{"id":6390,"date":"2024-04-07T23:34:32","date_gmt":"2024-04-07T18:34:32","guid":{"rendered":"https:\/\/corvit.com\/systems\/?page_id=6390"},"modified":"2024-05-14T13:12:05","modified_gmt":"2024-05-14T08:12:05","slug":"ceh-certified-ethical-hacking","status":"publish","type":"page","link":"https:\/\/corvit.com\/systems\/navttc-courses-outlines\/ceh-certified-ethical-hacking\/","title":{"rendered":"CEH (Certified Ethical Hacking)"},"content":{"rendered":"[vc_row type=”full_width_background” full_screen_row_position=”middle” column_margin=”default” column_direction=”default” column_direction_tablet=”default” column_direction_phone=”default” bg_color=”#cc3036″ scene_position=”center” top_padding=”2%” bottom_padding=”2%” text_color=”dark” text_align=”left” row_border_radius=”none” row_border_radius_applies=”bg” overlay_strength=”0.3″ gradient_direction=”left_to_right” shape_divider_position=”bottom” bg_image_animation=”none” shape_type=””][vc_column column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”1\/1″ tablet_width_inherit=”default” tablet_text_alignment=”default” phone_text_alignment=”default” column_border_width=”none” column_border_style=”solid” bg_image_animation=”none”][vc_custom_heading text=”CEH (Certified Ethical Hacking) Outline” font_container=”tag:h1|font_size:40|text_align:left|color:%23ffffff|line_height:1.2″ google_fonts=”font_family:Montserrat%3Aregular%2C700|font_style:700%20bold%20regular%3A700%3Anormal” css=”.vc_custom_1712515253140{margin-bottom: 3% !important;padding-top: 4% !important;}”][\/vc_column][\/vc_row][vc_row type=”in_container” full_screen_row_position=”middle” column_margin=”default” column_direction=”default” column_direction_tablet=”default” column_direction_phone=”default” scene_position=”center” top_padding=”28″ bottom_padding=”28″ text_color=”dark” text_align=”left” row_border_radius=”none” row_border_radius_applies=”bg” overlay_strength=”0.3″ gradient_direction=”left_to_right” shape_divider_position=”bottom” bg_image_animation=”none” shape_type=””][vc_column column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”1\/1″ tablet_width_inherit=”default” tablet_text_alignment=”default” phone_text_alignment=”default” column_border_width=”none” column_border_style=”solid” bg_image_animation=”none”][vc_column_text]Course Contents \/ Lesson Plan <\/strong><\/p>\n

Course Title: <\/strong>CEH (Certified Ethical Hacking)<\/p>\n

Duration: <\/strong>3 Months<\/p>\n

Revised Edition<\/strong><\/p>\n

 <\/p>\n\n\n\n\n\n\n
Trainer Name<\/strong><\/td>\n<\/td>\n<\/tr>\n
Author Name<\/strong><\/td>\n\u00a0<\/strong><\/td>\n<\/tr>\n
Course Title<\/strong><\/td>\nCEH (Certified Ethical Hacking)<\/strong><\/td>\n<\/tr>\n
Objectives and Expectations<\/strong><\/td>\nEmployable skills and hands-on practice in CEH (Certified Ethical Hacking)<\/strong><\/p>\n

This is a special course designed to address unemployment in the youth. The course aims to achieve the above objective through hands on practical training delivery by a team of dedicated professionals having rich market\/work experience. This course is therefore not just for developing a theoretical understanding\/back ground of the trainees. Contrary to that, it is primarily aimed at equipping the trainees to perform commercially in a market space in independent capacity or as a member of a team.<\/p>\n

\u00a0<\/strong><\/p>\n

The course therefore is designed to impart not only technical skills but also soft skills (i.e. interpersonal\/communication skills; personal grooming of the trainees etc.) as well as entrepreneurial skills (i.e. marketing skills; freelancing etc.). The course also seeks to inculcate work ethics to foster better citizenship in general and improve the image of Pakistani work force in particular.<\/p>\n

Main Expectations<\/u><\/strong>:<\/strong><\/p>\n

In short, the course under reference should be delivered by professional instructors in such a robust hands-on manner that the trainees are comfortably able to employ their skills for earning money (through wage\/self-employment) at its conclusion.<\/p>\n

This course thus clearly goes beyond the domain of the traditional training practices in vogue and underscores an expectation that a market-centric approach will be adopted as the main driving force while delivering it. The instructors should therefore be experienced enough to be able to identify the training needs for the possible market roles available out there. Moreover, they should also know the strengths and weaknesses of each trainee to prepare them for such market roles during\/after the training.<\/p>\n

\u00a0<\/strong><\/p>\n

i.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <\/strong>Specially designed practical tasks to be performed by the trainees have been included in the Annexure-I to this document. The record of all tasks performed individually or in groups must be preserved by the management of the training Institute clearly labeling name, trade, session, etc. so that these are ready to be physically inspected\/verified through monitoring visits from time to time. The weekly distribution of tasks has also been indicated in the weekly lesson plan given in this document.<\/p>\n

ii.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <\/strong>To materialize the main expectations, a special module on Job Search<\/u> & Entrepreneurial Skills<\/u> <\/strong>has been included in the latter part of this course (5th<\/sup> & 6th<\/sup> month) through which, the trainees will be made aware of the Job search techniques in the local as well as international job markets (Gulf countries). Awareness around the visa process and<\/p>\n

immigration laws of the most favored labor destination countries also<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n
<\/td>\nform a part of this module. Moreover, the trainees would also be encouraged to venture into self-employment and exposed to the main requirements in this regard. It is also expected that a sense of civic duties\/roles and responsibilities will also be inculcated in the trainees to make them responsible citizens of the country.<\/p>\n

iii.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <\/strong>A module on Work Place Ethics <\/strong>has also been included to highlight the importance of good and positive behavior in the workplace in the line with the best practices elsewhere in the world. An outline of such qualities has been given in the Appendix to this document. Its importance should be conveyed in a format that is attractive and interesting for the trainees such as through PPT slides +short video documentaries. Needless to say that if the training provider puts his heart and soul into these otherwise non-technical components, the image of the Pakistani workforce would undergo a positive transformation in the local as well as international job markets.<\/p>\n

