Für diesen Artikel ist leider kein Bild verfügbar.

Certified Ethical Hacker (CEH) Complete Video Course and Practice Test, 2nd Edition

2020 | 2nd edition
Pearson IT Certification (Hersteller)
978-0-13-564738-7 (ISBN)
369,95 inkl. MwSt
zur Neuauflage
  • Titel erscheint in neuer Auflage
  • Artikel merken
Zu diesem Artikel existiert eine Nachauflage
18+ Hours of Video Instruction


Learn everything you need to know to pass the Certified Ethical Hacker exam.


Overview


Certified Ethical Hacker (CEH) Complete Video Course provides a complete overview of the topics contained in the EC-Council Blueprint for the CEH exam. With 5 modules containing more than 18 hours of training, this course covers all concepts in the objectives so you can master the knowledge you need to pass the exam.




Build your ethical hacking skills with the foundations of reconnaissance, footprinting, enumeration, and vulnerability analysis and dive into hacking web servers, applications, wireless networks, IoT devices, and mobile platforms. Veteran security experts Omar Santos, Nick Garner, and Bo Rothwell provide a thorough foundation through demos and best practices for security risk analysis, as well as hacking tools and methods. With this knowledge, you will be able to confidently mitigate and help guard your network from the multifaceted attacks that you will encounter while also preparing you to pass the CEH exam.




Regardless of your level of experience, this video course explores all sides of a multi-pronged cybersecurity attack to ensure that you are prepared to combat attack threats.




This course additionally comes with



5 module quizzes so you can test your progress as you work your way through the course
16 interactive exercises and CLI simulations







Skill Level






Intermediate




Learn How To






Perform footprinting and reconScan networks
Perform and take countermeasures against enumeration
Conduct a vulnerability analysis
Hack systems and cover your tracks
Use and prevent malware
Perform network sniffing
Conduct social engineering methodologies and learn how to prevent them from happening
Perform Denial-of-Service (DoS) and session hijacking attacks, as well as take measures to guard against them
Hack web servers and applications using multiple tools and techniques
Perform attacks using SQL injection
Use the best tools and techniques for hacking wireless networks
Deploy IDS, firewalls, and honeypots, as well as learn how to evade them
Understand and learn how to use cloud computing for penetration testing
Understand cryptography and cryptanalysis
Exploit the vulnerabilities of Internet of Things (IoT) devices
Understand the vulnerabilities of and methods to hack mobile devices




Who Should Take This Course






Anyone interested in passing the EC Council Certified Ethical Hacker (CEH) exam
Anyone interested in becoming a cybersecurity professional
Anyone interested in ethical hacking (penetration testing)


Course Requirements




Anyone interested in earning a Certified Ethical Hacker (CEH) certification must attend training through EC-Council or show that they have 2 years of information security experience in each of the 5 CCISO domains via the application form. Please go to the EC-Council website for more information.





Lesson descriptions


Lesson 1, "Course Overview," provides a general overview of the CEH exam, as well as the areas of focus. In addition, this lesson discusses what this video course is and isn't so that you know what to expect to study before you take the CEH exam.




Lesson 2, "Introduction to Ethical Hacking," explores several general concepts with respect to ethical hacking, focusing on InfoSec; attack concepts, phases, and types; and the legal aspects and methodologies of penetration testing.




Lesson 3, "Footprinting and Recon," dives into hacking with a focus on footprinting and reconnaissance, the most important steps when evaluating a target to discern vulnerable resources.




Lesson 4, "Scanning Networks," naturally follows up with what you learned in Lesson 3, where you now have a focused target or targets. In this lesson, you will learn how to scan networks and hosts to find services available for possible exploit. In addition to basic TCP/UDP scanning, this lesson delves into diagramming, tunneling, banners, and other approaches.




Lesson 5, "Enumeration," covers the fundamentals of enumeration-that is, the gathering of user names, machine names, shares, and other important host information.




Lesson 6, "Vulnerability Analysis," begins with an introduction to vulnerability research and classification before moving on to explore vulnerability assessment, the vulnerability management lifecycle, and the different approaches to vulnerability assessment solutions. This lesson concludes by delving into vulnerability scoring systems, assessment tools, and reports.




Lesson 7, "System Hacking," covers password cracking, Microsoft authentication, privilege escalation, alternate data streams, root kits, and other key approaches in the hacker's toolbox.




Lesson 8, "Malware Threats," is devoted entirely to malware-what it is, where it comes from, detection, and eradication, as well as Trojans and countermeasures.




Lesson 9, "Sniffing," covers what network sniffing is and the various techniques to get access to the traffic that you want to see to enable further exploits.




Lesson 10, "Social Engineering," discusses social engineering techniques that you can use to influence people to perform actions or release information that opens up new avenues for network exploitation. As a corollary, this lesson also covers some countermeasures to protect you from becoming a victim of social engineering.




Lesson 11, "Denial-of-Service (DoS)," examines how botnets and DoS tools can be used to cripple a resource so that it cannot provide a service. This lesson also covers some methods you can employ to mitigate or prevent DoS attacks.




Lesson 12, "Session Hijacking," provides an overview of TCP sessions and some of the vulnerabilities that can be exploited, such as man-in-the middle and cross-site attacks.




