Ethical hacking for beginners, Lecture notes of Cybercrime, Cybersecurity and Data Privacy

Officially approved by Eu council

Typology: Lecture notes

2024/2025

Uploaded on 06/02/2026

alaparthi-family
alaparthi-family 🇮🇳

1 document

1 / 578

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Ethical
Hacking
Introductio
n
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44
pf45
pf46
pf47
pf48
pf49
pf4a
pf4b
pf4c
pf4d
pf4e
pf4f
pf50
pf51
pf52
pf53
pf54
pf55
pf56
pf57
pf58
pf59
pf5a
pf5b
pf5c
pf5d
pf5e
pf5f
pf60
pf61
pf62
pf63
pf64

Partial preview of the text

Download Ethical hacking for beginners and more Lecture notes Cybercrime, Cybersecurity and Data Privacy in PDF only on Docsity!

Ethical

Hacking

Introductio

n

Introductions  (^) Name  (^) Company Affiliation  (^) Title / Function  (^) Job Responsibility  (^) System security related experience  (^) Expectations

Course Outline  (^) Module I : Introduction to Ethical Hacking  (^) Module II: Footprinting  (^) Module III: Scanning  (^) Module IV: Enumeration  (^) Module V: System Hacking

Course Outline (contd..)  (^) Module VI: Trojans and Backdoors  (^) Module VII: Sniffers  (^) Module VIII: Denial of Service  (^) Module IX: Social Engineering  (^) Module X: Session Hijacking

Course Outline (contd..)  (^) Module XVI: Viruses  (^) Module XVII: Novell Hacking  (^) Module XVIII: Linux Hacking  (^) Module XIX: Evading IDS, Firewalls and Honey pots  (^) Module XX: Buffer Overflows  (^) Module XXI: Cryptography

EC-Council Certified e- business Certification Program

There are five e-Business certification

tracks under EC-Council Accreditation

body:

  • (^) 1. Certified e-Business Associate
  • (^) 2. Certified e-Business Professional
  • (^) 3. Certified e-Business Consultant
  • (^) 4. E++ Certified Technical Consultant
  • (^) 5. Certified Ethical Hacker

Student Facilities Building Hours Phone s Parkin g Messag es Restroo ms Smokin g Recyclin g Meal s Class Hours

Lab Sessions  (^) Lab Sessions are designed to reinforce the classroom sessions  (^) The sessions are intended to give a hands on experience only and does not guarantee proficiency.

Module Objective 

Understanding the importance of

security

Introducing ethical hacking and

essential terminology for the

module

Understanding the different phases

involved in an exploit by a hacker

Overview of attacks and identification of

exploit categories

Comprehending ethical hacking

Legal implications of hacking

Problem Definition – Why Security? 

Evolution of technology focused on ease

of use

Increasing complexity of computer

infrastructure administration and

management

Decreasing skill level needed for exploits

Direct impact of security breach on

corporate asset base and goodwill

Increased networked environment and

Essential Terminology  Threat – An action or event that might prejudice security. A threat is a potential violation of security.  (^) Vulnerability – Existence of a weakness, design, or implementation error that can lead to an unexpected, undesirable event compromising the security of the system.  (^) Target of Evaluation – An IT system, product, or component that is identified/subjected as requiring security evaluation.  (^) Attack – An assault on system security that derives from an intelligent threat. An attack is any action that violates security.  (^) Exploit – A defined way to breach the security of an IT system through vulnerability.

Elements of Security EC-  Security is a state of well-being of information and infrastructures in which the possibility of successful yet undetected theft, tampering, and disruption of information and services is kept low or tolerable  Any hacking event will affect any one or more of the essential security elements.  (^) Security rests on confidentiality, authenticity, integrity, and availability

  • (^) Confidentiality is the concealment of information or resources.
  • (^) Authenticity is the identification and assurance of the origin of information.
  • (^) Integrity refers to the trustworthiness of data or resources in terms of preventing improper and unauthorized changes.
  • (^) Availability refers to the ability to use the

Phase 1 - Reconnaissance EC-  (^) Reconnaissance refers to the preparatory phase where an attacker seeks to gather as much information as possible about a target of evaluation prior to launching an attack. It involves network scanning either external or internal without authorization  (^) Business Risk – ‘Notable’ – Generally noted as a "rattling the door knobs" to see if someone is watching and responding. Could be future point of return when noted for ease of entry for an attack when more is known on a broad scale about the target.

Phase 1 - Reconnaissance (contd.) 

Passive reconnaissance involves

monitoring network data for patterns

and clues.

  • (^) Examples include sniffing, information gathering etc. 

Active reconnaissance involves

probing the network to detect

  • (^) accessible hosts
  • (^) open ports
  • (^) location of routers
  • (^) details of operating systems and services