Course

Penetration Testing Cyber Range

Course description

This cyber range helps you develop your knowledge of penetration testing and ethical hacking by practicing on cloud-hosted virtual machines. You’ll build and reinforce your skills as you progress through labs covering a wide range of pentesting topics, including abusing protocols, scanning for vulnerabilities, identifying exploits and delivering payloads, and more. You’ll also perform several Capture the Flag (CTF) exercises designed to validate your new pentesting skills. Try to complete the CTF challenges on your own, using the labs and other Skills materials as reference. If you get stuck, you can use this walkthrough document for help: https://www.infosecinstitute.com/pentest-guide/

Syllabus

Host Discovery

Lab — 00:09:00

Explore finding active hosts on a network as you practice in the Penetration Testing Cyber Range.

Port & Protocol Scanning with NMAP

Lab — 00:13:00

Get familiar with the process of port scanning using Nmap as you practice in the Penetration Testing Cyber Range.

Linux Fundamentals

Lab — 00:23:00

Explore the fundamentals of Linux and gain hands-on experience via the Penetration Testing Cyber Range.

Abusing DNS

Lab — 00:10:00

Learn about gathering information from DNS records as you practice in the Penetration Testing Cyber Range.

TCP/IP For Hackers

Lab — 00:21:00

Learn about using TCP/IP for pentesting as you practice in the Penetration Testing Cyber Range.

Service Identification

Lab — 00:08:00

Learn about service identification as you practice in the Penetration Testing Cyber Range.

Abusing SNMP

Lab — 00:10:00

Learn about getting information from SNMP as you practice in the Penetration Testing Cyber Range.

Stealthy Network Reconnaissance

Lab — 00:19:00

Learn stealthy scanning techniques with Nmap as you practice in the Penetration Testing Cyber Range.

Exploiting Vulnerable Services

Lab — 00:15:00

Learn about gaining access to a remote systems as you practice in the Penetration Testing Cyber Range.

Vulnerability Identification

Lab — 00:12:00

Learn about vulnerability identification as you practice in the Penetration Testing Cyber Range.

Additional Payloads

Lab — 00:24:00

Explore Metasploit payload options as you practice in the Penetration Testing Cyber Range.

Sniffing

Lab — 00:18:00

Discover why few things are better than having raw access to network traffic as you practice in the Penetration Testing Cyber Range.

Wi-Fi Pentesting

Lab — 00:04:00

Learn about cracking WEP and WPA2 keys as you practice in the Penetration Testing Cyber Range.

Credential Harvesting with SET

Lab — 00:14:00

Learn about stealing passwords as you practice in the Penetration Testing Cyber Range.

Scanning with Mobile Devices

Lab — 00:08:00

Learn about running network scans from Android as you practice in the Penetration Testing Cyber Range.

Advanced Scanning with Nmap

Lab — 00:07:00

Hone your Nmap skills as you practice in the Penetration Testing Cyber Range.

Hacking with Android

Lab — 00:09:00

Learn about launching a remote exploit from an Android device as you practice in the Penetration Testing Cyber Range.

Web App Hacking

Lab — 00:26:00

Gain experience with web application hacking as you practice in the Penetration Testing Cyber Range.

Basic SQL Injection

Lab — 01:00:00

Discover how to exploit an SQL injection vulnerability as you practice in the Penetration Testing Cyber Range.

SQL Injection Chained Exploitation

Lab — 00:11:00

Explore combining SQL injection attacks as you practice in the Penetration Testing Cyber Range.

Spearphishing

Lab — 00:12:00

Explore compromising a system via malicious email as you practice in the Penetration Testing Cyber Range.

Client Side Exploits

Lab — 00:14:00

Carry out an example of a client side exploit as you practice in the Penetration Testing Cyber Range.

Server Side Exploit

Lab — 00:12:00

Learn how to exploit a web server vulnerability as you practice in the Penetration Testing Cyber Range.

