Ethical Hacking

Best Ethical Hacking Training in Ludhiana | Ethical Hacking Course in Ludhiana | Ethical Hacking Training Institute in Ludhiana

1: Introduction to Information Security

1. What is Information Security
2. The misconception of the term Hackers and System
3. Sun Tzu’s definitions and Workings
4. Principle of Hacking
5. Working of Security Triangle
6. Biggest Threat – Security, Why?
7. Elements of Security
8. Terminologies of the Security
9. Classes of Hackers
10. Types of Attacks
11. Steps followed for hacking into the system
12. Important Websites to follow

CHAPTER 2: Networking and its Principles and it’s security

1. Working on Network Technologies (Using Packet Tracer)

1. 1. Introduction to Networks (basics)
   2. Difference between OSI and TCP model
   3. IP addressing in depth
      1. Demo of Three Way Handshaking
      2. What is an IP?
      3. Types of Address
      4. Public IP address
      5. Private IP address
      6. Demos of Public and Private IP address
      7. Calculation of subnets/Subnet Mask
   4. Usage of Switches/ Routers/Hubs in practical scenarios
   5. Building up of Network Topologies
   6. Collisions and Broadcast Domains

2. Routers in Depth (Demos in Packet Tracer)

1. 1. What are Routers??
   2. Routing in details
   3. Tools for networking
   4. Static and Dynamic Routing
   5. OSPF (open shortest path first)
   6. RIP (Routing Information Protocol)
   7. EIGRP (Enhanced Interior Gateway Routing Protocol)

3. Switches in depth (Demos in packet tracer)

1. 1. Working of a Switch
   2. LAN Switching
   3. CSMA/CD
   4. VLANs (in depth)
      1. Introduction to VLAN’s
      2. Access Ports and Trunk Ports
      3. Configuring VLAN’s in Packet Tracer
      4. Native VLANs
      5. Inter-VLAN Routing
   5. Switch Security
   6. Port Security
   7. VTP (Virtual LAN Trunk Protocol)
      1. Working of VTP
      2. VTP Modes
      3. Configuring of VTP
   8. STP (Spanning Tree Protocol)
      1. Working of STP
      2. Introduction Configuring of STP
   9. NAT (Network Address Translations)
      1. What is NAT?
      2. Real-time Scenarios of using NAT
      3. Types of NAT
      4. Configuring of Static NAT
   10. DHCP (Dynamic Host Configuration Protocol)
       1. Introduction to DHCP
       2. Configuring of DHCP

4. Portstion to Ports

1. 1. Working of Ports
   2. Types of Interfaces and ports
   3. Scanning of Ports (using Nmap and Nessus)
   4. Demo of Services running on ports

CHAPTER 3: Concept of Virtualization

1. Introduction to Virtualization
2. Working on the real-time scenarios
3. Working on the virtual machines
4. Creation of a virtual network of different OS
5. Creation of the client and server architecture on virtual machines

CHAPTER 4: Operating System Based Attacks

1. Introduction to the Operating System
2. Working of the Firmware
3. Complete working of the Booting Process
4. Importance of the Boot Loaders in OS hackings
5. Difference between Linux and Windows
6. Windows
7. Introduction to Windows
8. Installation of different flavors of Windows
9. Introduction to the hash functions
10. Hash functions securing the Windows
11. Getting into the hash functions to compromise windows
12. Introduction to System Administrations and its breaking
13. Exploitation (Real-time Working Exploits)
14. Basics of the Exploitation of real-time exploits
15. Confirming the attack exploitation
16. Configuring of the real-time test beds exploitation
17. Confusing Payloads and making choice of real-time attacking payloads
18. Demonstration of GUI and CLI payload working exploits
19. In-depth working of the “meterpreter” payload
20. Working of the Armitage – GUI exploitation of windows
21. Organizing the MSF panels
22. Introduction to the Post Exploitations
23. Demonstration of the Kung-Fu Exploitations
24. Complete Privilege Escalations of the Operating Systems
25. Dismantling the Anti-viruses
26. Disabling the Firewalls
27. Working on the Backdoors for the Post Exploitation
28. Getting into the Stealing of the Tokens
29. Working on the Priv and Sniffer Extensions
30. Introduction to the Port Forwarding and its demonstration
31. Adding of the functions and the DLL files to the windows and it’s exploitation
32. Demonstrations of the client-side working exploits
33. Introduction to the rootkits and their exploitation
34. Entering hands into the plugins support to the msf
35. Working on the API’s of the msf
36. Migrating the clone to the scripting under meterpreter

