Course description
This cyber range helps you develop your knowledge of penetration testing and ethical hacking by practicing on cloud-hosted virtual machines. You’ll build and reinforce your skills as you progress through labs covering a wide range of pentesting topics, including abusing protocols, scanning for vulnerabilities, identifying exploits and delivering payloads, and more. You’ll also perform several Capture the Flag (CTF) exercises designed to validate your new pentesting skills. Try to complete the CTF challenges on your own, using the labs and other Skills materials as reference. If you get stuck, you can use this walkthrough document for help: https://www.infosecinstitute.com/pentest-guide/
Syllabus
Host Discovery
Lab — 00:09:00
Explore finding active hosts on a network as you practice in the Penetration Testing Cyber Range.
Port & Protocol Scanning with NMAP
Lab — 00:13:00
Get familiar with the process of port scanning using Nmap as you practice in the Penetration Testing Cyber Range.
Linux Fundamentals
Lab — 00:23:00
Explore the fundamentals of Linux and gain hands-on experience via the Penetration Testing Cyber Range.
Abusing DNS
Lab — 00:10:00
Learn about gathering information from DNS records as you practice in the Penetration Testing Cyber Range.
TCP/IP For Hackers
Lab — 00:21:00
Learn about using TCP/IP for pentesting as you practice in the Penetration Testing Cyber Range.
Service Identification
Lab — 00:08:00
Learn about service identification as you practice in the Penetration Testing Cyber Range.
Abusing SNMP
Lab — 00:10:00
Learn about getting information from SNMP as you practice in the Penetration Testing Cyber Range.
Stealthy Network Reconnaissance
Lab — 00:19:00
Learn stealthy scanning techniques with Nmap as you practice in the Penetration Testing Cyber Range.
Exploiting Vulnerable Services
Lab — 00:15:00
Learn about gaining access to a remote systems as you practice in the Penetration Testing Cyber Range.
Vulnerability Identification
Lab — 00:12:00
Learn about vulnerability identification as you practice in the Penetration Testing Cyber Range.
Additional Payloads
Lab — 00:24:00
Explore Metasploit payload options as you practice in the Penetration Testing Cyber Range.
Sniffing
Lab — 00:18:00
Discover why few things are better than having raw access to network traffic as you practice in the Penetration Testing Cyber Range.
Wi-Fi Pentesting
Lab — 00:04:00
Learn about cracking WEP and WPA2 keys as you practice in the Penetration Testing Cyber Range.
Credential Harvesting with SET
Lab — 00:14:00
Learn about stealing passwords as you practice in the Penetration Testing Cyber Range.
Scanning with Mobile Devices
Lab — 00:08:00
Learn about running network scans from Android as you practice in the Penetration Testing Cyber Range.
Advanced Scanning with Nmap
Lab — 00:07:00
Hone your Nmap skills as you practice in the Penetration Testing Cyber Range.
Hacking with Android
Lab — 00:09:00
Learn about launching a remote exploit from an Android device as you practice in the Penetration Testing Cyber Range.
Web App Hacking
Lab — 00:26:00
Gain experience with web application hacking as you practice in the Penetration Testing Cyber Range.
Basic SQL Injection
Lab — 01:00:00
Discover how to exploit an SQL injection vulnerability as you practice in the Penetration Testing Cyber Range.
SQL Injection Chained Exploitation
Lab — 00:11:00
Explore combining SQL injection attacks as you practice in the Penetration Testing Cyber Range.
Spearphishing
Lab — 00:12:00
Explore compromising a system via malicious email as you practice in the Penetration Testing Cyber Range.
Client Side Exploits
Lab — 00:14:00
Carry out an example of a client side exploit as you practice in the Penetration Testing Cyber Range.
Server Side Exploit
Lab — 00:12:00
Learn how to exploit a web server vulnerability as you practice in the Penetration Testing Cyber Range.
Android Exploitation
Lab — 00:17:00
Learn about accessing Android devices remotely as you practice in the Penetration Testing Cyber Range.
Heartbleed Exploitation
Lab — 00:10:00
Learn how to exploit the Heartbleed (OpenSSL) vulnerability as you practice in the Penetration Testing Cyber Range.
Shellshock Exploitation
Lab — 00:11:00
Learn about exploiting the Shellshock (GNU Bash) vulnerability as you practice in the Penetration Testing Cyber Range.
Post-Exploit Password Cracking
Lab — 00:12:00
Learn about cracking hashed passwords gathered from a compromised system as you practice in the Penetration Testing Cyber Range.
Using Ncat As A Trojan
Lab — 00:13:00
Discover how to maintain access to compromised system with Ncat as you practice in the Penetration Testing Cyber Range.
Intrusion Detection with Snort
Lab — 00:24:00
Get an overview of using intrusion detection with Snort as you practice in the Penetration Testing Cyber Range.
Covert Channels/Evasion
Lab — 00:25:00
Learn about using encryption for covert communications and IDS evasion as you practice in the Penetration Testing Cyber Range.
CTF 1: DNS and SNMP Reconnaissance
Lab — 00:04:00
Test your DNS and SNMP reconnaissance skills as you practice in the Penetration Testing Cyber Range.
CTF 2: Attacking FTP
Lab — 00:04:00
Test your sniffing and password cracking skills as you practice in the Penetration Testing Cyber Range.
CTF 3: Web Application Exploitation
Lab — 00:04:00
Test your web application hacking skills as you practice in the Penetration Testing Cyber Range.
CTF 4: Privilege Escalation
Lab — 00:03:00
Test your privilege escalation skills as you practice in the Penetration Testing Cyber Range.
Unlock 7 days of free training
- 1,400+ hands-on courses and labs
- Certification practice exams
- Skill assessments
Associated NICE Work Roles
All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.
- Cyber Operator
- Law Enforcement / Counterintelligence Forensics Analyst
- Cyber Defense Forensics Analyst
You're in good company
We use Infosec Skills to provide continuous training to our technicians and to prepare them for various certifications. Infosec Skills allows us to create personalized training programs that focus on each of our technicians’ particular roles and see their progress as they take courses. We also, recommend it to clients to make their IT support teams better.
Caleb Yankus
This has been utilized to bridge the skills gap across our cyber team and to aid them as they prepare for their various certifications. It also has provided a nice learning foundation for our various cyber team members to utilize as we continue to find ways for cross-utilization with operations while minimizing the downtime needed to ensure everyone’s knowledge is the same.
Daniel Simpson
We use Infosec Skills to provide base level knowledge for employees. We also use the services to provide in depth learning for employees as they encounter new technologies. If an employee is is assigned to a new project, we can rely on Infosec Skills to provide a rapid concentrated learning environment. This rapid concentrated learning positions our employees for success.
Infosec Skills Teams client
Plans & pricing
-
Infosec Skills Personal
- 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Custom certification practice exams (e.g., CISSP, Security+)
- Skill assessments
- Infosec peer community support
-
Infosec Skills Teams
- Team administration and reporting
- Dedicated client success manager
-
Single sign-on (SSO)
Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
-
Integrations via API
Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
- 190+ role-guided learning paths and assessments (e.g., Incident Response)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Create and assign custom learning paths
- Custom certification practice exams (e.g., CISSP, CISA)
- Optional upgrade: Guarantee team certification with live boot camps
Award-winning training that you can trust
