Welcome! This is a website that everyone can build together. It's easy!

Ethical Hacking Syllabus



Well many one ask this as what to study as a curriculum for Ethical hacking..

hmm well i made dis generalized mannual fr u guys. may help a lot



• Security testing methodologies
• The Ethical Hacking Profession
• Passive Intelligence Gathering – 2007 Version
• Network Sweeps
• Stealthily Network Recon
• Passive traffic identification
• Identifying system vulnerabilities
• Abusing Domain Name System (DNS)
• Abusing Simple Network Management Protocol
(SNMP)

• Introduction to Remote Exploits
• Engineering remote exploits
• Running shellcode in RAM vs. on disk
• Heap Buffer Overflows
• Compromising Windows 2003 Server Systems
• Compromising Solaris Unix and Linux Systems
• Attacking RDP (Remote Desktop Protocol) in
Windows XP, 2003 & Vista
• Windows password weaknesses & Rainbow Tables
• Unix password weaknesses
• Attacking Cisco’s IOS password weaknesses


Trojan genres
• Windows, Unix and Linux Trojans
• Kernel Mode Windows Rootkits – System Call
Hijacking and Direct Kernel Object Modification
• Kernel Mode Linux Rootkits
• Covert communication channels
• Spoofing endpoints of communication tunnels
• Tunneling through IPSec VPNs by abusing ESP
• Steganographic Tunnels
• Remote command execution
• Sniffing and hijacking SSL encrypted sessions
• Installing sniffers on low privilege account in
Windows 2003 Server
• Stealthy Remote keylogger installation
• Circumventing Antivirus

Modifying syslog entries
• Raw binary editing to prevent forensic
investigations
• Editing the Windows Event Log
• Abusing Windows Named Pipes for Domain
Impersonation
• Impersonation of other Users- Hijacking kernel
tokens
• Disguising network connections
• Attacking Cisco IOS
• Attacking STP & BGP protocols
• Wireless Insecurity
• Breaking Wireless Security – WEP, WPA, WPA2
• Blinding IDS & IPS
• Attacking IDS & IPS

Malicious event log editing
• Binary filesystem modification for anti-forensics
• Named Pipe abuse
• Kernel Token Hijacking
• Attacking Border Gateway Protocol (BGP)
• Attack WEP
• Cracking WPA
• Cracking WPA2
• Cisco IOS Exploits
• Breaking into Cisco routers
• Blinding IPS
• Attacking IPS

Abusing Web Applications
• Attacking Java Applets
• Breaking web app authentication
• SQL Injection techniques
• Modifying form data
• Attacking session IDs
• Cookie stealing
• Cross Site Scripting
• Cross Site Request Forgery (CSRF) Attacks

Remote buffer overflow exploit lab
• Custom compiling Shellcode
• Running payloads in RAM
• Hiding exploit payloads in jpeg and gif image
files
• Attacking email vectors (Lotus Notes and
Microsoft Exchange, and Outlook Web Access)
• Registry manipulation
• Client side IE & Firefox exploits
• Using custom Trojans to circumvent Antivirus
• Remote kernel overflows
• RDP (Remote Desktop Protocol) Exploitation
• Cracking Windows Passwords
• Building Rainbow Tables
• Cracking Windows 2003 native mode passwords
• Brute forcing salted Unix passwords
• Attacking Kerberos Pre-Auth Hashes
• Cracking IOS and PIX passwords

• Compromise a DMZ setting with port redirection
• Circumvent firewall IP access list (ACL)
• Customizing Trojans to avoid Antivirus
• Deploying kernel mode rootkits on Windows 2003
& Vista
• Installing LKM rootkits on Linux servers
• Hijacking MSN messenger traffic
• Running commands remotely
• Breaking wireless encryption – WEP, WPA, WPA2
• Installing sniffers in low privilege user accounts
• Sniffing remotely and retrieving results
• Remote keylogging
• Tunneling with cover channels through IPSec VPNs
• Hijack and capture SSL traffic


Network Sweeping
• Scanning from spoofed IP addresses
• Stealthy Recon
• Injecting p0f for passive OS fingerprinting
• Scanning through firewalls
• IPv6 Scanning
• Discover all subdomains owned by an
organization
• Inspect changes to whois record over last 3
years
• Windows 2003 Server & Vista DNS Cache
Poisoning Attacks
• Pumping SNMP for data – OID Dissection
• Attacking SNMP

Phase 1



Latest page update: made by rahuldutt1 , May 5 2007, 6:16 AM EDT (about this update About This Update rahuldutt1 Edited by rahuldutt1

616 words added

view changes
- complete history)
Keyword tags: Ethical Hacking Syllabus what to study in hacking
More Info: links to this page

Threads

Anonymous  (Get credit for your thread)
Started By Thread Subject Replies Last Post
scorpio2_87 help me 0 Jul 15 2008, 6:33 AM EDT by scorpio2_87
scorpio2_87
Thread started: Jul 15 2008, 6:33 AM EDT  Watch
Send me hacking tips.
1  out of 2 found this valuable. Do you?    
Keyword tags: None
jainulabdin1987 excellent but 0 Jan 6 2008, 2:07 PM EST by jainulabdin1987
jainulabdin1987
Thread started: Jan 6 2008, 2:07 PM EST  Watch
its good until i learn it.
sm of the topics i dont know so it is very thankful to u if u put the links 2 get them all one by one or something like that.
Do you find this valuable?    
Keyword tags: None
Anonymous excellent 0 Sep 30 2007, 8:57 AM EDT by Anonymous
Thread started: Sep 30 2007, 8:57 AM EDT  Watch
goood.... by this most of them learn very fast
4  out of 4 found this valuable. Do you?    
Keyword tags: None
praveenhack Very Helpful 0 Aug 30 2007, 11:57 PM EDT by praveenhack
praveenhack
Thread started: Aug 30 2007, 11:57 PM EDT  Watch
This syllabus is very helpful for those who want to learn ethical hacking. It helps a lot.
6  out of 6 found this valuable. Do you?    
Keyword tags: None
Top Contributors