Ethical Hacking Fundamentals training

261382

What is Ethical Hacking Fundamentals

In the training Ethical Hacking Fundamentals participants will get a basic understanding on how hackers think and how this is different from ethical hacking. Participants will get a walkthrough, through different example pentest reports where they will get to know the difference between a good and a great pentest report. The “Threat Modelling” presentation will teach the participants on how to create high level “data flow diagrams” for any application/process and apply the STRIDE/DREAD Methodology to create and understand risks that are relevant to scoping security for a pentest tender/assignment.
Participants will get an understanding of several OWASP Top 10’s relating to Web, Mobile and API. During this interactive hacking session, the instructor will demonstrate findings relating to OWASP and how this can be translated to risk management. During the Code Reviewing session participants will get an understanding on how to communicate on new functionalities in code and how to achieve their goals while performing code reviews.

Who should attend Ethical Hacking Fundamentals

Ethical hacking can be widely applied. This makes this training interesting for a broad audience, like:

• Security professionals
• Security managers
• Security auditors
• Network administrators
• System administrators
• Developers and Testers

Prerequisites

Prerequisites:

• Computer fundamentals and how they work
• Know how to use the internet and search engines effectively to gather information
• Laptop/computer with internet to follow this course.

Objectives

After this training, participants:

• have a basic understanding of the way hackers think
• know the characteristics of a great pentest report
• know how to create a dfd and apply the STRIDE/DREAD methodology
• have an understanding of OWASP Top 10
• understand how code reviews are performed and what the common pitfalls are.

261382

What is Ethical Hacking Fundamentals

In the training Ethical Hacking Fundamentals participants will get a basic understanding on how hackers think and how this is different from ethical hacking. Participants will get a walkthrough, through different example pentest reports where they will get to know the difference between a good and a great pentest report. The “Threat Modelling” presentation will teach the participants on how to create high level “data flow diagrams” for any application/process and apply the STRIDE/DREAD Methodology to create and understand risks that are relevant to scoping security for a pentest tender/assignment.
Participants will get an understanding of several OWASP Top 10’s relating to Web, Mobile and API. During this interactive hacking session, the instructor will demonstrate findings relating to OWASP and how this can be translated to risk management. During the Code Reviewing session participants will get an understanding on how to communicate on new functionalities in code and how to achieve their goals while performing code reviews.

Who should attend Ethical Hacking Fundamentals

Ethical hacking can be widely applied. This makes this training interesting for a broad audience, like:

• Security professionals
• Security managers
• Security auditors
• Network administrators
• System administrators
• Developers and Testers

Prerequisites

Prerequisites:

• Computer fundamentals and how they work
• Know how to use the internet and search engines effectively to gather information
• Laptop/computer with internet to follow this course.

Objectives

After this training, participants:

• have a basic understanding of the way hackers think
• know the characteristics of a great pentest report
• know how to create a dfd and apply the STRIDE/DREAD methodology
• have an understanding of OWASP Top 10
• understand how code reviews are performed and what the common pitfalls are.