Entradas

Mostrando entradas de enero 18, 2015

HABEMUS CURSO.. A Practical Security For Fun, Profit and Work with Quality of Service

INTRODUCTION -The Real Spanish Hackers History X -Kali Linux Quick Introduction -Penetration Testing: White, Black, Grey and Double Grey Box -Sec List, Standards, ISO/IEC 27000 -The CIA Triad  (Confidenciality, Integrity and Aviability) -Minimun Privilege Principle -Microsoft Threat Modeling, Stride, Dread, OSTMM Model, OWASP WEB APPLICATION PENETRATION TESTING -Agressive FingerPrinting -Tactical FootPrinting -Google Hacking: Building Your Own Dorks -Shodan and Bing -Stealing Cookies and Credentials using Cross Site Scripting -From SQL Injection to Shell -Cross Site Request Forgery -Xpath INjection -LDAP Injection -ClickJacking -Remote File Inclusion / Local File Inclusion -OSINT -Mitigation ADAPTIVE PENETRATION TESTING: RED TEAM TACTICS (& DIRTY TRICKS :-) ) DAY 1 -Red Teaming Fundamentals -Knowing the enemy -Adversarial Mindset -The Three Aspects of Red Teaming : Digital, Physical, Social -Physical, mental and te...