection detection tools.

Key Topics:

• SQL Injection Concepts
• How to Hunt for SQL Injection Vulnerability
• Types of SQL Injection
• SQL Injection Methodology
• Evasion Techniques
• SQL Injection Tools
• Countermeasures

Learn about web application attacks, including a comprehensive web application hacking methodology used to audit vulnerabilities in web applications and countermeasures.

Key Topics:

• Web Application Concepts
• Web Application Threats
• OWASP Top 10 Web Application Security Risk
• Web Application Hacking Methodology
• Web Application Hacking Attacks
• Web Application Footprinting & Recon
• Cross Site Scripting (XSS)
• File Inclusion
• Bruteforce Attacks
• Directory Fuzzing
• Cross Site Request Forgery (CSRF)
• Directory Traversal / Path Traversal
• File Upload Vulnerability
• Command Injection
• Broken Access Control
• Parameter Tampering
• Server Level Access with Web App Vulnerability
• Reverse Shell
• Simple Backdoor Shell
• Protection & Countermeasures

Understand Different Types of Wireless Technologies, Including Encryption, Threats, Hacking Methodologies,
Hacking Tools, Wi-Fi Security Tools, And Countermeasures.

Key Topics:

• Introduction to Wireless Networks
• What is WLAN
• 802.11 Standards for WLAN
• Types of Wireless Networks
• Access Point
• SSID
• Wireless Terminologies
• Types of Wireless Encryption
• Wireless Hacking Methodology
• Wireless Hacking Tools
• Protection & Countermeasures

Get introduced to firewall, intrusion detection system (IDS), intrusion prevention system (IPS) and honeypot
evasion techniques; the tools used to audit a network perimeter for weaknesses; and countermeasures. Bypass
Windows Firewall, firewall rules using tunnelling & antivirus.

Key Topics:

• Firewall
• Create your own Firewall
• Intrusion Detection System (IDS) & Intrusion Prevention System (IPS)
• Honeypots

Learn how VPN works and discover protocols like PPTP, L2TP, IPsec and SSL. Build your own VPN network by yourself.

Key Topics:

• Introduction to VPN
• Application & Requirements of VPN
• Protocols of VPN
• Tunnelling Mechanism in VPN
• Models of VPN
• OpenVPN
• Setup your own VPN Server
• VPN Security Issues
• VPN Threats

Understand the basics of Routers & their types with configuration of router by using static & dynamic routing
protocol. How to secure routers & security with routing.

Key Topics:

• Router Concepts
• Routing Protocols
• Simulators of Router
• Network Address Translation
• Router Security

Understand the basics of Routers & their types with configuration of router by using static & dynamic routing protocol. How to secure routers & security with routing.

Key Topics:

• Cyber Crime
• Cyber Forensics

Learn how Email works, components of email, email services & protocols. Understand the Email Clients & Their
Security. Email Spoofing, Email Tracking & Header Analysis Tools.

Key Topics:

• Introduction
• History of E-Mail
• Email Addresses
• How E-Mail Works?
• Various mail servers
• E-Mail Protocols
• Email Clients
• Setup & Secure Email Clients
• Analysis of Email Headers
• Email Tracking
• What is Spamming
• Ways to prevent spam
• Security threats to your email communications (recent updates)
• Setup Email Filter
• Security Policies

Learn Mobile platform attack vector, android hacking, mobile device management, mobile security guidelines, and security tools.

Key Topics:

• Mobile platform attack vectors
• Hacking Android OS
• Android Spywares
• Android Trojans
• Securing Android Devices

Learn different types of IoT and OT attacks, hacking methodology, hacking tools, and countermeasures.

Key Topics:

• IoT Concepts
• IoT Attacks
• IoT Hacking Methodology
• IoT Hacking Tools
• Countermeasures

Learn different cloud computing concepts, such as container technologies and server less computing, various cloud computing threats, attacks, hacking methodology, and cloud security techniques and tools.

Key Topics:

• Concepts of Cloud Computing
• Types of Cloud Computing Services
• Cloud Computing Deployment Model
• Serverless Computing
• Cloud Attacks
• Cloud Hacking
• Countermeasures

Learn & Understand about Cyber Law that is also called IT Law is the law regarding Information-technology
including computers and the internet.

Key Topics:

• Cyber Law & IT Acts
• IT Act 2000
• Important Sections of IT Act 2000
• Conclusions