Penetration Testing Unveiled: Ethical Hacking & Pentesting
What you'll learn
- Learn the motives and mindset of an attacker
- Carry out the penetration testing methodology like a professional
- Explore methods to attack devices and servers
- Investigate the process of attacking the client side of the network
- Explore penetration testing
- Experience the process of identifying weaknesses and then attacking them
- Learn techniques to penetrate perimeter devices
- Explore the challenge of defeating enterprise defenses
- Practice a multitude of evasion tactics
- Perform penetration testing by using client side tactics
- Compete against a live progressive target range
- Enhance your professional security testing skills
- Develop a roadmap to becoming a professional penetration tester
- Anyone who wants to explore the topic can enroll
To effectively secure the networks of today requires the establishment of the hacker mindset. That is, you have to attack your own network to learn how to defend it. A penetration test, colloquially known as a pen test, pentest or ethical hacking, is an authorized simulated cyberattack on a computer system, performed to evaluate the security of the system.
In this course you learn how to conduct a pentest and what cybersecurity is all about. You will learn how to build and hone the skills to create that mindset of someone who has the sole purpose of attacking a system and/or network. Following the initial skill development, you will learn the process and methodology of professional penetration testing.
You will build the skills and apply techniques to penetrate devices, servers, and clients. Each day you will be presented a scope of work and have a number of targets to engage and attempt to “own.” The targets will be progressive in nature with the size of the attack surface being reduced as your skill sets increase.
By the time you leave the course, you will have performed a number of simulated professional penetration testing engagements as well as drafted a preliminary report of findings. The processes and techniques you will be exposed to have been used to train a number of global penetration testing teams. The system is proven and effective and can be put into place at once.
Your instructor, Kevin Cardwell, is a former senior U.S. Navy cybersecurity expert and the author of multiple books on cybersecurity.
More about this course and Starweaver
This course is led by a seasoned technology industry practitioner and executive, with many years of hands-on, in-the-trenches cybersecurity work. It has been designed, produced and delivered by Starweaver. Starweaver is one of the most highly regarded, well-established training providers in the world, providing training courses to many of the leading financial institutions and technology companies, including:
Ahli United Bank; Mashreqbank; American Express; ANZ Bank; ATT; Banco Votorantim; Bank of America; Bank of America Global Markets; Bank of America Private Bank; Barclay Bank; BMO Financial Group; BMO Financial Services; BNP Paribas; Boeing; Cigna; Citibank; Cognizant; Commerzbank; Credit Lyonnais/Calyon; Electrosonic; Farm Credit Administration; Fifth Third Bank; GENPACT; GEP Software; GLG Group; Hartford; HCL; HCL; Helaba; HSBC; HSBC Corporate Bank; HSBC India; HSBC Private Bank; Legal & General; National Australia Bank; Nomura Securities; PNC Financial Services Group; Quintiles; RAK Bank; Regions Bank; Royal Bank of Canada; Royal Bank of Scotland; Santander Corporate Bank; Tata Consultancy Services; Union Bank; ValueMomentum; Wells Fargo; Wells Fargo India Solutions; Westpac Corporate Bank; Wipro; and, many others.
Starweaver has and continues to deliver 1000s of live in-person and online education for organizational training programs for new hires and induction, as well as mid-career and senior-level immersion and leadership courses.
If you are looking for live streaming education or want to understand what courses might be best for you in technology or business, just google:
Starweaver journey builder starweaver[dot]com
Who this course is for:
Starweaver is an education company comprised of hundreds of leading instructors based around the world. Our instructors are seasoned practitioners who have worked in the fields their cover and relate the subjects covered to real work situations you will encounter in your job. Thus, the concepts and worked examples are real, the coverage is at the right level of depth, and the material is straightforward.
We deliver practical and hands-on courses focused in several key domains:
1. Data Science, including big data, machine learning, data visualization, data analytics...
2. Cloud Computing, including Amazon Web Services, Microsoft Azure, Google Cloud Platform / Firebase, IoT, Platform as a Service, Infrastructure as a Services, Software as a Service...
4. Agility & Stability, including a broad group of frameworks and techniques involving Agile, Scrum, Kanban, TOGAF, ITIL, cybersecurity...
5. Finance, Banking, Securities & Business, including a strong emphasis on banking, finance, securities, and insurance (e.g., derivatives, credit risk management, corporate finance, financial modelling...)...
Each course is designed to boost your knowledge and skills in the shortest possible time so that you can apply what you gain immediately in your job, or that next great job you are looking to start. We cover the full range of skills from the most introductory for students and new career starters, as well as advanced or complex subjects.
If you want to take a great leap forward in your career, we are here to make that happen. Let's get going!
Kevin Cardwell served as the leader of a 5 person DoD Red Team that achieved a 100% success rate at compromising systems and networks for six straight years. He has conducted over 500 security assessments across the globe. His expertise is in finding weaknesses and determining ways clients can mitigate or limit the impact of these weaknesses.