To maintain interest and motivation of the trainees throughout the course, modern techniques such as:<\/p>\n

\u2022\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Motivational Lectures<\/p>\n

\u2022\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Success Stories<\/p>\n

\u2022\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Case Studies<\/p>\n

These techniques would be employed as an additional training tool wherever possible (these are explained in the subsequent section on Training Methodology).<\/p>\n

Lastly, evaluation of the competencies acquired by the trainees will be done objectively at various stages of the training and a proper record of the same will be maintained. Suffice to say that for such evaluations, practical tasks would be designed by the training providers to gauge the problem-solving abilities of the trainees.<\/p>\n

(i)\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <\/strong>Motivational Lectures<\/strong><\/p>\n

The proposed methodology for the training under reference employs motivation as a tool. Hence besides the purely technical content, a trainer is required to include elements of motivation in his\/her lecture. To inspire the trainees to utilize the training opportunity to the full and strive towards professional excellence. Motivational lectures may also include general topics such as the importance of moral values and civic role & responsibilities as a Pakistani. A motivational lecture should be delivered with enough zeal to produce a deep impact on the trainees. It may comprise of the following:<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Clear Purpose to convey the message to trainees effectively.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Personal Story to quote as an example to follow.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Trainees Fit so that the situation is actionable by trainees and not represent a just idealism.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Ending Points to persuade the trainees on changing themselves.<\/p>\n

A good motivational lecture should help drive creativity, curiosity, and spark the desire needed for trainees to want to learn more.<\/p>\n

The impact of a successful motivational strategy is amongst others commonly visible in increased class participation ratios. It increases the trainees\u2019 willingness to be engaged on the practical tasks for a longer time without boredom and loss of interest because they can see in their mind’s eye where their hard work would take them in short (1-3 years); medium (3 -10 years) and long term (more than 10 years).<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n
<\/td>\nAs this tool is expected that the training providers would make arrangements for regular well planned motivational lectures as part of a coordinated strategy interspersed throughout the training period as suggested in the weekly lesson plans in this document.<\/p>\n

Course-related motivational lectures online link is available in Annexure-II<\/strong>.<\/p>\n

(ii)\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <\/strong>Success Stories<\/strong><\/p>\n

Another effective way of motivating the trainees is using Success Stories. Its inclusion in the weekly lesson plan at regular intervals has been recommended till the end of the training.<\/p>\n

A success story may be disseminated orally, through a presentation, or using a video\/documentary of someone that has risen to fortune, acclaim, or brilliant achievement. A success story shows how a person achieved his goal through hard work, dedication, and devotion. An inspiring success story contains compelling and significant facts articulated clearly and easily comprehendible words. Moreover, it is helpful if it is assumed that the reader\/listener knows nothing of what is being revealed. The optimum impact is created when the story is revealed in the form of:-<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Directly in person (At least 2-3 cases must be arranged by the training institute)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Through an audio\/ videotaped message (2-3 high-quality videos must be arranged by the training institute)<\/p>\n

It is expected that the training provider would collect relevant high-quality success stories for inclusion in the training as suggested in the weekly lesson plan given in this document.<\/p>\n

The suggestive structure and sequence of a sample success story and its various shapes can be seen in Annexure III<\/strong>.<\/p>\n

(iii)\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <\/strong>Case Studies<\/strong><\/p>\n

Where a situation allows, case studies can also be presented to the trainees to widen their understanding of the real-life specific problem\/situation and to explore the solutions.<\/p>\n

In simple terms, the case study method of teaching uses a real-life case example\/a typical case to demonstrate a phenomenon in action and explain theoretical as well as practical aspects of the knowledge related to the same. It is an effective way to help the trainees comprehend in depth both the theoretical and practical aspects of the complex phenomenon in depth with ease. Case teaching can also stimulate the trainees to participate in discussions and thereby boost their confidence. It also makes the classroom atmosphere interesting thus maintaining the trainee interest in training till the end of the course.<\/p>\n

Depending on suitability to the trade, the weekly lesson plan in this document may suggest case studies be presented to the trainees. The trainer may adopt a PowerPoint presentation or video format for such case studies whichever is deemed suitable but only those cases must be selected that are relevant and of a learning value.<\/p>\n

The Trainees should be required and supervised to carefully analyze the cases.<\/p>\n

For this purpose, they must be encouraged to inquire and collect specific information\/data, actively participate in the discussions, and intended solutions to the problem\/situation.<\/p>\n

Case studies can be implemented in the following ways: –<\/p>\n

i.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0 good\u00a0 quality\u00a0 trade-specific\u00a0 documentary\u00a0 (\u00a0 At\u00a0 least\u00a0 2-3<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n
<\/td>\ndocumentaries must be arranged by the training institute)<\/p>\n

\u00a0<\/strong><\/p>\n

ii.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Health &Safety case studies (2 cases regarding safety and industrial accidents must be arranged by the training institute)<\/p>\n

iii.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Field visits( At least one visit to a trade-specific major industry\/ site must be arranged by the training institute)<\/td>\n<\/tr>\n

Entry-level of trainees<\/strong><\/td>\nFor an advanced course of Cyber Security (CEH) proposed entry level is minimum bachelors in relevant subject, so expectations from the trainees are:<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Fundamentals of Networking.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Fundamentals of script programming.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Basic Cyber Security Concepts.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Basic Ethical Hacking Tools.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Ethical Hacking Methodology.<\/td>\n<\/tr>\n

