




























































































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Officially approved by Eu council
Typology: Lecture notes
1 / 578
This page cannot be seen from the preview
Don't miss anything!





























































































Introductions (^) Name (^) Company Affiliation (^) Title / Function (^) Job Responsibility (^) System security related experience (^) Expectations
Course Outline (^) Module I : Introduction to Ethical Hacking (^) Module II: Footprinting (^) Module III: Scanning (^) Module IV: Enumeration (^) Module V: System Hacking
Course Outline (contd..) (^) Module VI: Trojans and Backdoors (^) Module VII: Sniffers (^) Module VIII: Denial of Service (^) Module IX: Social Engineering (^) Module X: Session Hijacking
Course Outline (contd..) (^) Module XVI: Viruses (^) Module XVII: Novell Hacking (^) Module XVIII: Linux Hacking (^) Module XIX: Evading IDS, Firewalls and Honey pots (^) Module XX: Buffer Overflows (^) Module XXI: Cryptography
EC-Council Certified e- business Certification Program
Student Facilities Building Hours Phone s Parkin g Messag es Restroo ms Smokin g Recyclin g Meal s Class Hours
Lab Sessions (^) Lab Sessions are designed to reinforce the classroom sessions (^) The sessions are intended to give a hands on experience only and does not guarantee proficiency.
Module Objective
Problem Definition – Why Security?
Essential Terminology Threat – An action or event that might prejudice security. A threat is a potential violation of security. (^) Vulnerability – Existence of a weakness, design, or implementation error that can lead to an unexpected, undesirable event compromising the security of the system. (^) Target of Evaluation – An IT system, product, or component that is identified/subjected as requiring security evaluation. (^) Attack – An assault on system security that derives from an intelligent threat. An attack is any action that violates security. (^) Exploit – A defined way to breach the security of an IT system through vulnerability.
Elements of Security EC- Security is a state of well-being of information and infrastructures in which the possibility of successful yet undetected theft, tampering, and disruption of information and services is kept low or tolerable Any hacking event will affect any one or more of the essential security elements. (^) Security rests on confidentiality, authenticity, integrity, and availability
Phase 1 - Reconnaissance EC- (^) Reconnaissance refers to the preparatory phase where an attacker seeks to gather as much information as possible about a target of evaluation prior to launching an attack. It involves network scanning either external or internal without authorization (^) Business Risk – ‘Notable’ – Generally noted as a "rattling the door knobs" to see if someone is watching and responding. Could be future point of return when noted for ease of entry for an attack when more is known on a broad scale about the target.
Phase 1 - Reconnaissance (contd.)