SANS SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking

دوره SANS SEC660 به نام “Advanced Penetration Testing, Exploits, and Ethical Hacking” یک دوره پیشرفته از موسسه SANS است که به متخصصان امنیتی کمک می‌کند تا مهارت‌های پیشرفته‌ای در زمینه تست نفوذ (Penetration Testing) و هک اخلاقی (Ethical Hacking) به دست آورند. این دوره به طور ویژه برای افرادی طراحی شده که با تست نفوذ و ارزیابی آسیب‌پذیری‌های سیستم‌ها آشنایی دارند و می‌خواهند در مهارت‌های خود پیشرفت کنند.

در این دوره، شرکت‌کنندگان با روش‌های پیشرفته حملات، تکنیک‌های جدید برای دسترسی به سیستم‌ها، کشف و بهره‌برداری از آسیب‌پذیری‌ها و همچنین چگونگی مقابله با حملات به صورت واقعی و عملی آشنا خواهند شد. برخی از مفاهیم کلیدی که در این دوره پوشش داده می‌شود عبارتند از:

1. تست نفوذ شبکه‌های پیچیده: بررسی آسیب‌پذیری‌ها در سیستم‌ها و شبکه‌ها با استفاده از تکنیک‌های پیشرفته.
2. بهره‌برداری از آسیب‌پذیری‌ها: یادگیری چگونگی پیدا کردن و استفاده از آسیب‌پذیری‌های موجود برای دسترسی به سیستم‌ها.
3. مهندسی اجتماعی: تکنیک‌های مهندسی اجتماعی برای فریب کاربران و دسترسی به اطلاعات حساس.
4. حملات وب‌سایت و برنامه‌های کاربردی: تحلیل آسیب‌پذیری‌ها در اپلیکیشن‌های وب و یافتن روش‌های نفوذ به آن‌ها.
5. دفاع در برابر حملات: استراتژی‌ها و تکنیک‌های دفاعی برای مقابله با تهدیدات مختلف.

این دوره به دلیل پیچیدگی‌های بالای خود نیازمند دانش قبلی در زمینه تست نفوذ و امنیت سیستم‌ها است. هدف اصلی این دوره ارتقاء مهارت‌های تست نفوذ و توانایی انجام حملات پیچیده به صورت اخلاقی است تا سازمان‌ها بتوانند آسیب‌پذیری‌های امنیتی خود را شناسایی و از آن‌ها محافظت کنند. اگر علاقه‌مند به شرکت در این دوره هستید، بهتر است از پیش تجربه‌ای در زمینه تست نفوذ و امنیت شبکه داشته باشید.

Date: 2019
Price: 7,020 US

SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking is designed as a logical progression point for those who have completed SANS SEC560: Network Penetration Testing and Ethical Hacking, or for those with existing penetration testing experience. Students with the prerequisite knowledge to take this course will walk through dozens of real-world attacks used by the most seasoned penetration testers. The methodology of a given attack is discussed, followed by exercises in a hands-on lab to consolidate advanced concepts and facilitate the immediate application of techniques in the workplace. Each day of the course includes a two-hour evening boot camp to drive home additional mastery of the techniques discussed.

A sample of topics covered includes weaponizing Python for penetration testers, attacks against network access control (NAC) and virtual local area network (VLAN) manipulation, network device exploitation, breaking out of Linux and Windows restricted environments, IPv6, Linux privilege escalation and exploit-writing, testing cryptographic implementations, fuzzing, defeating modern OS controls such as address space layout randomization (ASLR) and data execution prevention (DEP), return-oriented programming (ROP), Windows exploit-writing, and much more!

Attackers are becoming more clever and their attacks more complex. To keep up with the latest attack methods, you need a strong desire to learn, the support of others, and the opportunity to practice and build experience. This course provides attendees with in-depth knowledge of the most prominent and powerful attack vectors and furnishes an environment to perform these attacks in numerous hands-on scenarios. The course goes far beyond simple scanning for low-hanging fruit and shows penetration testers how to model the abilities of an advanced attacker to find significant flaws in a target environment and demonstrate the business risk associated with these flaws.

SEC660 starts off by introducing advanced penetration concepts and providing an overview to prepare students for what lies ahead. The focus of day one is on network attacks, an area often left untouched by testers. Topics include accessing, manipulating, and exploiting the network. Attacks are performed against NAC, VLANs, OSPF, 802.1X, CDP, IPv6, VOIP, SSL, ARP, SNMP, and others. Day two starts with a technical module on performing penetration testing against various cryptographic implementations, then turns to network booting attacks, escaping Linux restricted environments such as chroot, and escaping Windows restricted desktop environments. Day three jumps into an introduction of Python for penetration testing, Scapy for packet crafting, product security testing, network and application fuzzing, and code coverage techniques.

Days four and five are spent exploiting programs on the Linux and Windows operating systems. You will learn to identify privileged programs, redirect the execution of code, reverse-engineer programs to locate vulnerable code, obtain code execution for administrative shell access, and defeat modern operating system controls such as ASLR, canaries, and DEP using ROP and other techniques. Local and remote exploits as well as client-side exploitation techniques are covered. The final course day is devoted to numerous penetration testing challenges that require students to solve complex problems and capture flags.

Among the biggest benefits of SEC660 is the expert-level hands-on guidance provided through the labs and the additional time allotted each evening to reinforce daytime material and master the exercises.

You Will Learn:

• How to perform penetration testing safely against network devices such as routers, switches, and NAC implementations.
• How to test cryptographic implementations.
• How to leverage an unprivileged foothold for post exploitation and escalation.
• How to fuzz network and stand-alone applications.
• How to write exploits against applications running on Linux and Windows systems.
• How to bypass exploit mitigations such as ASLR, DEP, and stack canaries.

Course Syllabus SANS SEC660

SEC660.1: Network Attacks for Penetration Testers
SEC660.2: Crypto, Network Booting Attacks, and Escaping Restricted Environments
SEC660.3: Python, Scapy, and Fuzzing
SEC660.4: Exploiting Linux for Penetration Testers
SEC660.5: Exploiting Windows for Penetration Testers