Learning <\/strong>Outcomes of the course<\/strong><\/td>\nBy the end of this course, students will be able to:<\/p>\n

Understanding of Ethical Hacking Concepts<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Define ethical hacking and its role in cybersecurity.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Differentiate between ethical hacking and malicious hacking.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Comprehend the ethical and legal considerations in penetration testing.<\/p>\n

Network Security Fundamentals<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Demonstrate knowledge of network protocols and their vulnerabilities.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Understand network security architecture and defenses.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identify and mitigate common network-based attacks.<\/p>\n

Information Security Technologies:<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Familiarity with various security tools and technologies.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Proficiency in using penetration testing tools such as Nmap, Metasploit, Wireshark, etc.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Understanding of intrusion detection and prevention systems.<\/p>\n

Web Application Security<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identify and exploit common web application vulnerabilities.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implement secure coding practices.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Perform web application security assessments.<\/p>\n

Wireless Network Security<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Analyze and secure wireless networks.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identify vulnerabilities in wireless protocols.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implement measures to secure wireless communications.<\/p>\n

System Security<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Evaluate and secure operating systems.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implement host-based security measures.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Understand and mitigate common system-level vulnerabilities.<\/p>\n

Bug Bounty Concepts and Practices<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Understand the bug bounty ecosystem.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Comprehend the role of bug bounty hunters and security researchers.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Develop skills for responsible disclosure of security vulnerabilities.<\/p>\n

Practical Application of Ethical Hacking<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Execute penetration testing methodologies.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Conduct vulnerability assessments on various targets.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Develop and execute a penetration testing plan.<\/p>\n

Legal and Ethical Considerations<\/strong><\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Understand the legal and ethical aspects of ethical hacking.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n
<\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Comply with laws and regulations related to penetration testing.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Adhere to ethical guidelines and responsible disclosure practices.<\/td>\n<\/tr>\n

Course <\/strong>Execution Plan<\/strong><\/td>\nThe total duration of the course: 3 months (12 Weeks)<\/strong><\/p>\n

Class hours: 4 hours per day<\/strong><\/p>\n

Theory: 20%<\/strong><\/p>\n

Practical: 80%<\/strong><\/p>\n

Weekly hours: 20 hours per week<\/strong><\/p>\n

Total contact hours: 260 hours<\/strong><\/td>\n<\/tr>\n

Companies <\/strong>offering jobs in the respective trade<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Trillium<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Afinity<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 NetSole<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 I2c<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Multinet<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Nescom<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Transworld<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Netcom<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Systems<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Work Solution<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Purelogics<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Nets-international<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Ebryx<\/td>\n<\/tr>\n

Job <\/strong>Opportunities<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Security Operations Centre (SOC) Engineer<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Network Administrator<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 IT Support Officer<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Manager \/ Assistant Manager IT<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Network support engineer<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Security Analysts<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Penetration tester<\/td>\n<\/tr>\n

No of Students<\/strong><\/td>\n25<\/td>\n<\/tr>\n
Learning Place<\/strong><\/td>\nClassroom \/ Lab<\/td>\n<\/tr>\n
Instructional Resources<\/strong><\/td>\n1.\u00a0\u00a0\u00a0 Introduction to Cyber Security: https:\/\/www.youtube.com\/watch?v=z5nc9MDbvkw<\/p>\n

2.\u00a0\u00a0\u00a0 Cyber Security Crash Course in English: https:\/\/www.youtube.com\/watch?v=hXSFdwIOfnE<\/p>\n

3.\u00a0\u00a0\u00a0 Ethical Hacking Crash Course in Urdu: https:\/\/www.youtube.com\/watch?v=596WPxrBFqo<\/p>\n

4.\u00a0\u00a0\u00a0 Network Hacking Crash Course in Urdu: https:\/\/www.youtube.com\/watch?v=2hoeSbrtmLQ<\/p>\n

5.\u00a0\u00a0\u00a0 Bug Bounty Crash Course in Urdu: https:\/\/www.youtube.com\/watch?v=-<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n
<\/td>\nt95lFMndw4<\/u><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n

MODULES<\/strong><\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
Schedu <\/strong>led<\/strong><\/p>\n

Weeks<\/strong><\/td>\n

Module Title<\/strong><\/td>\nDays<\/strong><\/td>\nHours<\/strong><\/td>\nLearning Units<\/strong><\/td>\nHome <\/strong>Assignment<\/strong><\/td>\n<\/tr>\n
Week 1<\/strong><\/td>\nIntroduction to CEH and LAB Setup<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Motivational Lecture<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Course Intro<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Success stories<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Job Market<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Intro to CEH<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Roles of Security Expert<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 What is cyberspace.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 What is hacker and its different types.<\/td>\n

<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\nHour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 What is virus and its different types<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\nHour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Different types of attacks.<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\nHour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Setup virtual machine for LAB environment.<\/td>\n\u00b7 Task 1<\/strong><\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\nDetails may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n
Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Install and configure Kali Linux<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\nHour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Intro Kali Linux.<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Important Linux<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\nCommands<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\nHour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Get familiar with OSI Layers<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Different functions of OSI layers.<\/td>\n

<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\nHour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Protocols of each layers<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\nDay 3<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Get familiar with TCP\/IP suit.<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/td>\nHour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Different protocols and ports.<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Basic Network Configuration<\/td>\n<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\nHands-on Practice on LAB<\/p>\n

Setup for testing<\/td>\n<\/tr>\n

Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Open Source Intelligence (OSINT) Overview<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Passive vs. Active Information Gathering<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Information Gathering Methodologies<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Ethical Considerations in OSINT<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Footprinting and Reconnaissance<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Search Engine Hacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Social Media Intelligence<\/td>\n<\/tr>\n

