Courses

Proactive Web Defence

A three-day training course in web application security and secure coding practices, helping to ensure that your software is resilient to attacks from even the most advanced threats

PWD is an exercise-driven training course that will guide you through exploiting vulnerabilities in a realistic website. Step-by-step tutorials will ensure that you gain a thorough understanding of a modern attacker’s mind-set and capabilities. Equipped with this understanding, we will move our attention back to secure coding best practice and defensive programming techniques that can be used to make our applications robust and resilient to attacks.

Who should attend?

The course is aimed primarily at web developers although it is also suitable for technical project managers. The content caters for beginners with limited or no security knowledge and gradually progresses to advanced topics. Prior to attending Proactive Web Defence, it is recommended that you:

Can build a dynamic web application that can communicate with a database
Have a basic understanding of relational databases and SQL
Can read basic JavaScript (even if you can’t write it)
Understand the basic principles of web servers and HTTP

Course highlights

How to identify, exploit and remediate all the common web application security flaws, over and above the OWASP Top Ten
How to build secure web applications that can withstand advanced attacks
How hackers attack web applications, web servers and database servers
How to deploy secure web and database servers that can withstand an attack
The most up to date and effective secure coding practices

Benefits to your organisation

Helps to ensure that your software is resilient to an attack, against even the most advanced threats
Increases levels of trust and reputation when developing for external organisations
Increases your organisation’s overall understanding of security, reducing the time and cost of remediating vulnerabilities
Stimulates a positive attitude and an understanding of the importance of security within the development team
Fulfils secure coding requirements for PCI DSS

Topics / Syllabus

Foundation

  • Hackers – Culture and Motives
  • A History of Hacking
  • Firewalls Pitfalls
  • The CIA Triad
  • HTTP Protocol Refresher

Authentication & Authorisation

  • Authentication Issues
  • Username Enumeration
  • Brute Force Attacks
  • Account Lockout
  • Multi-Factor Authentication
  • Forgotten Password Functionality
  • Session Hijacking
  • Session Fixation
  • Authorisation Issues

Injection Attacks

  • SQL Injection for Authentication Bypass and Data Extraction
  • XML Injection
  • LDAP Injection
  • XPath Injection
  • CRLF Injection
  • SMTP Injection
  • OS Command Injection
  • XML eXternal Entity Processing (XXE)
  • XML Denial of Service

Client-Side Attacks

  • Cross-Site Scripting (XSS)
  • Advanced XSS Attacks
  • Output Encoding
  • Cross-Site Request Forgery (CSRF)
  • JSON Hijacking
  • Cross-Site Redirects
  • Clickjacking Attacks

Infrastructure Level Attacks

  • Directory Traversal
  • Insecure File Upload
  • LFI and RFI
  • Web Server Hardening
  • Buffer Overflows
  • Dangerous HTTP Methods
  • Database Server Hardening
  • Attacking the Database Server

Encryption & Data Storage

  • Fundamentals of Encryption
  • Common Encryption Flaws
  • Secure Socket Layer (SSL)
  • Stored Data
  • Cracking Password Hashes
  • Data Leakage

HTML 5

  • XSS Filter Considerations
  • Cross-Origin Resource Sharing
  • Cross-Window Messaging
  • Web Local Storage

Integrating Security

  • Current State of the Industry
  • Secure Software Development Lifecycle
  • Security Requirements
  • Security Coding Standards
  • Conducting a Design Review
  • Conducting a Code Review
  • Vulnerability Scanning Tools
  • Penetration Testing
  • Logs and Alerts
  • Vulnerability Management

How is this course different?

The course is delivered by experienced security professionals, who perform web application security assessments on a daily basis.

We focus on teaching offensive security techniques, so that you can fully understand the capabilities of modern attackers and therefore how to defend against them.

This is a practical, exercise driven course. We’ve developed a realistic web application with common flaws which allows us to show you how attackers would exploit these vulnerabilities in the real world.

We teach you how to introduce security in your development lifecycle in a practical manner, by combining secure coding principles, design and source code reviews

Proactive Network Defence

A three-day training course in network security, teaching you to defend against attacks of all levels of sophistication, up to and including APTs

PND is an exercise-driven training course that will guide you through attacking a real network step by step, so that you can gain a thorough understanding of a modern attacker’s mindset and capabilities. We then teach you techniques that will help you to defend your network against attacks of all levels of sophistication, up to and including Advanced Persistent Threats.