He spent 22 years in the U.S. Navy. He has worked as both software and systems engineer on a variety of Department of Defense projects and early on was chosen as a member of the project to bring Internet access to ships at sea. Following this highly successful project he was selected to head the team that built a Network Operations and Security Center (NOSC) that provided services to the commands ashore and ships at sea in the Norwegian Sea and Atlantic Ocean . He served as the Leading Chief of Information Security at the NOC for six years. While there he created a Strategy and Training plan for the development of an expert team that took personnel with little or no experience and built them into expert team members for manning of the NOSC.
He currently works as a free-lance consultant and provides consulting services for companies throughout the world, and as an advisor to numerous government entities within the US, Middle East, Africa, Asia and the UK . He is an Instructor, Technical Editor and Author for Computer Forensics, and Hacking courses. He is the author of the Center for Advanced Security and Training (CAST) Advanced Network Defense and Advanced Penetration Testing courses. He is technical editor of the Learning Tree Course Penetration Testing Techniques and Computer Forensics. He has presented at the Blackhat USA, Hacker Halted, ISSA and TakeDownCon conferences as well as many others. He has chaired the Cybercrime and Cyberdefense Summit in Oman and was Executive Chairman of the Oil and Gas Cyberdefense Summit. He is author of Building Virtual Pentesting Labs for Advanced Penetration Testing, Advanced Penetration Testing for Highly Secured Environments 2nd Edition and Backtrack: Testing Wireless Network Security. He holds a BS in Computer Science from National University in California and a MS in Software Engineering from the Southern Methodist University (SMU) in Texas. He developed the Strategy and Training Development Plan for the first Government CERT in the country of Oman that recently was rated as the top CERT for the Middle East. He serves as a professional training consultant to the Oman Information Technology Authority, and developed the team to man the first Commercial Security Operations Center in the country of Oman. He has worked extensively with banks and financial institutions throughout the Middle East, Europe and the UK in the planning of a robust and secure architecture and implementing requirements to meet compliance. He currently provides consultancy to Commercial companies, governments, federal agencies, major banks and financial institutions throughout the globe. Some of his recent consulting projects include the Muscat Securities Market (MSM), Petroleum Development Oman and the Central Bank of Oman. He designed and implemented the custom security baseline for the existing Oman Airport Management Company (OAMC) airports and the two new airports opening in 2016. He created custom security baselines for all of the Microsoft Operating Systems, Cisco devices as well as applications. Additionally, he provides training and consultancy to the Oman CERT and the SOC team in monitoring and incident identification of intrusions and incidents within the Gulf region. He holds the CEH, ECSA, LPT and a number of other certifications.
LEARNING IS ABOUT DETERMINATION
Persistence and determination beats the natural gifts and intelligence that you are born with. If there is only one take-away you have from reading about my experience and education over many years it is just that.
Luck is the second most valuable thing to possess. But, you never get lucky if you are not prepared. Your determination will get and keep you prepared, and then "getting lucky" will simply be appearing in the right place at the right time.
You don't need to be persistent or lucky all the time: just at the right time. That is, assuming you are prepared. Think of this like a surfboarder paddling out to the waves. Prepare and train so you are ready. Paddle out and put yourself in what you see at the "right" position. Watch the waves and currents. Use your training adjust your position. And, when the timing is right, paddle furiously, get on your board, apply what you've been trained to do and give it everything you've got!
MY COMMITMENT TO YOU
I am dedicated to designing, developing and delivering great content for you. I hope I have done that successfully here, and I believe you can see that in the 100s of 1000s of students signed up for my courses.
I have been creating live and recorded courses for many years, and have a great team of instructors who deliver excellent content. All of these instructors are former (or current) practitioners, so what you will learn is designed and created with real world applications in mind.
EDUCATION IS A PARTNERSHIP BETWEEN STUDENT & INSTRUCTOR
i believe education needs to be interactive and engaging. For you to really learn, you need to be involved, to ask questions, and to interact with me, your instructors, and your fellow students. Gone are the days of memorization. By getting involved you will challenge me (and yourself) so that you solidify your understanding and your ability to apply what you learn in your job and life.
Here are some suggestions that will help you out:
1. Commit to start your course on a specific date and time.
2. Commit to dedicate X hours per day to that course (ideally at the same time of day/night)
3. Review what you didn't understand after you have moved forward. That is, 'go back to go forward.'
4. Participate in our community. Ask questions. Push back on what is presented. Make us do more to help you learn. If we (or any other instructor) doesn't do that, then the courses simply become dusty content on your digital shelf. You will actually have learned very little.
My singular goal is to spread useful knowledge and skills to you. That is why I am here. Feel free to reach out to me in our classes and online.
Always be learning.