CHAPTER 5: Web Security and It’s Exploitation

1. Introduction to Web Applications

1. • Overview of the Penetration Testing and it’s types
   • Overview of the Web from the penetration tester’s view
   • Difference between the Websites/Web Apps/Web-Servers
   • Confusion of what to hack??
   • Exploring the server-client architecture
   • The building of the test-beds for pentesting

2. Exploring the Vulnerabilities

1. • Working of the complete session state works of the web
   • Exploring and Gathering the different types of vulnerabilities (in RAW)
   • Methods to focus only on the vulnerability
   • Exploring the URL and the build part of the SSL layer and It’s a weakness.
   • Crawling into the pool of Spidering the websites
   • Working of the Browsers, HTTP based Protocols and their Request Methods
   • The Exploitation phases and it’s complete following path algorithms
   • Types of Web-Apps attacks

3. Fundamentals of HTTP and HTTPS

1. • Introduction to Ports
   • Explanation of the Working of WEB
   • Demonstrations on the Ports Services are given by IANA
   • Introduction to HTTP and HTTPS
   • Working of headers
   • Work on Getting a Web Page
   • HTTP Requests and It’s Responses
   • HTTP and HTTPS cookies
   • Working and Storing Demos of Port Services Based Cookies
   • Introduction to Meta Tags and It

4. The XSS based attacks (Basic to Advance)

1. • Introduction to the XSS
   • Discovering the back-end raw codes.
   • Learning the basic JavaScript
   • Preparing and Working of the test-beds for XSS based JavaScript codes
   • Types of the XSS attacks in the live world
   • Testing for the XSS based attacks
   • Stored Types of XSS
   • I-frame based XSS attacks
   • Cookie Stealing based XSS attacks
   • Reflected XSS basic testing
   • Reflected XSS of displaying the value over the URL
   • Cookie Stealing through Reflected XSS

5. Cross Site Script Forgery

1. • Introduction to CSRF
   • Working of the CSRF vulnerability
   • Complete working of Session Tokens/Tokens and Session ID’s
   • Flow-Chart designing of the complete attack
   • Algorithm for the working of the attack.
   • Practical Working of the Attack
   • Basic testing for the working of CSRF attack
   • Working on the URL’s for the test-bed CSRF attacks
   • Completely Rooting the user panels to the main rooted panels.

6. Remote Command Execution Attack

1. • Introduction to Linux and Windows kernel shell
   • Working on the basic commands of Linux
   • Working of the networking related to Linux
   • Complete configuring of the apache2 and the tomcat servers
   • Introduction to the Remote Command Execution
   • Working of the RCE to the server-end.
   • Working of the RCE to the client-end.
   • Exploitation of the servers from the client and server end through RCE
   • Extraction of the password files from inside the servers
   • Working of the netcat and it’s reverse_tcp back-connections
   • Creating the test-bed of RCE to the main attacker’s panel
   • Displaying the complete server configured by exploiting the RCE

7. Structured Query Language Injection

1. SQL Basics:

1. 1. • Introduction to SQL
      • What is Database
      • Working of Database
      • Working of Schemas
      • Working of the back Connections
      • Creation of the Database
      • Creation of Tables and Columns
      • Insertion of the Data into the columns

2. SQL Syntaxes (Important from hacking point of view)

1. 1. • SQL Select
      • SQL Distinct
      • SQL Where
      • SQL And & Or
      • SQL Order By
      • SQL Insert Into
      • SQL Update
      • SQL Delete
      • SQL Select Top
      • SQL Like
      • SQL Wildcards
      • SQL In
      • SQL Between
      • SQL Aliases
      • SQL Union
      • SQL Select Into
      • SQL Into Select
      • SQL Create DB
      • SQL Create Table
      • SQL Constraints
      • SQL Not Null
      • SQL Unique
      • SQL Primary Key
      • SQL Foreign Key
      • SQL Create Index
      • SQL Drop
      • SQL Alter
      • SQL Auto Increment
      • SQL Views
      • SQL Dates
      • SQL Null Values
      • SQL Null Functions
      • SQL Data Types
      • SQL DB Data Types

