Penetration Testing Professional

• Latest reconnaissance tool
• Online tools
• Google advance search

• What is Scanning?
• Types and technique of scanning
• What are the Best Tool sets for Scanning- Network Scanning Tool
• What are the Best Tool sets for Scanning- Web Application Scanning Tool
• Nmap Scripting Engine (Using them in your Pentest)
• Nmap : Version Scanning/ OS Scanning/ Services Scanning/
• Finding Vulnerability in Network : GFI / Nessus/acunitix
• Network monitoring using wireshark, cain & abel and ettercap

• Fake mail analysis
• Impersonation using phishing
• Analysis of phishing

• Generation your own wordlist using crunch
• Attacking Passwords using word-list and Brute force
• Retrieving and Manipulating Hashes from Windows, Linux, and Other Systems
• Automated Password Guessing with John the ripper
• Using Rainbow Tables to Maximum Effectiveness

Physical threats of getting unauthorized access to unsecured system

• Password cracking
• Backdoor creation
• Authentication bypass

Introduction to metasploit framework

Hands on for cracking vulnerable system using metasploit

Using Nc as a backdoor

Windows Hidden Commands

Generating malicious payload and antivirus evading techniques for getting remote access of mobile and desktop

• Tools for WPS cracking
• Manual methodology for cracking WPA/WPA2
• Cracking with evil twin
• Introduction to beef-xxs framework

• Finding and Exploiting Cross-Site Scripting
• Cross-Site Request Forgery
• SQL Injection
• Leveraging SQL Injection to Perform Command Injection
• Maximizing Effectiveness of Command Injection Testing
• Web Application Exploitation Using w3af/Acunetix/Burpsuite/Proxy application
• How to use Burp Suite?
• Capturing and replaying request and responses
• Various Modules in Burp like /sequencer/repeater/Dir scanning/splitting response
• Source Code Disclosure attack
• Hidden form Field Exploitation Attacks