Day 5<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Email and Domain Information Gathering<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Metadata Analysis<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 WHOIS Data and Domain Ownership<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 DNS Enumeration<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enumeration of Network Services<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\nHands-on Practice with an Information Gathering<\/td>\n<\/tr>\n
Week 2<\/strong><\/td>\nInformation Gathering<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Shodan and IoT Device Information<\/td>\n\u00a0<\/strong><\/p>\n

\u00b7 Task 2<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u><\/em><\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Maltego for Data Link Analysis<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 The Harvester for<\/p>\n

Gathering Emails and Subdomains<\/td>\n

Annexure-<\/u><\/em>I<\/u><\/em><\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Spokeo and People Search Tools<\/td>\n<\/tr>\n
Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Data Scraping Techniques<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Google Dorks and Advanced Search Queries<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Geolocation and IP Tracing<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Social Engineering for Information Gathering Algorithms<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Gathering Information on Mobile Apps<\/td>\n<\/tr>\n

Day 3<\/strong><\/td>\nHour 1<\/strong><\/td>\nDeep Web and Dark Web Information Gathering<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\nTor and Onion Sites Exploration<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\nThreat Intelligence Feeds<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\nOSINT Frameworks and Tools<\/td>\n<\/tr>\n
Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\nVisualizing OSINT Data<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\nOSINT for Digital Forensics<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\nOSINT for Incident Response<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\nLegal and Ethical Aspects of OSINT<\/td>\n<\/tr>\n
Day 5<\/strong><\/td>\nHour 1-4<\/strong><\/td>\nPractical on OSINT Investigations<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/tr>\n
Week 3<\/strong><\/td>\nScanning & Enumeration<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Network Scanning Fundamentals<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Types of Network Scans<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Port Scanning Techniques<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00b7 Task 3<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 TCP Connect Scanning<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 UDP Scanning<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Banner Grabbing<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Network Enumeration Methods<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Scanning Tools and Utilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Nmap – Network Mapper<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Ping Sweeps and Sweep Detection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Network Mapping and Topology Discovery<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Vulnerability Scanning<\/td>\n<\/tr>\n

Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Operating System Detection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Automated Scanning Workflows<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Scanning for Web Applications<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Threat Intelligence Integration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wireless Network Scanning<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Automating Scans with Scripts<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Scanning Best Practices<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Scanning Ethics and Legal Considerations<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Post-Scanning Analysis<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Scanning for Insider Threats<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enumeration Basics<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 NetBIOS Enumeration<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\nDay 3<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SNMP Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 LDAP Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SMB Enumeration<\/td>\n

<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 DNS Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SMTP Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 NTP Enumeration<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SSH Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 RDP Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Port Enumeration Techniques<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 User Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Share Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Vulnerability Enumeration<\/td>\n<\/tr>\n

Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enumeration Tools and Scanners<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Nmap Scripts for Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SNMP Enumeration Tools<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 LDAP Enumeration Tools<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SMB Enumeration Tools<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 DNS Enumeration Tools<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SMTP Enumeration Tools<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enumeration for Active Directory<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enumeration for Linux<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enumeration for Windows<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enumeration Best Practices<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enumeration Ethics and Legal Considerations<\/td>\n<\/tr>\n

Day 5<\/strong><\/td>\nHour 1-2<\/strong><\/td>\nPractical on Comprehensive Network Scan<\/td>\n<\/tr>\n
Hour 3-4<\/strong><\/td>\nPractical on Comprehensive Enumeration<\/td>\n<\/tr>\n
Week 4<\/strong><\/td>\nVulnerability Analysis<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Vulnerability Assessment Fundamentals<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Types of Vulnerabilities<\/td>\n

\u00b7 Task 4<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u><\/em><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 2<\/strong><\/td>\nVulnerability Scanning Techniques<\/td>\nAnnexure-<\/u><\/em>I<\/u><\/em><\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\nAutomated Vulnerability Scanners<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\nManual Vulnerability Assessment<\/td>\n<\/tr>\n
Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Common Vulnerability Databases<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Common Vulnerability Scoring System (CVSS)<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\nVulnerability Management Practices<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\nVulnerability Analysis Tools<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\nNmap Scripting Engine (NSE) for Vulnerability Scanning<\/td>\n<\/tr>\n
Day 3<\/strong><\/td>\nHour 1<\/strong><\/td>\nOpenVAS – Open Vulnerability Assessment System<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\nNessus Vulnerability Scanner<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\nQualys Vulnerability Management<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Vulnerability Assessment in Web Applications<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 OWASP Top Ten Vulnerabilities<\/td>\n<\/tr>\n

Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\nVulnerability Analysis for Mobile Applications<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\nVulnerability Analysis for Network Devices<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Reporting and Remediation of Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Exploitation Frameworks and Vulnerabilities<\/td>\n

<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Vulnerability Analysis Best Practices<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Vulnerability Analysis<\/td>\n<\/tr>\n

Day 5<\/strong><\/td>\nHour 1<\/strong><\/td>\nVulnerability Analysis Case Studies<\/td>\n<\/tr>\n
Hour 2-4<\/strong><\/td>\nPractical on Comprehensive Vulnerability Analysis<\/td>\n<\/tr>\n
Week 5<\/strong><\/td>\nSystem <\/strong>Hacking & Malware Analysis<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 System Hacking Fundamentals<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Password Cracking Techniques<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Password Cracking Tools<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00b7 Task 5<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Privilege Escalation Methods<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Exploiting Weak Passwords<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Brute Force and Dictionary Attacks<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cracking Windows Passwords<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cracking Linux Passwords<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Privilege Escalation on Windows<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Privilege Escalation on Linux<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Rootkits and Trojans<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Hiding Files and Processes<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Covering Tracks and Removing Evidence<\/td>\n<\/tr>\n

Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Malware and Backdoors<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Social Engineering for System Hacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Phishing Attacks<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Spear Phishing and Whaling<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Email Spoofing and Impersonation<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Bypassing Antivirus Software<\/td>\n