3. SQL Functions

1. 1. • SQL Avg()
      • SQL Count()
      • SQL First()
      • SQL Last()
      • SQL Max()
      • SQL Min()
      • SQL Sum()
      • SQL Group By
      • SQL Having
      • SQL Ucase()
      • SQL Lcase()
      • SQL Mid()
      • SQL Len()
      • SQL Round()
      • SQL Now()
      • SQL Format()

o URL’s

1. • • Composition of the URL
     • Working of URL
     • Browser’s importance to SQL part
     • Connection of URL with the Back-end Servers
     • Maintenance of the URL’s for browsing effects
     • Introduction to the URL Encoding
     • Demonstration of the UTF-8, ASCII, hex, and other encoding and decoding algorithms.

o Fundamentals of HTTP and HTTPS

1. • • Introduction to Ports
     • Explanation of the Working of WEB
     • Demonstrations on the Ports Services are given by IANA
     • Introduction to HTTP and HTTPS
     • Working of headers
     • Work on Getting a Web Page
     • HTTP Requests and It’s Responses
     • HTTP and HTTPS cookies
     • Working and Storing Demos of Port Services Based Cookies
     • Introduction to Meta Tags and It’s Working

6. SQL Injection Basics:

1. 1. • Introduction to SQL Injection
      • Working of Small Example of SQL Injection
      • Working of the String Based SQL Injection
      • Demonstration of the Browser’s effect in the attack.
      • Introduction to Plug-ins and add-ons
      • Working of Plug-ins and add-ons
      • Effect of Different Plug-ins and add-ons
      • Introduction to Google Dorks
      • Demonstration of the Google Dorks
      • Turning Search Engines into the Attacker’s Spy
      • Difference Between the GET and POST Header Response

WORKING ON GETTING METHOD

7. Error Based SQL Injection

1. 1. • Introduction to Error Based SQL Injection
      • Working and displaying the URL value enumerations
      • Introduction to the quote levels and their methodologies.
      • Breaking of the Query with different Quotes
      • Working of the Single Quotes
      • Working of the Double Quotes
      • Working of the Single Quotes with Magic Utilization.
      • Working of the Double Quotes with Magic Utilization
      • Working of the Single Quotes with the Magic Bracket’s
      • Working of the Double Quotes with the Magic Brackets
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of version
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Working on more Complexed examples of Error-Based

8. Double Query Based SQL Injection

1. 1. • Introduction to Double Query Injection
      • Demonstration Partial Bits Extraction Algorithm
      • Designing of the Algorithm for the attack at Back-end
      • Demonstration of the various SQL functions
      • Explanation and Demonstration of the True and False Statements
      • Explanation and Demonstration of the Random Function Statements
      • Explanation and Demonstration of the Rounding OFF Statements
      • Introduction to the Logic Gates
      • Mathematics Including to the Logic Gates
      • How Logic Gates helpful in executing the attacks
      • Introduction to the LIMIT function
      • Demonstration and how limit function plays a vital role in the attack
      • Rescuing off the whole algorithm design part
      • Working on the URL encoding enumerating values
      • Introduction to the quote levels and their methodologies.
      • Breaking of the Query with different Quotes
      • Working of the Single Quotes
      • Working of the Double Quotes
      • Working of the Single Quotes with Magic Utilization.
      • Working of the Double Quotes with Magic Utilization
      • Working of the Single Quotes with the Magic Bracket’s
      • Working of the Double Quotes with the Magic Brackets
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Working on More Complexed Algorithms Designing for Double Query Based SQL Injections

9. Blind Query Based SQL Injection

1. 1. • Introduction to Blind Query SQL Injection
      • Enumerating the different ID values
      • Differentiating the Blind SQL on ID value enumeration
      • Defining Boolean Based and Time Based SQL Injection
      • Explanation of the Boolean Based SQL Injection
      • Designing of the Boolean Based SQL Algorithm
      • Explanation and Demonstration of the True and False Statements
      • Explanation and Demonstration of the AND, OR Statements
      • Explanation and Demonstration of the Length Statements
      • Explanation and Demonstration of the Substring Statement
      • Explanation and Demonstration of the ASCII Statement Function
      • Role of ASCII values in designing and executing of the Attacks
      • Explanation and Demonstration of the True and False Statements for enumerating the data values over the guessing less than or greater than statement functions
      • Monitoring of the true and false values based Statements
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Introduction to the Time-Based Blind Query Injection
      • Following up the main misconception over the attack
      • Designing of the Time-Based Blind Query Injection Algorithm
      • Explanation and Demonstration of the Sleep Statements
      • Explanation and Demonstration of the IF and Else Statements
      • The explanation for the importance of the NULL Statements
      • Extraction of the Database Name, Version Number and Current User and it’s directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Extraction of the complete list of username and passwords.