Who should attend?

This is a technical course aimed mainly at those who are responsible for deploying and managing network infrastructure, but if you’re interested in understanding hacking and security, this is also for you. You won’t need any prior security knowledge, as we cover the basics on the way to advanced topics. You will need to know Unix and Windows basics (setting an IP address, installing software, copying, moving, deleting and reading files) and network fundamentals such as the difference between TCP and UDP, the format of an IP address, subnetting / CIDR notation, and to be familiar with the more common protocols such as ICMP, HTTP, DNS and SNMP.

Course highlights

You’ll gain an in-depth understanding of how modern attackers can bypass current perimeter security controls and break into an internal network
You’ll see how it’s possible to gain full control over a fully patched Windows 2012 domain
You’ll learn about security weaknesses in the common flavours of Unix (Solaris, RedHat, Debian, etc.)
Most importantly, you’ll learn how to build a secure network that can withstand a targeted attack

Benefits to your organisation

Helps to ensure that your network is resilient to an attack, against even the most advanced threats
Reduces the number and severity of the vulnerabilities that are introduced into the network
Increases your organisation’s overall understanding of security, reducing the time and cost of remediating vulnerabilities
Stimulates a positive attitude and an understanding of the importance of security within the infrastructure team

Topics / Syllabus

Foundation

  • Hackers – Culture and Motives
  • A History of Hacking
  • The Rise of Cyber Warfare
  • Advanced Persistent Threats (APTs)
  • CNE and CNA
  • War Stories
  • The CIA Triad

Perimeter Security

  • The Traditional Attack Methodology
  • Reconnaissance – Information Gathering, Google Hacking
  • Target Identification – Network Mapping, Port Scanning, Banner Grabbing
  • Vulnerability Discovery (Manual & Automated)
  • Vulnerability Scanner Limitations
  • Common Vulnerabilities
    • Configuration, Patching and Passwords
  • Hacking JBoss
  • Hacking SMTP Servers
  • Hacking Web Apps
    • SQL Injection, Code Execution
  • Network Perimeter Hardening

Windows Security

  • The Modern Attack Methodology
  • APT Mind-Set and Capabilities
  • Spear-Phishing, Drive -By Download and Watering-Hole Attacks
  • Botnets
  • Exploiting Java, Adobe Flash and Other Browser Plugins
  • Exploiting Microsoft Word and Adobe Reader
  • Bypassing Antivirus
  • Maintaining Persistence and Rootkits
  • Windows Privilege Escalation
  • Key Logging and Screen Capture
  • Hacking Windows Domains (Server 2012)
  • Cracking Windows Password Hashes
  • Abusing Windows Access Tokens
  • Buffer Overflows
  • Data Exfiltration (CNE)
  • Windows Network Hardening

Network Security

  • DNS Cache Poisoning, Spoofing and DoS
  • Sniffing / Intercepting Network Traffic
  • Man-in-the-Middle (MitM) Attacks and ARP Cache Poisoning
  • Transport Encryption Flaws
    • SSL/TLS, etc.
  • Hacking Vulnerable Cisco Kit
  • VLAN Hopping
  • Bypassing Router Access Controls
  • Network Device Hardening

Unix Security

  • Unix File Permissions
  • Hacking Traditional Unix Services
    • XServer and R* Services, etc.
  • Hacking Common Unix Services
    • SSH, NFC, etc.
  • Hacking Popular Unix Platforms
    • RedHat, Solaris, etc.
  • Unix Privilege Escalation
  • Cracking Unix Password Hashes
  • Denial of Service
  • Network Sabotage (CNA)

Integrating Security

  • The Death of the Perimeter
  • Defending Against Client-Side Attacks
  • Workstation Hardening
  • Compliance Auditing
  • Preventing Lateral Movement
  • Windows Domain Hardening
  • Server Hardening
  • Secure Network Design Techniques
  • Jumping Air Gaps
  • An Introduction to Intrusion Detection
  • Signature vs Anomaly Based Detection

How is this course different?