Lesson 13, "Hacking Webservers," looks at some of the common webserver implementations and some of the authentication authorization protocols often used. In addition, you'll learn about common webserver attacks, methodologies, countermeasures, and several security tools.




Lesson 14, "Hacking Web Applications," examines different attack vectors and threats, how to perform footprinting of web apps, and how to corral your knowledge of web application evolution, protocols, mechanics, and tools to guard against vulnerabilities.




Lesson 15, "Advanced Web Application Hacking," provides you with an understanding of vulnerabilities associated with command injection, XML injection, XXS (cross-site scripting), and Cross-Site Request Forgery (CSRF), as well as how to both exploit and mitigate related attacks.




Lesson 16, "SQL Injection," covers the methodologies and attacks that use SQL injection, as well as tools to detect and defend against these attacks.




Lesson 17, "Hacking Wireless," kicks off with an in depth look at wireless LAN fundamentals, including mechanics, encryption, and antenna types. The lesson continues by providing a wealth of knowledge about building your own wireless penetration testing lab for hacking practice using tools such as Pineapple, Airecrack-ng suite, cOWPatty, and many others. This lesson also delves into Bluetooth vulnerabilities and offers strategies for defending against wireless attacks.




Lesson 18, "IDS, Firewalls, and Honeypots," explores IDS, firewall, and honeypot concepts, tools, and related penetration testing methods.




Lesson 19, "Cloud Computing," covers the relatively new cloud computing environment and the challenges involved with conducting penetration testing in cloud networks.




Lesson 20, "Cryptography," explores algorithms and tools related to encryption, cryptography, and cryptanalysis.

Lesson 21, "IoT Hacking," kicks off with a look at how the Internet of Things has become increasingly pervasive and covers the IoT tools ZigBee, IEEE 802.15.4, INSTEON, ZWave, and LoRA. The lesson concludes with coverage of IoT penetration testing methods and security tools.




Lesson 22, "Hacking Mobile Platforms," delves into security concerns in the era of the BYOD workforce, necessitating a Mobile Device Management (MDM) strategy. An under the hood look at Android and iOS security concerns, tools, and hacking methods concludes the lesson and the course.


About Pearson Video Training




Pearson publishes expert-led video tutorials covering a wide selection of technology topics designed to teach you the skills you need to succeed. These professional and personal technology videos feature world-leading author instructors published by your trusted technology brands: Addison-Wesley, Cisco Press, Pearson IT Certification, Prentice Hall, Sams, and Que Topics include: IT Certification, Network Security, Cisco Technology, Programming, Web Development, Mobile Development, and more. Learn more about Pearson Video training at http://www.informit.com/video.

Video Lessons are available for download for offline viewing within the streaming format. Look for the green arrow in each lesson.

Omar Santos is an active member of the cybersecurity community, where he leads several industry-wide initiatives and standards bodies. He is a principal engineer of the Cisco Product Security Incident Response Team (PSIRT), where he mentors and leads engineers and incident managers during the investigation and resolution of cyber security vulnerabilities. He is the author of several cybersecurity books and video courses. You can obtain additional information about Omar's projects at omarsantos.io and h4cker.org. Nick Garner, CCIE No. 17871, is a solutions integration architect for Cisco Systems. He has been in Cisco Advanced Services supporting customers in both transactional and subscription engagements for 8 years. In his primary role, he has deployed and supported large-scale data center designs for prominent clients in the San Francisco Bay area. His primary technical focus outside of data center routing and switching designs is security and multicast. William "Bo" Rothwell has a passion for understanding how computers work and sharing this knowledge with others has resulted in a rewarding career in IT training. His experience includes Linux, Unix, and programming languages such as Perl, Python, Tcl, and BASH. He is the founder and president of One Course Source, an IT training organization.

Module 1: Security Essentials
Lesson 1: Course Overview
Lesson 2: Introduction to Ethical Hacking
Lesson 3: Footprinting and Recon
Lesson 4: Scanning Networks




Module 2: System Security
Lesson 5: Enumeration
Lesson 6: Vulnerability Analysis
Lesson 7: System Hacking
Lesson 8: Malware Threats
Lesson 9: Sniffing
Lesson 10: Social Engineering




Module 3: Network Security
Lesson 11: Denial-of-Service (DoS)
Lesson 12: Session Hijacking




Module 4: Web Services Security
Lesson 13: Hacking Webservers
Lesson 14: Hacking Web Applications
Lesson 15: Advanced Web Application Hacking
Lesson 16: SQL Injection




Module 5: Wireless and Internet Security
Lesson 17: Hacking Wireless
Lesson 18: IDS, Firewalls, and Honeypots
Lesson 19: Cloud Computing
Lesson 20: Cryptography
Lesson 21: IoT Hacking
Lesson 22: Hacking Mobile Platforms

Erscheint lt. Verlag 5.11.2020
Verlagsort Upper Saddle River
Sprache englisch
ISBN-10 0-13-564738-X / 013564738X
ISBN-13 978-0-13-564738-7 / 9780135647387
Zustand Neuware
Haben Sie eine Frage zum Produkt?