Black Hat Europe 2009 Briefings and Training

April 14-17

Pentesting with BackTrack4

Offensive Security

Register Now

Overview

This is an intensive, hardcore, hands on Security class by the creators of Backtrack, especially designed for delivery in BlackHat Trainings. The course is an interesting amalgamation of our entry level course ("Offensive Security 101") with several updated modules.

A seasoned team of Security Professionals will help you take your skills a few steps further. "Common" hacking techniques are revisited from a professional and practical approach for a better and more efficient pentest. Several topics include "hardcore drilldowns" such as writing your own buffer overflows, advanced information gathering techniques, client side attacks, and much more - all based on the award winning live Distribution Backtrack 4.

The course is heavily laced with the "do it yourself" approach, and will expose you to the raw underlying mechanisms of the various attack vectors. In addition, commercial penetration testing software such as Core Impact and Saint Exploit will be explored in a controlled lab environment. Complimentary demos will be handed out to students.

Lab Description

This course includes complex hands-on labs throughout the training. All students will be provided with pre-configured VMware machines for the duration of the course for a personal and in-depth learning experience. We will break all flavours of Windows - using a special version of BackTrack specially designed for this course.

Topics Covered

• Scripting your way through BackTrack
• Advanced information gathering techniques
• ARP Spoofing
• Basic shellcode development
• Developing exploits under recent Windows Systems (XPSP2, Vista)
• Developing client side attacks
• Advanced password attacks
• Basic Web application attacks
• Working with exploits in BackTrack
• Exploit frameworks
• Basic Trojan development
• Much More

Who Should Attend

This is an intensive hands-on course aimed at security professionals. People with entry level "hacking" security certifications in need of modern and practical real world penetration testing experience and insights should attend.

Prerequisites

• Students need to be comfortable in Linux - We'll be using BackTrack during the whole course as our attacking platform.
• Navigating through directories, executing scripts and tools and writing basic bash scripts are the basic skills expected from the student.
• A solid understanding of TCP/IP and various network services (DNS, DHCP, etc)
• A fair understanding of penetration testing methodology and familiarity with common tools and attacks.
• Knowledge of a scripting language (Perl, Python, Ruby) is recommended, but not required.

Course Length:

Four days. All course materials, custom BackTrack CD's, lunch and two coffee breaks will be provided. A Certificate of Completion will be offered.

Trainer:

Your journey through "Pentesting With BackTrack4" will be guided by two professional trainers.

Mati Aharoni

Your lead trainer will be Mati Aharoni. Mati Aharoni is one of the core developers of the BackTrack liveCD and an active member in remote-exploit.org. Mati is a seasoned security professional with over 12 years of experience as a professional penetration tester. Mati has uncovered and published several major security flaws and is actively involved in the offensive security arena. In addition, he is the lead trainer and developer of the internationally acclaimed security courses, Offensive Security 101, WIFU and BackTrack to the Max.

Chris Hadnagy

Chris Hadnagy has over 13 years in public speaking and information technology experience. He has worked with Mati on uncovering several exploits and security flaws and is actively involved in the offensive security arena. His present focus is developing social engineering strategies.

Register Now

Early: Ends Feb 1	Regular: Ends Mar 1	Late: Ends Apr 1	Onsite:
€ 3600	€ 3800	€ 4000	€ 4300