<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Keyloggers and Spyware<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Remote Administration Tools (RATs)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Advanced Persistent Threats (APTs)<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Fileless Malware<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Post-Exploitation Techniques<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Exploitation Frameworks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of System Hacking<\/td>\n<\/tr>\n

Day 3<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Malware Analysis<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Malware Analysis Fundamentals<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Types of Malware and Malicious Code<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Malware Analysis Environments and Sandboxes<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Static Analysis Techniques<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Dynamic Analysis Techniques<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Behavioral Analysis of Malware<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Memory Analysis and Forensics<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Disassembling and Debugging Malicious Code<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Code Injection and Hooking Techniques<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Deobfuscation and Decryption<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 YARA Rules for Malware Detection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identifying and<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\nClassifying Malware Families<\/td>\n<\/td>\n<\/tr>\n
Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Packets Analysis for Malware Detection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Custom Malware Analysis Tools<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Network Traffic Analysis<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Malware Artifacts and Indicators of Compromise (IoC)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Threat Intelligence and Malware Data Sources<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building a Malware Sandbox<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building a YARA Rule Library<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building a Memory Forensics Toolkit<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Custom Analysis Scripts<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Practical Malware Analysis Techniques<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Malware Analysis<\/td>\n<\/tr>\n

Day 5<\/strong><\/td>\nHour 1<\/strong><\/td>\nSystem Hacking Case Studies<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\nMalware Analysis Case Studies<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\nPractical on Comprehensive System Hacking<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\nPractical on Analyzing Real-World Malware Samples<\/td>\n<\/tr>\n
Week 6<\/strong><\/td>\nNetwork <\/strong>Sniffing & Wifi Hacking<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Network Packet Sniffing<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Sniffing<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wireshark and Packet Capture Basics<\/td>\n

\u00b7\u00a0 Task 6<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Analyzing Captured Packets<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Packet Filtering and Display Options<\/td>\n

<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Advanced Protocol Analysis<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Packet Decryption Techniques<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Capturing and Analyzing SSL\/TLS Traffic<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sniffing on Wireless Networks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sniffing on Switched Networks<\/td>\n<\/tr>\n

Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ARP Spoofing and<\/p>\n

MITM Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 DNS Spoofing and Cache Poisoning<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 VoIP Traffic Sniffing<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sniffing for Malware Traffic<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Network Sniffing for Intrusion Detection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Custom Sniffing Tools<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sniffing Case Studies and Real-World Scenarios<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sniffing for Security and Troubleshooting<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Sniffing Best Practices and Avoiding Detection<\/td>\n<\/tr>\n

Day 3<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Wireless Networks and Security<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Wireless Hacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wireless Network Fundamentals (Wi-Fi, WEP, WPA, WPA2)<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wireless Encryption Protocols (WEP, WPA, WPA2, WPA3)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Understanding Wi-Fi Security Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Scanning for Wireless Networks (SSID, BSSID)<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wireless Access Points (APs) and SSID Enumeration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Rogue AP Detection and Mitigation<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cracking WEP Encryption<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cracking WPA\/WPA2 Encryption (Dictionary Attacks, WPS)<\/td>\n

<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Evil Twin Attacks and Fake Aps<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Capturing and Analyzing Wireless Traffic<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wi-Fi Password Cracking Tools (e.g., Aircrack-ng)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wardriving and GPS Mapping of Wi-Fi Networks<\/td>\n<\/tr>\n

Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Hacking Public Wi-Fi Hotspots<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wireless Network Auditing Tools (e.g., Kismet, Fern-Wifi- Cracker)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wireless Sniffing and Packet Injection<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Deauthentication and<\/p>\n

Jamming Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Evading MAC Address Filtering<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wi-Fi Pineapple and Rogue Device Attacks<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Wireless Network Intrusion Detection<\/p>\n

Systems (NIDS)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cracking WPA3 Encryption (if applicable)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Security Best Practices for Wireless Networks<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Protecting Your Own Wireless Network<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal Implications of Unauthorized Wireless Hacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Real-World Wireless Hacking Scenarios<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\nDay 5<\/strong><\/td>\nHour 1-2<\/strong><\/td>\nPractical on Real-World Sniffing and Analysis<\/td>\n<\/td>\n<\/tr>\n
Hour 3-4<\/strong><\/td>\nPractical on Penetration Testing of a Wireless Network<\/td>\n<\/tr>\n
Week 7<\/strong><\/td>\nSocial <\/strong>Engineering & Session Hijacking<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Social Engineering<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Social Engineering<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Information Gathering for Social Engineering<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00b7\u00a0 Task 7<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Pretexting and Impersonation<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Phishing and Spear Phishing Attacks<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Baiting and Tailgating Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Influence and Persuasion Techniques<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Manipulating Human Behavior<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Trust and Rapport<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Elicitation and Information Extraction<\/td>\n<\/tr>\n

Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Psychological Profiling<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Social Engineering in the Digital Age<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Social Engineering for Physical Access<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Social Engineering for Unauthorized Information Access<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Custom Social Engineering Attacks<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Practical Social Engineering Exercises within Kali Linux<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Countermeasures and Defense Strategies<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Social Engineering Case Studies and Scenarios<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Ethical and Responsible Social Engineering<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\nDay 3<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Session Hijacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Session<\/p>\n

Hijacking<\/td>\n

<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Session Management in Web Applications<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Session Hijacking Techniques (e.g., Session Fixation)<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cross-Site Scripting (XSS) Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cross-Site Request Forgery (CSRF) Attacks<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Man-in-the-Middle (MitM) Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Session Fixation Attacks<\/td>\n<\/tr>\n

Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Session Sidejacking and Sniffing<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Session Replay Attacks<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Custom Session Hijacking Tools<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Detecting and Mitigating Session Hijacking<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Secure Session Management in Web Apps<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Real-World Session Hijacking Scenarios<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Practical Session Hijacking Exercises and Demonstrations<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Countermeasures and Defense Strategies<\/td>\n<\/tr>\n

Day 5<\/strong><\/td>\nHour 1-2<\/strong><\/td>\nPractical on Executing a Social Engineering Attack within Kali Linux<\/td>\n<\/tr>\n
Hour 3-4<\/strong><\/td>\nPractical on Executing a Session Hijacking Attack<\/td>\n<\/tr>\n
Week 8<\/strong><\/td>\nDOS\/DDOS &<\/strong><\/p>\n

SQL Injection Attack<\/strong><\/td>\n

Day 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Denial of Service Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of DoS Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Types of DoS Attacks (e.g., Flood, Amplification, Logic<\/p>\n

Bombs)<\/td>\n

\u00a0<\/strong><\/p>\n

\u00b7\u00a0 Task 8<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Distributed Denial of Service (DDoS) Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Botnets and Botnet Herders<\/td>\n

<\/td>\n<\/tr>\n
Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Reflective and Amplification Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Protocol-Based Attacks (e.g., SYN Flood)<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Application Layer Attacks (e.g., HTTP Flood)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Denial of Service Attack Tools<\/td>\n<\/tr>\n

Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 DoS Attack Techniques and Strategies<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Detection and Mitigation of DoS Attacks<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Stress Testing and Load Balancing<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Custom DoS Attack Tools<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of DoS Testing<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Real-World DoS Attack Scenarios<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Protecting Against DoS Attacks<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Countermeasures and Defense Strategies<\/td>\n<\/tr>\n

Day 3<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to SQL Injection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of SQL Injection Testing<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SQL Injection Fundamentals<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Union-Based SQL Injection<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Blind SQL Injection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Time-Based Blind SQL Injection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Out-of-Band SQL Injection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Second-Order SQL Injection<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Error-Based SQL Injection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Stored SQL Injection<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Blind Second-Order SQL Injection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Boolean-Based Blind SQL Injection<\/td>\n

<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SQL Injection through Different Attack Vectors<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Automated SQL Injection Tools<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Detecting and Analyzing SQL Injection Attacks<\/td>\n<\/tr>\n

Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Preventing SQL Injection in Web Applications<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Error-Based Information Gathering<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Union-Based Data Extraction<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Time-Based Blind SQL Injection Techniques<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Out-of-Band Data Exfiltration<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SQL Injection through Form Fields<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SQL Injection through URL Parameters<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Advanced SQL Injection Techniques<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Exploiting SQL Injection for Privilege Escalation<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Bypassing Web Application Firewalls (WAFs)<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Evading Detection with Obfuscation<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Implications of Exploiting SQL Injection<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Real-World SQL Injection Scenarios<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Practical SQL Injection Exercises<\/td>\n<\/tr>\n

Day 5<\/strong><\/td>\nHour 1-2<\/strong><\/td>\nPractical on Executing a DoS\/DDoS Attack<\/td>\n<\/tr>\n
Hour 3-4<\/strong><\/td>\nPractical on Exploiting and Preventing SQL Injection<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n
Week 9<\/strong><\/td>\nHacking Web Servers & Web Applications<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Web Server Hacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Web Server Hacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Server Fundamentals (e.g., Apache, Nginx)<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00b7\u00a0 Task 9<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Information Gathering and Reconnaissance<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Vulnerability Scanning and Enumeration<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Server Misconfigurations<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Directory Traversal Attacks<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 File Inclusion Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SQL Injection in Web Servers<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Remote Code Execution (RCE)<\/td>\n<\/tr>\n

Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Exploiting Known Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Shells and Backdoors<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Denial of Service Attacks on Web Servers<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Password Cracking for Server Access<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Privilege Escalation Techniques<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Server Hardening and Security<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Building Secure Web Applications<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Real-World Web Server Hacking Scenarios<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Practical Web Server Hacking Exercises and Demonstrations<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Countermeasures and Defense Strategies<\/td>\n<\/tr>\n

Day 3<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Web Application Hacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Web Application Hacking<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Application<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\nFundamentals (e.g., HTML, HTTP, Cookies)<\/td>\n<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Information Gathering and Reconnaissance<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Application Scanning and<\/p>\n

Enumeration<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identifying Common Web Application Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cross-Site Scripting (XSS)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 SQL Injection in Web Applications<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cross-Site Request Forgery (CSRF)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Insecure Deserialization<\/td>\n<\/tr>\n

Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Security Misconfigurations<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Session Management Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Application Fuzzing and Testing<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Attacking Authentication and Authorization<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 File Upload and File Inclusion Vulnerabilities<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Application Firewalls (WAFs)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Secure Coding and Development Best Practices<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Real-World Web Application Hacking Scenarios<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Practical Web Application Hacking Exercises and Demonstrations<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Countermeasures and Defense Strategies<\/td>\n<\/tr>\n

Day 5<\/strong><\/td>\nHour 1-2<\/strong><\/td>\nPractical on Hacking a Web Server<\/td>\n<\/tr>\n
Hour 3-4<\/strong><\/td>\nPractical on Hacking a Web Application<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n
Week <\/strong>10<\/strong><\/td>\nHacking Mobile Platforms<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Mobile Platform Security<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Mobile<\/p>\n

Hacking<\/td>\n

\u00b7 Task 10<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile Platform Fundamentals (iOS, Android)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile Application Security Models<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identifying Mobile Security Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Setting Up a Mobile Hacking Environment<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Device and Emulator Testing<\/p>\n

Jailbreaking (iOS) and Rooting (Android)<\/td>\n<\/tr>\n

Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\nAnalyzing Mobile Apps for<\/p>\n

Vulnerabilities<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Data Storage and Encryption on Mobile Devices<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Insecure Data Transmission (e.g., SSL<\/p>\n