10. Source List Files

1. 1. • Introduction to the Source Files
      • The explanation for the Raw data produced in attack
      • Dumping of the SQLI in a source outfile
      • Working on various other methodologies for dumping the queries

WORKING ON THE POST BASED METHODS

11. Error Based SQL Injection

1. 1. • Introduction to Error Based SQL Injection
      • Working and displaying the URL value enumerations
      • Introduction to the quote levels and their methodologies.
      • Breaking of the Query with different Quotes
      • Working of the Single Quotes
      • Working of the Double Quotes
      • Working of the Single Quotes with Magic Utilization.
      • Working of the Double Quotes with Magic Utilization
      • Working of the Single Quotes with the Magic Bracket’s
      • Working of the Double Quotes with the Magic Brackets
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of version
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Working on more Complexed examples of Error-Based

12. Double Query Based SQL Injection

1. 1. • Introduction to Double Query Injection
      • Demonstration Partial Bits Extraction Algorithm
      • Designing of the Algorithm for the attack at Back-end
      • Demonstration of the various SQL functions
      • Explanation and Demonstration of the True and False Statements
      • Explanation and Demonstration of the Random Function Statements
      • Explanation and Demonstration of the Rounding OFF Statements
      • Introduction to the Logic Gates
      • Mathematics Including to the Logic Gates
      • How Logic Gates helpful in executing the attacks
      • Introduction to the LIMIT function
      • Demonstration and how limit function plays a vital role in the attack
      • Rescuing off the whole algorithm design part
      • Working on the URL encoding enumerating values
      • Introduction to the quote levels and their methodologies.
      • Breaking of the Query with different Quotes
      • Working of the Single Quotes
      • Working of the Double Quotes
      • Working of the Single Quotes with Magic Utilization.
      • Working of the Double Quotes with Magic Utilization
      • Working of the Single Quotes with the Magic Bracket’s
      • Working of the Double Quotes with the Magic Brackets
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Working on More Complexed Algorithms Designing for Double Query Based SQL Injections

13. Blind Query Based SQL Injection

1. 1. • Introduction to Blind Query SQL Injection
      • Enumerating the different ID values
      • Differentiating the Blind SQL on ID value enumeration
      • Defining Boolean Based and Time Based SQL Injection
      • Explanation of the Boolean Based SQL Injection
      • Designing of the Boolean Based SQL Algorithm
      • Explanation and Demonstration of the True and False Statements
      • Explanation and Demonstration of the AND, OR Statements
      • Explanation and Demonstration of the Length Statements
      • Explanation and Demonstration of the Substring Statement
      • Explanation and Demonstration of the ASCII Statement Function
      • Role of ASCII values in designing and executing of the Attacks
      • Explanation and Demonstration of the True and False Statements for enumerating the data values over the guessing less than or greater than statement functions
      • Monitoring of the true and false values based Statements
      • Introduction to the Balance of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels
      • Introduction to the Time-Based Blind Query Injection
      • Following up the main misconception over the attack
      • Designing of the Time-Based Blind Query Injection Algorithm
      • Explanation and Demonstration of the Sleep Statements
      • Explanation and Demonstration of the IF and Else Statements
      • An explanation for the importance of the NULL Statements
      • Extraction of the Database Name, Version Number and Current User and it’s directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Extraction of the complete list of username and passwords.

14. Cookie Header Injection

1. 1. • Introduction to the Cookies
      • Working of the Cookies
      • Role of Cookies in the Injection Parameters
      • Working on the Valid Cookie Parameter Injections
      • Introduction to the Cookie Grabbers
      • Working of the Cookie Grabbers
      • Demonstration of the simplest cookie grabbing
      • Generation of the Error and Balancing the query
      • Monitoring the Cookie Values (the format ASCII checking)
      • Execution of the Attack
      • Grabbing the Database name and the version number
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Extraction of the usernames and passwords
      • Working on the complexed form of the Cookie Header Injection
      • Introduction to the Crypt values of the HTTP based services
      • Misconception for the Crypt and the Encode Values
      • Working on the Encoder algorithm (Base-64)
      • Decoding the encoded grabbed values.
      • Hijacking the Session during the specific time enumeration
      • Designing the attack algorithm for such formats of the encoders
      • Generation of the Error over such platforms
      • Balancing of the Errors generated with special characters
      • Extraction of the complete database name from decoded values
      • Extraction of the complete version number from decoded values
      • Extraction of the complete table names from decoded values
      • Extraction of the complete column names from decoded values
      • Extraction of the usernames and passwords from decoded values
      • Examples of more complexed cookie header injections and their monitoring based attacks.