Android Exploitation

Lab — 00:17:00

Learn about accessing Android devices remotely as you practice in the Penetration Testing Cyber Range.

Heartbleed Exploitation

Lab — 00:10:00

Learn how to exploit the Heartbleed (OpenSSL) vulnerability as you practice in the Penetration Testing Cyber Range.

Shellshock Exploitation

Lab — 00:11:00

Learn about exploiting the Shellshock (GNU Bash) vulnerability as you practice in the Penetration Testing Cyber Range.

Post-Exploit Password Cracking

Lab — 00:12:00

Learn about cracking hashed passwords gathered from a compromised system as you practice in the Penetration Testing Cyber Range.

Using Ncat As A Trojan

Lab — 00:13:00

Discover how to maintain access to compromised system with Ncat as you practice in the Penetration Testing Cyber Range.

Intrusion Detection with Snort

Lab — 00:24:00

Get an overview of using intrusion detection with Snort as you practice in the Penetration Testing Cyber Range.

Covert Channels/Evasion

Lab — 00:25:00

Learn about using encryption for covert communications and IDS evasion as you practice in the Penetration Testing Cyber Range.

CTF 1: DNS and SNMP Reconnaissance

Lab — 00:04:00

Test your DNS and SNMP reconnaissance skills as you practice in the Penetration Testing Cyber Range.

CTF 2: Attacking FTP

Lab — 00:04:00

Test your sniffing and password cracking skills as you practice in the Penetration Testing Cyber Range.

CTF 3: Web Application Exploitation

Lab — 00:04:00

Test your web application hacking skills as you practice in the Penetration Testing Cyber Range.

CTF 4: Privilege Escalation

Lab — 00:03:00

Test your privilege escalation skills as you practice in the Penetration Testing Cyber Range.

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

Associated NICE Work Roles

All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.

  • Cyber Operator
  • Law Enforcement / Counterintelligence Forensics Analyst
  • Cyber Defense Forensics Analyst

You're in good company

CY

We use Infosec Skills to provide continuous training to our technicians and to prepare them for various certifications. Infosec Skills allows us to create personalized training programs that focus on each of our technicians’ particular roles and see their progress as they take courses. We also, recommend it to clients to make their IT support teams better.

Caleb Yankus

DS

This has been utilized to bridge the skills gap across our cyber team and to aid them as they prepare for their various certifications. It also has provided a nice learning foundation for our various cyber team members to utilize as we continue to find ways for cross-utilization with operations while minimizing the downtime needed to ensure everyone’s knowledge is the same.

Daniel Simpson

IS

We use Infosec Skills to provide base level knowledge for employees. We also use the services to provide in depth learning for employees as they encounter new technologies. If an employee is is assigned to a new project, we can rely on Infosec Skills to provide a rapid concentrated learning environment. This rapid concentrated learning positions our employees for success.

Infosec Skills Teams client

Plans & pricing

  • Infosec Skills Personal

    $299 / year

    • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
    • 100s of hands-on labs in cloud-hosted cyber ranges
    • Custom certification practice exams (e.g., CISSP, Security+)
    • Skill assessments
    • Infosec peer community support
  • Infosec Skills Teams

    $799 per license / year

    • Team administration and reporting
    • Dedicated client success manager
    • Single sign-on (SSO)
      Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
    • Integrations via API
      Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
    • 190+ role-guided learning paths and assessments (e.g., Incident Response)
    • 100s of hands-on labs in cloud-hosted cyber ranges
    • Create and assign custom learning paths
    • Custom certification practice exams (e.g., CISSP, CISA)
    • Optional upgrade: Guarantee team certification with live boot camps

Award-winning training that you can trust

Comprehensive Cybersecurity Training - Infosec Skills
Cybersecurity Education and Training Gold Award - Infosec IQ
Top Rated Award - Infosec Skills
Technical Skills Development - Small Business, Mid-Market
Top 20 Online Learning Library