Understand the various session hijacking techniques used to discover network-level session management, authentication, authorization, and cryptographic weaknesses and associated countermeasures. Hands-on Lab Exercises: Over 4 hands-on exercises with real-life simulated targets to build skills on how to: Perform Session Hijacking using various Tools Detect Session Hijacking Key topics covered: Session Hijacking, Types of Session Hijacking, Spoofing, Application-Level Session Hijacking, Man-in-the-Browser Attack, Client-side Attacks, Session Replay Attacks, Session Fixation Attack, CRIME Attack, Network Level Session Hijacking, TCP/IP Hijacking, Session Hijacking Tools, Session Hijacking Detection Methods, Session Hijacking Prevention Tools

Get introduced to firewall, intrusion detection system, and honeypot evasion techniques; the tools used to audit a network perimeter for weaknesses; and countermeasures. Hands-on Lab Exercises: Over 7 hands-on exercises with real-life simulated targets to build skills on how to: Bypass Windows Firewall Bypass Firewall Rules using Tunneling Bypass Antivirus Key topics covered: Intrusion Detection System (IDS), Intrusion Prevention System (IPS), Firewall, Types of Firewalls, Honeypot, Intrusion Detection Tools, Intrusion Prevention Tools, IDS Evasion Techniques, Firewall Evasion Techniques, Evading NAC and Endpoint Security, IDS/Firewall Evading Tools, Honeypot Detection Tools

Learn about web server attacks, including a comprehensive attack methodology used to audit vulnerabilities in web server infrastructures and countermeasures. Hands-on Lab Exercises: Over 8 hands-on exercises with real-life simulated targets to build skills on how to: Perform Web Server Reconnaissance using Various Tools Enumerate Web Server Information Crack FTP Credentials using a Dictionary Attack Key topics covered: Web Server Operations, Web Server Attacks, DNS Server Hijacking, Website Defacement, Web Cache Poisoning Attack, Web Server Attack Methodology, Web Server Attack Tools, Web Server Security Tools, Patch Management, Patch Management Tools

Learn about web application attacks, including a comprehensive web application hacking methodology used to audit vulnerabilities in web applications and countermeasures. Hands-on Lab Exercises: Over 15 hands-on exercises with real-life simulated targets to build skills on how to: Perform Web Application Reconnaissance using Various Tools Perform Web Spidering Perform Web Application Vulnerability Scanning Perform a Brute-force Attack Perform Cross-site Request Forgery (CSRF) Attack Identify XSS Vulnerabilities in Web Applications Detect Web Application Vulnerabilities using Various Web Application Security Tools Key topics covered: Web Application Architecture, Web Application Threats, OWASP Top 10 Application Security Risks – 2021, Web Application Hacking Methodology, Web API, Webhooks, and Web Shell, Web API Hacking Methodology, Web Application Security

Learn about SQL injection attack techniques, injection detection tools, and countermeasures to detect and defend against SQL injection attempts. Hands-on Lab Exercises: Over 4 hands-on exercises with real-life simulated targets to build skills on how to: Perform an SQL Injection Attack Against MSSQL to Extract Databases Detect SQL Injection Vulnerabilities using Various SQL Injection Detection Tools Key topics covered: SQL Injection, Types of SQL injection, Blind SQL Injection, SQL Injection Methodology, SQL Injection Tools, Signature Evasion Techniques, SQL Injection Detection Tools

Learn about wireless encryption, wireless hacking methodologies and tools, and Wi-Fi security tools. Hands-on Lab Exercises: Over 3 hands-on exercises with real-life simulated targets to build skills on how to: Footprint a Wireless Network Perform Wireless Traffic Analysis Crack a WEP, WPA, and WPA2 Networks Create a Rogue Access Point to Capture Data Packets Key topics covered: Wireless Terminology, Wireless Networks, Wireless Encryption, Wireless Threats, Wireless Hacking Methodology, Wi-Fi Encryption Cracking, WEP/WPA/WPA2 Cracking Tools, Bluetooth Hacking, Bluetooth Threats, Wi-Fi Security Auditing Tools, Bluetooth Security Tools

Learn about mobile platform attack vectors, Android vulnerability exploits, and mobile security guidelines and tools. Hands-on Lab Exercises: Over 5 hands-on exercises with real-life simulated targets to build skills on how to: Hack an Android Device by Creating Binary Payloads Exploit the Android Platform through ADB Hack an Android Device by Creating APK File Secure Android Devices using Various Android Security Tools Key topics covered: Mobile Platform Attack Vectors, OWASP Top 10 Mobile Risks, App Sandboxing, SMS Phishing Attack (SMiShing), Android Rooting, Hacking Android Devices, Android Security Tools, Jailbreaking iOS, Hacking iOS Devices, iOS Device Security Tools, Mobile Device Management (MDM), OWASP Top 10 Mobile Controls, Mobile Security Tools

Learn about packet-sniffing techniques and how to use them to discover network vulnerabilities, as well as countermeasures to defend against sniffing attacks Hands-on Lab Exercises: Over 2 hands-on exercises with real-life simulated targets to build skills on how to: Gather Information using Online Footprinting Tools Capture and Analyze IoT Device Traffic Key topics covered: IoT Architecture, IoT Communication Models, OWASP Top 10 IoT Threats, IoT Vulnerabilities, IoT Hacking Methodology, IoT Hacking Tools, IoT Security Tools, IT/OT Convergence (IIOT), ICS/SCADA, OT Vulnerabilities, OT Attacks, OT Hacking Methodology, OT Hacking Tools, OT Security Tools

Learn different cloud computing concepts, such as container technologies and server less computing, various cloud-based threats and attacks, and cloud security techniques and tools. Hands-on Lab Exercises: Over 5 hands-on exercises with real-life simulated targets to build skills on how to: Perform S3 Bucket Enumeration using Various S3 Bucket Enumeration Tools Exploit Open S3 Buckets Escalate IAM User Privileges by Exploiting Misconfigured User Policy Key topics covered: Cloud Computing, Types of Cloud Computing Services, Cloud Deployment Models, Fog and Edge Computing, Cloud Service Providers, Container, Docker, Kubernetes, Serverless Computing, OWASP Top 10 Cloud Security Risks, Container and Kubernetes Vulnerabilities, Cloud Attacks, Cloud Hacking, Cloud Network Security, Cloud Security Controls, Cloud Security Tools

In the final module, learn about cryptography and ciphers, public-key infrastructure, cryptography attacks, and cryptanalysis tools. Hands-on Lab Exercises: Over 10 hands-on exercises with real-life simulated targets to build skills on how to: Calculate MD5 Hashes Perform File and Text Message Encryption Create and Use Self-signed Certificates Perform Email and Disk Encryption Perform Cryptanalysis using Various Cryptanalysis Tools Key topics covered: Cryptography, Encryption Algorithms, MD5 and MD6 Hash Calculators, Cryptography Tools, Public Key Infrastructure (PKI), Email Encryption, Disk Encryption, Cryptanalysis, Cryptography Attacks, Key Stretching