The course is delivered by experienced security professionals, who perform
penetration tests and APT
attack simulations on a daily
basis.

 

We focus on teaching offensive security techniques, so that you can fully understand the capabilities of modern attackers and therefore how to defend against them.

This is a practical, exercise driven course. We’ve simulated a real network for you to attack, which allows us to teach you the core principles that you could usually gain only through real world experience.

We teach you how to implement robust security that really works, not just security 101 like configuring firewalls and setting strong passwords

The philosophy

By teaching you how to understand the attacker mindset, you’ll be better equipped to make informed decisions about the security of your own network.

Our previous generation of courses guided delegates through isolated lab exercises to demonstrate tools and techniques that could be used to exploit security weaknesses. However, hacking is not just about learning to drive the tools; it’s about identifying and collecting information and vulnerabilities across the target organisation and leveraging them in the context of that organisation.

That’s why we’ve revamped our courses and remodeled our labs with a complete corporate infrastructure to get you as close as possible to the experience of attacking and defending a real organisation.

Proactive Mobile Defence: Android

A two-day training course in Android application security and secure coding practices

PMD is an exercise-driven training course that uses detailed tutorials to guide you through all the steps necessary to exploit a real Android application, and in the process provide you with an understanding of the modern attacker’s mindset and capabilities. This course will cover Android hacking, from the basics of vulnerability hunting on the platform to advanced exploitation techniques. At its conclusion, we will have imparted the information necessary to develop secure and robust applications.

Who should attend?

This is a technical course aimed at Android developers; however, it is also suitable for those familiar with the platform and interested in mobile application security. PMD does not require any prior security knowledge in order to benefit fully from the course as the content covers all of the basics necessary to understand advanced concepts. A working knowledge of Android is a prerequisite and it is recommended that you are familiar with the syntax and structure of an Android application, basic internal and external communications as well as accessing resources from an application.

Course highlights

How to identify, exploit and remediate all the common mobile application security flaws, over and above the OWASP Mobile Top Ten
How to develop secure mobile applications that can withstand advanced attacks
How hackers attack mobile applications and Android devices
The most up to date and effective secure coding practices

Benefits to your organisation

Helps to ensure that your software is resilient to an attack against even the most advanced threats
Increases levels of trust and reputation when developing for external organisations
Increases understanding of security, reducing the time and cost of remediating vulnerabilities
Facilitates a positive attitude and an understanding of the importance of security within the development team

Topics / Syllabus

Foundation

  • Relevance of mobile applications in the modern world
  • Mobile attackers’ goals

Android Security Model

  • User separation
  • File permissions
  • Package structure

Analysing Android Applications

  • Structure of an APK
  • Application permissions
  • Protection levels
  • Decompiling and modifying an application
  • Code signing
  • Obfuscation

Android Application Components

  • Activities
  • Services
  • Broadcast receivers
  • Content providers
  • Intents
  • Native code

Storage and Logging

  • Android file system
  • Persistent storage
  • Data leakage
  • Backup Manager
  • File encryption
  • Logcat

Securing Communications

  • Clear text communications
  • Secure Socket Layer (SSL)
  • Certificate pinning
  • WebViews & JavaScript interfaces
  • Alternative communication mechanisms

Security in Depth

  • Root detection
  • Debug detection
  • Runtime manipulation

Integrating Security

  • Current state of the industry
  • Secure software development life cycle
  • Security requirements
  • Conducting a design review
  • Conducting a code review
  • Vulnerability scanning with drozer
  • Penetration testing
  • Vulnerability management

How is this course different?

The course is delivered by experienced security professionals who frequently perform mobile security assessments and are involved in mobile security research, the development of assessment tools and exploiting Android devices in competitions such as Mobile Pwn2Own.

We focus on teaching offensive security techniques so that you can fully understand the capabilities of modern attackers and therefore how to defend against them.

This is a practical, exercise driven course. We’ve developed a realistic, web-based mobile application with common flaws that allow us to show you how attackers would exploit these vulnerabilities in the real world.

We teach you how to practically introduce security in your development lifecycle by combining secure coding principles, design & source code reviews and vulnerability assessment tools, providing a maintainable and scalable approach to secure application development.