EC-Council Certified Security Analyst (ECSA)

Transcription

1 EC-Council Certified Security Analyst (ECSA) v8 Eğitim Tipi ve Süresi: 5 Days VILT 5 Day VILT EC-Council Certified Security Analyst (ECSA) v8 Learn penetration testing methodologies while preparing for the ECSA and LPT certifications. The EC-Council Certified Security Analyst (ECSA) program teaches information security professionals to conduct realistic penetration tests by using EC-Council's published penetration testing methodology. This course is a five-day hands-on training program that uses real-time scenarios. In this course, you will learn about penetration testing methodology that is repeatable and that can be used in a penetration testing engagement, globally. Why EC-Council Certified Security Analyst is Best Presents industry accepted comprehensive penetration testing standards on 44 domains Covers advanced topics such as mobile, cloud, and virtual machine penetration testing Completely maps to the National Initiative for Cybersecurity Education (NICE)'s workforce framework, which includes: Protect and defend Operate and collect Analyze specialty area Covers all the requirements of National Information Assurance Training Standard For Information Systems Security Officers (CNSS ) and National Training Standard for System Certifiers (NSTISSI ) Benefits of Becoming ECSA Data security program-advanced penetration testing The curriculum is backed by and designed by the best in the field Students earn greater industry acceptance as seasoned security professionals Certified Security Analysts learn to analyze the outcomes of security tools and security testing techniques. The ECSA sets students on the path toward achieving the LPT certification Certification: EC-Council Certified Security Analyst (ECSA) Licensed Penetration Tester (LPT) The ECSA program provides one voucher to sit for the ECSA v8 exam. The ECSA certificate is provided on successfully passing the online ECSA exam. The ECSA sets students on the path toward achieving the Licensed Penetration Tester (LPT) certification. Access Your Class Recording for Six Months

2 Enjoy six months of access to a fully indexed and searchable recording of your class when you choose our Virtual Classroom Live learning experience. What You'll Learn Perform network and application penetration testing using both automated and manual techniques Design and perform audits of computer systems to ensure they are operating securely and that data is protected from both internal and external threats Assess assigned system to determine system security status Design and recommend security policies and procedures Ensure compliance to policies and procedures Evaluate highly complex security systems according to industry best practices to safeguard internal information systems and databases Lead investigations of security violations and breaches and recommend solutions; prepare reports on intrusions as necessary and provide an analysis summary for management Respond to more complex queries and request for computer security information and report from both internal and external customers Who Needs to Attend Network server administrators Firewall administrators Information security analysts System administrators Risk assessment professionals Prerequisites While the Certified Ethical Hacker (CEH) certification is not a prerequisite for the ECSA course, we strongly advise candidates to take the Certified Ethical Hacker v8 course to attain the CEH prior to the commencement of the ECSA course. Follow-On Courses There are no follow-ons for this course. Certification Programs and Certificate Tracks This course is part of the following programs or tracks: EC-Council Certified Security Analyst and EC-Council Licensed Penetration Tester Course Outline Core Modules 1. Need for Security Analysis 2. TCP IP Packet Analysis 3. Penetration Testing Methodologies 4. Customers and Legal Agreements 5. Rules of Engagement 6. Penetration Testing Planning and Scheduling

3 7. Pre-penetration Testing Steps 8. Information Gathering 9. Vulnerability Analysis 10. External Penetration Testing 11. Internal Network Penetration Testing 12. Firewall Penetration Testing 13. IDS Penetration Testing 14. Password Cracking Penetration Testing 15. Social Engineering Penetration Testing 16. Web Application Penetration Testing 17. SQL Penetration Testing 18. Penetration Testing Reports and Post Testing Actions Self-Study Modules 19. Router and Switches Penetration Testing 20. Wireless Network Penetration Testing 21. Denial-of-Service Penetration Testing 22. Stolen Laptop, PDAs and Cell Phones Penetration Testing 23. Source Code Penetration Testing 24. Physical Security Penetration Testing 25. Surveillance Camera Penetration Testing 26. Database Penetration Testing 27. VoIP Penetration Testing 28. VPN Penetration Testing 29. Cloud Penetration Testing 30. Virtual Machine Penetration Testing 31. War Dialing 32. Virus and Trojan Detection 33. Log Management Penetration Testing

4 34. File Integrity Checking 35. Mobile Devices Penetration Testing 36. Telecommunication and Broadband Communication Penetration Testing 37. Security Penetration Testing 38. Security Patches Penetration Testing 39. Data Leakage Penetration Testing 40. SAP Penetration Testing 41. Standards and Compliance 42. Information System Security Principles 43. Information System Incident Handling and Response 44. Information System Auditing and Certification Labs The ECSA course is a fully hands-on program. The exercises cover real world scenarios. By practicing the skills that are provided to you in the ECSA class, we are able to bring candidates up to speed with the latest threats to which organizations are vulnerable. This can be achieved with the EC-Council ilabs cyber range. It allows students to dynamically access a host of Virtual Machines preconfigured with vulnerabilities, exploits, tools, and scripts from anywhere with an internet connection. Our simplistic web portal enables the student to launch an entire range of target machines and access them remotely with one simple click. It is the most cost effective, easy to use, live range lab solution available. With ilabs, lab exercises can be accessed 24x7 allowing the student to practice skills in a safe, fully functional network anytime it's convenient. Our guided step-by-step labs include exercises with detailed tasks, supporting tools, and additional materials as well as our state-of-the-art "Open Environment" allowing students to launch a complete Live range open for any form of hacking or testing. Available target machines are completely virtualized allowing us to control and reset machines quickly and easily with no required instructor or administrative interaction. Lab 1: TCPIP Packet Analysis TCP/IP Packet Analysis Using Wireshark Lab 2: Information Gathering Information Gathering Lab 3: Vulnerability Analysis Vulnerability Analysis Using the Nessus Tool Lab 4: External Penetration Testing Exploring and Auditing a Network Using Nmap

5 Lab 5: Internal Network Penetration Testing Scanning a Local Machine for Open Ports Using TCPView User Activity Monitoring and Recording Using Power Spy 2013 Capture Remote Interfaces Using Wireshark Lab 6: Firewall Penetration Testing HTTP Tunneling to Bypass Firewalls Using HTTPort Lab 7: IDS Penetration Testing Detecting Intrusions Using Snort Intrusion Detection Using KFSensor Honeypot IDS Lab 8: Password Cracking Penetration Testing Extracting Administrator Passwords Using L0phtCrack Lab 9: Social Engineering Penetration Testing Social Engineering Penetration Testing using Social Engineering Toolkit (SET) Creating an Exploit Using Metasploit for Windows 7 Penetration Testing Lab 10: Web Application Penetration Testing Hacking Web Applications Lab 11: SQL Penetration Testing SQL Injection Attacks on MS SQL Database Bilginç IT Academy Telefon: Fax: E-posta: [email protected] Adres: Huzur Mahallesi Fatih Caddesi No:67 Kat:4 4.Levent/İstanbul