15. Injection for the more Complexed Form Designed by Developers (Inserting value Statements chunked by Developer)

1. 1. • Working on the PHP based coding beds
      • Designing the algorithm for the blocked coded values
      • Monitoring of the block-chain values
      • Introduction to the Temper dumped data
      • Configuring of the plug-ins to grab the tempered data
      • Monitoring of the HTTP/HTTPS sniffed data
      • Dumping of the useful Grabbed data
      • Introduction to the Agents Field and Submitting the Validations
      • Introduction and working of the Burp-Suite
      • Intercepting the Proxies and working on the sniffed proxy Socket
      • Fuzzing of the data and intercepting the generated values
      • Balancing the generated values
      • Grabbing the database name and version number
      • Extraction of the Table names and Column names
      • Extraction of the Username and Passwords

16. Injections in the Updating Logged in Users (Hacking into Session Tokens)

1. 1. • Monitoring of the Logged in Users
      • Updation of the username and passwords by random users
      • Working on the back-end for checking of the updating validating values.
      • Fuzzing the web-apps for the generation of the error
      • Updating the SET validating values
      • Caution while working on the SET queries
      • Fixing of the URL
      • Working on Special Character and their Utilizations
      • Extraction of the Columns used by the Developer
      • Adjoining of all the columns in one single URL (Failure)
      • Bypassing the Adjoining functions
      • Replacement to the adjoining functions
      • Introduction to the fictitious values
      • Role of fictitious values in URL presenting
      • Enumerating the actual columns flaunt values on front-end
      • Extraction of the complete database names
      • Extraction of the version number
      • Extraction of the current user working and his directories
      • Extraction of the complete list of the table names
      • Extraction of the complete list of the column names
      • Introduction to the hex value algorithm
      • Working of the hex value algorithm and conversion’s importance
      • Working on the hex values for the URL encoding algorithms
      • Extraction of the usernames and passwords for the panels

17. Bypassing the Black-List Filters, Add-lashes

1. 1. • Introduction to the Add-lashes
      • Demonstration and Working of the PHP based code testbed
      • Working on the UTF-16 for the decoding and encoding of quotes
      • Introduction the Impedance Mismatch code values
      • Extraction of the complete database and its hand values
      • Introduction to the Black-list filters and their URL encoded values
      • Grabbing of the %- restoring validations
      • Bypassing the SPACE restricted validations
      • Extracting the complete database hand –on values

18. Mod Security Firewalls Bypass action

1. 1. • Introduction to the Mod Security Firewalls
      • Configuring of the Firewalls to provide the security
      • Configuring of the test-bed servers (Tomcat-Apache)
      • Configuring of the java based JDK
      • Difference between the JAVA and JSP based servers
      • Working on both the test-bed platforms
      • Extraction of the complete database hands-on

Phishing

Introduction to Phishing and it’s the concept of exploitation
Working on different techniques of phishing

ISR – Internet Stealers

1. • Introduction to Stealers
   • Types of Stealers
   • Configuring of the Stealers
   • Stealing the passwords from the browsers
   • Stealing from the web-apps configured

LFI and RFI based Attacks

1. • Overview of the LFI and RFI based Attacks
   • Working of the LFI and RFI attacks
   • Uploading of the PHP based shells through LFI