Pinning Bypass)<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile API Testing and Manipulation<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Reverse Engineering Mobile Apps<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Exploiting Authentication and Authorization Flaws<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 In-App Purchases and License Verification<\/p>\n

Bypass<\/td>\n<\/tr>\n

Day 3<\/strong><\/td>\nHour 1<\/strong><\/td>\nTampering with Mobile App<\/p>\n

Logic<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile Malware and Spyware<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Real-World Mobile Exploits and Vulnerabilities<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\nDetecting and Preventing<\/p>\n

Mobile Exploits<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\nHour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile Application Security Best Practices<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Ethical Use of Mobile Hacking Skills<\/td>\n

<\/td>\n<\/tr>\n
Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile Hacking Challenges and CTFs<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 iOS Jailbreaks and Bypassing Security Features<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Android Rooting and Custom ROMs<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile App Debugging and Patching<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Application Security Testing on Real Devices<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Malware Analysis on Mobile Platforms<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile Device Forensics<\/td>\n<\/tr>\n
Day 5<\/strong><\/td>\nHour 1-4<\/strong><\/td>\nPractical on Hacking a Mobile App or Device<\/td>\n<\/tr>\n
Week <\/strong>11<\/strong><\/td>\nCryptography <\/strong>& Bug Bounty<\/strong><\/td>\nDay 1<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Cryptography<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Cryptography<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Basic Concepts of Cryptography (Encryption, Decryption)<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00b7\u00a0 Task 11 <\/strong>Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Classical Cryptography (Caesar, Vigen\u00e8re, etc.)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Modern Cryptography Techniques (AES, RSA,<\/p>\n

ECC, etc.)<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cryptographic Hash Functions (MD5, SHA, etc.)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Public Key Infrastructure (PKI)<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cryptographic Protocols (SSL\/TLS, SSH, etc.)<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cryptanalysis and Attacks on Cryptosystems<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Quantum Cryptography and Post-Quantum<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\nCryptography<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Secure Key Management and<\/p>\n

Exchange<\/td>\n

<\/td>\n<\/tr>\n
Day 2<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cryptographic Libraries and APIs<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implementing Cryptographic Algorithms<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Digital Signatures and Authentication<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Secure Communication with Cryptography<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cryptography in Blockchain Technology<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cryptography in Network Security<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cryptography in Mobile Security<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Cryptography in Web Application Security<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Real-World Cryptographic Attacks and Defenses<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Practical Cryptographic Exercises<\/td>\n<\/tr>\n

Day 3<\/strong><\/td>\nHour 1<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Introduction to Bug Bounty Programs<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Legal and Ethical Aspects of Bug Bounty Hunting<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Bug Bounty Platforms and Marketplaces<\/td>\n<\/tr>\n

Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Setting Up a Bug Bounty Hunter Profile<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Finding and Researching Bug Bounty Programs<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Types of Security Vulnerabilities (OWASP Top Ten)<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Reconnaissance and Footprinting for Bug Bounties<\/td>\n<\/tr>\n
Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Web Application Testing for Security Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Mobile Application<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\n<\/td>\n<\/td>\n<\/td>\nTesting for Security Vulnerabilities<\/td>\n<\/td>\n<\/tr>\n
Day 4<\/strong><\/td>\nHour 1<\/strong><\/td>\nNetwork and Infrastructure Testing for Security Vulnerabilities<\/td>\n<\/tr>\n
Hour 2<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identifying Security Vulnerabilities<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Proof of Concept (PoC) and Exploitation<\/td>\n<\/tr>\n

Hour 3<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Bug Triage and Severity Assessment<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Creating Detailed Bug Bounty Reports<\/td>\n<\/tr>\n

Hour 4<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Communication with Bug Bounty Programs<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Bug Bounty Rewards and Payments<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Bug Bounty Platform Tools and Resources<\/td>\n<\/tr>\n

Day 5<\/strong><\/td>\nHour 1-2<\/strong><\/td>\nPractical on Cryptography<\/td>\n<\/tr>\n
Hour 3-4<\/strong><\/td>\nPractical on Bug Bounty Hunting<\/td>\n<\/tr>\n
Week <\/strong>12<\/strong><\/td>\nFinal Exam and Assessment<\/strong><\/td>\n<\/td>\n<\/td>\n<\/td>\n\u00b7 Task 12<\/strong><\/p>\n

Details may<\/u><\/em> be seen at<\/u> Annexure-I<\/u><\/em><\/p>\n

\u00a0<\/strong><\/p>\n

Final Project<\/strong><\/td>\n<\/tr>\n

<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n
<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n

Tasks for Certificate\u00a0<\/u><\/strong><\/p>\n

\u00a0<\/strong><\/p>\n\n\n\n\n\n\n\n\n
Task No.<\/strong><\/td>\nTask<\/strong><\/td>\nDescription<\/strong><\/td>\nWeek<\/strong><\/td>\n<\/tr>\n
1.<\/strong><\/td>\nIntroduction to CEH and LAB Setup<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Hands-on Practice on LAB Setup for testing<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Hands-on Practice on an Information Gathering<\/td>\n

Week 1<\/strong><\/td>\n<\/tr>\n
\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

2.<\/strong><\/td>\n

Information Gathering<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Investigate a suspicious domain or website associated with a potential security incident. Analyze the domain registration details, check for potential malicious activities, and provide actionable intelligence for an incident response<\/p>\n

team.<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Week 2<\/strong><\/td>\n<\/tr>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

3.<\/strong><\/td>\n

Scanning & Enumeration<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Conduct a comprehensive network scan on a given network to identify all active hosts and services. Perform vulnerability scanning on the identified hosts to assess potential security weaknesses.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Perform active enumeration on a Windows-based network to identify Active Directory (AD) users, groups, and systems. Explore potential vulnerabilities for privilege escalation and demonstrate the ability to exploit them.<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Week 3<\/strong><\/td>\n<\/tr>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

