Schedule

Cyber Crime Laws and TCP/IP and Network Architecture and its impact on the process of hacking.

• Reading 1: Architecture

Google Hacking, Reconnaissance – Concepts of reconnaissance used to obtain basic, high level information about a target organization, often considered information leakage, including but not limited to technical and non-technical public contacts, IP address ranges, document formats, and supported systems.

• Reading 2a: Open Source Recon Tools

• Reading 2b: Recon – Simple Techniques

Vulnerability scanning and analysis of results, Assignment presentation

• Reading 3: Scanning

• (student presentations) Reconnaissance exercise using only publicly available information, develop a profile of a public company or organization of your choosing.

System and User enumeration, Assignment presentation

• Reading 4a: Enumeration 1
  

• Reading 4b (Pages 9 to 11): Enumeration 2
  

• (student presentations) Scanning exercise targeted against only systems you personally own, develop a profile of the targeted machine or machines.

Sniffers

• Reading 5: Sniffers

Test 1, NetCat

• Reading 6: NetCat

Social Engineering, Encoding, and Encryption

• Reading 7: Social Engineering

Malware including Trojans, Backdoors, Zero-days, Virus, Worms, and Polymorphic malware

• Reading 8a: Malware 1

• Reading 8b: Malware 2

Web application hacking, Intercepting Proxies, and URL Editing

• Reading 9a: Intercepting Proxies 1

• Reading 9b: Intercepting Proxies 2

• Reading 9c: Intercepting Proxies 3

• Reading 9d: Web App Vulnerabilities

• (student presentations) Intercepting Proxy exercise targeted against a public website of your choice. Only normal website activity is to be profiled. Under no circumstances shall injection techniques be used.

SQL injection, Assignment presentation

• Reading 10: SQL Injection

Web Services

• Reading 11a: Web Services 1

• Reading 11b: Web Services 2

• Reading 12: Evasion

Test 2