CHAPTER 6: Linux Hacking and It’s Security Parameters

1. Linux
2. Introduction to Linux
3. History of LINUX
4. Planning your Installation
5. Issues with Software’s
6. Issues with hardware
7. Installation of LINUX
8. Updation and Registration of LINUX
9. Some basic commands of LINUX
10. Introduction to Linux Security
11. Boot Security – Working on the Booting Security for Linux
12. Shell Security – How shell could be proved with dangerous attacks
13. Utilities—Working on some of the Linux based security utilities
14. NTP Configuration – How the Network Time Protocol differs with SSL
15. Syslog Replication – Making up of the Replicas with system logs
16. Resonance tools – gathering the information for the Linux Hacking
17. Xinetd TCP wrappers – Wrapping of the packets transmitted on N/W
18. Chatter and Lsattr – Unbreakable security of the Linux Security Files
19. TCPDump Telnet – How telnet is dangerous to open textures
20. SSH PKI Creation – Linux securing file transferring
21. SSH, SCP, and SFTP — Working on some other secured File transfer techniques
22. SSH Port Forwarding – Concept and working on Port Forwarding
23. MD5sum – Hashing technique explanation and it’s breaking
24. Encryption —
25. GPG creating keys
26. GPG creating data encryption
27. GPG import-export of the file
28. GPG signing
29. System-config-users
30. John the ripper
31. AIDE security
32. Bastille security

CHAPTER 7: Wireless Security and Hacking

1. Getting Started with Wireless
2. The difference in the world of wired and wireless
3. Existence and working of wireless
4. Creating the test-bed demo of wireless
5. Comparing bands for wireless with different countries
6. Introduction to channels and their working
7. Explaining the concept of Sniffing and it’s a hacking technique
8. Introduction to Beacon Frames, how they are working and it’s exploitation
9. Explaining the different terminologies with wireless
10. Working on the Man In the Middle Attack
11. Introduction to WEP
12. Working on the WEP Keys
13. Explaining the concept of the Three-Way-Handshaking
14. Complete Explanation for the Encryption Process
15. Cracking of the WEP
16. Introduction to WPA/WPA2
17. Working on the 4-way handshaking and it’s packet formation techniques
18. Breaking of WPA/WPA2

CHAPTER 8: Cryptography and Steganography

1. Introduction to Steganography
2. Demonstration of the Steganography techniques
3. Discussing the case-study for the World Trade Center
4. The problem of Trust—Evolution of Cryptography
5. Introduction of Cryptography and Basic Terminologies
6. Classical Cryptosystems – Techniques of Cryptography (15+ Practical Cryptographic Techniques)
7. Cryptanalyst Techniques (Breaking of Cryptosystems)
8. Block Ciphers (Concept of Boxes)
9. Data Encryption Standards (DES)
10. Cryptanalysis of DES
11. Advanced Encryption Standards (AES)
12. Cryptanalysis on AES
13. Linear Cryptanalysis
14. Differential Cryptanalysis
15. Public Key Cryptography
16. Digital Signatures and Certificates and their Constructions
17. Stream Ciphers
18. Introduction to Cryptographic Hash Functions
19. Difference between Hash Functions and Encryption Standards
20. Construction of Iterated Hash Functions
21. Practical Attacks on Cryptographic hash functions (Commitment Pitfalls)
22. Message Authentication Codes and Message Detection Codes (The tree Structure)
23. Construction of Hash Functions (SHA0, SHA1, SHA2, SHA3 and their Families)
24. Attacks on Hash Functions and their practical workings
25. Construction of Message Detection Codes (MD5)
26. Attacks on Message Detection Codes (Breakage of MD5) (Published in Hackin9)
27. The RSA cryptosystem (complete explanation and modeling) and its construction
28. Testing for the generation of Prime Numbers – Primality Testing Algorithms
29. Security of RSA Cryptosystem
30. Diffie-Hellman Key Exchange cryptosystem
31. The attack on Diffie-Hellman Cryptosystem

CHAPTER 9: Cyber Forensics

1. Introduction to Cyber Forensics
2. Working on Practical Case Studies
3. Incident Handling and it’s working demo practical’s
4. Autopsy
5. Checksum
6. FTK – Forensics Toolkits
7. File Recovery
8. Helix
9. Data Hiding Techniques
10. Hiren Boot CD’s
11. Lime Forensics
12. Password Clearing
13. Process Tools
14. Volatile Framework
15. Web Browsing
16. Windows Tools used for Forensics

CHAPTER 10: Google — The GOD

1. Demonstrating the Power of Google
2. Understanding the basics of Search Engines
3. Working of the Search Engines
4. Understanding in depth crawling and spidering of Search Engines
5. How to search anything anonymously on Google
6. Working on the basics of gathering the site complete information
7. Gathering the inbound URL’s of the website
8. Sites prone to leak hackable materials
9. Leaking the footholds of the web-servers
10. Gathering the files in Google contains the Username/Passwords
11. Gathering the Sensitive directories prone to the leak of data-servers
12. Collecting all the vulnerable sites on Google
13. Collection of materials that contains the juicy information about servers
14. Gathering the advisories and vulnerabilities through Google
15. Linux tools to gather out much advance information about Google