4.<\/strong><\/td>\n

Vulnerability Analysis<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Conduct a comprehensive vulnerability assessment across an organization’s network infrastructure. Identify vulnerabilities in network devices, servers, and applications. Perform a risk analysis to prioritize and mitigate the identified<\/p>\n

vulnerabilities.<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Week 4<\/strong><\/td>\n<\/tr>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

5.<\/strong><\/td>\n

System Hacking & Malware Analysis<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 A system administrator accidentally locked themselves out of a critical server by misconfiguring firewall rules. You need to regain access to the server without causing downtime or data loss.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 A user’s system has been infected with malware, potentially granting unauthorized access. Your task is to investigate the<\/p>\n

system, identify the attack vectors, and remediate the damage.<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Week 5<\/strong><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n\n\n\n\n\n\n\n\n\n
\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

6.<\/strong><\/td>\n

Network Sniffing & Wifi Hacking<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 A small business is experiencing network connectivity problems, causing disruptions to their operations. Your task is to use sniffing techniques to diagnose the root cause of the issues and propose solutions.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 You are tasked with conducting a wireless security assessment for a client’s premises. Your goal is to identify any unauthorized or hidden wireless networks that could pose security risks.<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Week 6<\/strong><\/td>\n<\/tr>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

7.<\/strong><\/td>\n

Social Engineering & Session Hijacking<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 A company’s CEO is traveling abroad, and a malicious actor wants to access their confidential emails. They craft a phishing email that appears to be from the IT department, requesting the CEO’s password for an urgent security update.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identify and exploit a session-related vulnerability in a web application. Hijack a user’s session and perform actions on their behalf.<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Week 7<\/strong><\/td>\n<\/tr>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

8.<\/strong><\/td>\n

DOS\/DDOS & SQL<\/strong><\/p>\n

Injection Attack<\/strong><\/td>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Use ethical hacking tools like Kali Linux and Metasploit to simulate DoS\/DDoS attacks against a test server or network in a controlled environment.<\/p>\n

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Identify a vulnerable login form on a web application. Use SQL injection techniques to bypass authentication and log in as a different<\/p>\n

user. Demonstrate how prepared statements can prevent this attack.<\/td>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

Week 8<\/strong><\/td>\n<\/tr>\n

\u00a0<\/strong><\/p>\n

9.<\/strong><\/td>\n

Hacking Web Servers & Web Applications<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 You are given a web application with a known vulnerability in a shopping cart module. Your goal is to exploit the vulnerability to gain access to the web server and retrieve sensitive user data<\/td>\n\u00a0<\/strong><\/p>\n

Week 9<\/strong><\/td>\n<\/tr>\n

\u00a0<\/strong><\/p>\n

10.<\/strong><\/td>\n

Hacking Mobile Platforms<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Bypass authentication mechanisms in a mobile game to gain unauthorized access to premium features or manipulate game scores.<\/td>\n\u00a0<\/strong><\/p>\n

Week10<\/strong><\/td>\n<\/tr>\n

\u00a0<\/strong><\/p>\n

11.<\/strong><\/td>\n

Cryptography & Bug Bounty<\/strong><\/td>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implement password hashing using a secure algorithm like bcrypt or Argon2. Assess the strength of different hashing methods and explore<\/p>\n

password cracking techniques.<\/td>\n

\u00a0<\/strong><\/p>\n

Week11<\/strong><\/td>\n<\/tr>\n

12.<\/strong><\/td>\nFinal Exam and Assessment<\/strong><\/td>\n<\/td>\nWeek12<\/strong><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n[\/vc_column_text][\/vc_column][\/vc_row][vc_row type=”full_width_content” full_screen_row_position=”middle” column_margin=”default” equal_height=”yes” content_placement=”top” column_direction=”default” column_direction_tablet=”default” column_direction_phone=”default” scene_position=”center” top_padding=”4%” bottom_padding=”4%” text_color=”dark” text_align=”left” row_border_radius=”none” row_border_radius_applies=”bg” class=”contact-form-with-img” overlay_strength=”0.3″ gradient_direction=”left_to_right” shape_divider_color=”#406f5b” shape_divider_position=”bottom” shape_divider_height=”100″ shape_divider_bring_to_front=”true” bg_image_animation=”none” shape_type=”waves”][vc_column column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” zindex=”-999999999″ gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”5\/12″ tablet_width_inherit=”default” tablet_text_alignment=”default” phone_text_alignment=”default” column_border_width=”none” column_border_style=”solid” bg_image_animation=”none”][image_with_animation image_url=”2806″ animation=”Fade In” hover_animation=”none” alignment=”” border_radius=”none” box_shadow=”none” image_loading=”default” max_width=”100%” max_width_mobile=”default” el_class=”img-side-contact”][\/vc_column][vc_column column_padding=”padding-6-percent” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”left-right” top_margin_phone=”4%” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”7\/12″ tablet_width_inherit=”default” tablet_text_alignment=”default” phone_text_alignment=”default” column_border_width=”none” column_border_style=”solid” bg_image_animation=”none”][vc_custom_heading text=”Quick Inquiry” font_container=”tag:h2|font_size:36|text_align:left|color:%23000000|line_height:1.2″ google_fonts=”font_family:Montserrat%3Aregular%2C700|font_style:700%20bold%20regular%3A700%3Anormal” css=”.vc_custom_1677876449507{margin-bottom: 3% !important;padding-top: 4% !important;}” el_id=”contact”][vc_column_text]\n

\n

<\/p>

    <\/ul><\/div>\n
    \n
    \n\n\n\n\n\n\n\n<\/div>\n
    \n\t

    <\/i><\/span><\/i><\/span>\n\t<\/p>\n<\/div>\n

    \n\t

    <\/i><\/span><\/i>