Top Reasons to join Web Ludhiana for Ethical Hacking Course in Ludhiana:

• We provide Ethical Hacking Training Video Tutorials of the classroom sessions, so in case if the candidate missed any class he/she can learn from those video tutorials by Er Karan Arora
• All our Ethical Hacking Training programs are based on Live Case studies and Industry Oriented Projects.
• Our training curriculum is approved by our Data Scientists and placement partners.
• Training/Coaching are going to be conducted on daily & weekly basis and conjointly. We will customize the training schedule as per the candidate necessities.
• We have one of the biggest team of certified expertise with 8+ years of real industry experience.
• Training will be conducted by our Founder and Data Scientists.
• Our Labs are terribly well-equipped with upgraded version of hardware and software.
• Our classrooms are fully geared up with projectors, Smart Labs, Smart Tablets & Wi-Fi access.
• We provide free Personality Development classes which includes Fluency, Group Discussions, Job interviews Preparation & Presentation skills.
• You will get study material in form of E-Book’s, Jupyter Notebooks and 1500 Interview Questions.
• Worldwide Recognized Course Completion Certificate by IBM, once you’ve completed the course.
• Flexible Payment options such as Paytm, Cheques, Google Pay, Cash, Credit Card, UPI, Debit Card and Net Banking.
• Ethical Hacking Course in Ludhiana is designed according to current IT Standards.
• We offer the best Ethical Hacking Training and Placement in Ludhiana with well-defined training modules & curriculum
• 24×7 lab facility. Students/Professionals are free to access the labs, Desktops for as per their own preferred or suitable timings.

Trainer Profile for Ethical Hacking Training in Ludhiana

Our Trainers provide complete freedom to the students, to explore the subject and learn based on real-time examples. Our trainers help the candidates in completing their projects and even prepare them for interview questions and answers. Candidates are free to ask any questions at any time.

• More than 7+ Years of Experience.
• Trained more than 2000+ students in a year.
• Strong Theoretical & Practical Knowledge.
• Certified Professionals with High Grade.
• Well connected with Hiring HRs in multinational companies.
• Expert level Subject Knowledge and fully up-to-date on real-world industry applications.
• Trainers have Experienced on multiple real-time projects in their Industries.
• Up to Date on Latest Technologies like Cloud, Big Data Analytics, Machine Learning, Full Stack, Data Science, React Native, Angular, Amazon Web Service, Ethical Hacking, CCNA etc.
• Having 4+ Years of Corporate Training Experience
• Very Good Communication Skills and friendly teaching Tutor who understand the need of the Student.
• 100% Success rate on Batch Completion
• Ethical Hacking Specialist, Ethical Hacking Qualified Associate, and Ethical Hacking Certified Expert.
• Referred 1350+ Students in MNC Companies
• Expert in Preparing Skill and Experienced based Resume
• Having Strong Experienced in Banking, Telecom, E-Commerce Sectors
• Meet Our Best Ethical Hacking Trainer at our Web Ludhiana Branches
• To Talk to Our Classroom Instructor Please call us +91 99140 77736

Web Ludhiana Placement Assistance for Ethical HackingTraining in Ludhiana

Being one of the top Ethical Hacking Training Company in Ludhiana and a Certified Microsoft Authorized Education Partner, Cisco Partners, Intel Technology Provider, Google Certified Professionals & IBM Certified. Web Ludhiana deals with 100% Job Placements for Eligible Students after successful completion of the course.

• Web Ludhiana helps to keep you updated with latest trends and technologies.
• Web Ludhiana helps in updating your resume according to the job or company requirement
• Web Ludhiana helps in providing placement assistance in top IT FIRMS. Many of our alumni are working in ValueCoders, ArStudiouz, PixelCrayons,Prolitus, Space-O Technologies, Technostacks Infotech Pvt. Ltd, Focaloid Technologies,RIT Solution, iPraxa Inc, Webtunix AI TCS, Amazon, Facebook, Sasken, CrossML, Infosys, Google, Uber and Wipro