$2,250 – $2,550

2 Day - Adaptive Penetration Testing by Coalfire Systems

Event Information

Share this event

Date and Time

Location

Location

Rhode Island College

600 Mount Pleasant Avenue

Providence, RI 02908

View Map

Refund Policy

Refund Policy

Refunds up to 30 days before event

Eventbrite's fee is nonrefundable.

Event description
Two day training to create devastating attack paths to gain access to the target's “crown jewels”

About this Event

Class Description: Challenge yourself in attacking a fully simulated enterprise environment, complete with domain services, security controls, misconfigurations, and vulnerable applications. You will learn to effectively create devastating attack paths to gain access to the target environment’s “crown jewels” and demonstrate the impacts of a breach. This fast-paced course, led by highly skilled, experienced penetration testers, will teach you how to leverage penetration testing toolsets utilized by our team during hundreds of engagements. You will learn how to conduct effective, in-depth penetration tests, focused on demonstrating risks posed by modern attackers.

In this course you will:

  • Perform a comprehensive, operationally focused penetration test against a modern Windows network
  • Learn and execute the latest attack techniques
  • Use open-source penetration tools to efficiently assess internal networks
  • Apply practical skills following numerous exercises; including identifying vulnerable services, exploiting end-users and host systems, and pivoting throughout a modern enterprise environment
  • Participate in team-based capture the flag events, simulating successful attack paths

Topics covered:

Day 1

  • PTES Methodology
  • Information Gathering with Nmap
  • Web Discovery
  • Vulnerability Identification with NSE
  • Windows from a Pentester’s Perspective
  • Exploitation

Day 2

  • Password Cracking
  • Situational Awareness
  • Privilege Escalation
  • Capture the Flag

Click here to see our other classes in our June training event.

NOTES:

  • Light breakfast and lunch are included.
  • Tickets for the Layer8 Conference are NOT included with training. Purchase conference ticket separately here.
  • Eventbrite fees are additional and will be calculated at checkout.

Audience: Participants with 2+ years of Windows (command-line), Linux, and/or network administration experience, who are interested in learning core penetration testing tradecraft. This class is 70% hands-on and requires prior experience with Windows, Linux, and network administration. Students who do not have Windows or Linux command-line proficiency or students who are not ready for a fast-paced class will not be a good fit.

To get the most from this course, participants should have the following experience:

  • At least 2+ years with Windows (command-line), Linux, and/or network administration
  • Networking and TCP/IP fundamentals
  • Experience with at least two of basic Batch, PowerShell, Bash, or Python
  • Strong understanding of how HTTP works
  • Experience with web development technologies
  • Basic understanding of OWASP Top 10
  • Experience with VirtualBox/VMWare-Workstation/Fusion
  • Willingness to learn hands-on in a fast-paced environment

Requirements:

Students will be provided with a custom version of the latest Kali Linux image to perform exercises. They will need their own laptop (with administrative access), with a wireless network adapter, 8GB of RAM. VMWare Player is not supported.

Trainer Info:

Qasim “Q” Ijaz is Director of Penetration Testing at Coalfire LABS, who specializes in healthcare security and penetration testing. He has conducted hundreds of penetration tests in small to large environments with a focus on networks and web applications testing. His areas of interest include healthcare security, cybersecurity policy, Windows penetration testing, Python, and the “dry” business side of hacking. Qasim is a penetration test lead during the day and a teacher in the after-hours. He has delivered training at conferences as well as in college classrooms.

Twitter: https://twitter.com/CoalfireSys

LinkedIn: https://www.linkedin.com/in/qasimijaz/

John Martinez (@marhtini) is a Senior Manager at Coalfire Labs specializing in software and application security, social engineering, and penetration testing. John has a passion for software development and programming languages and has worked with software engineering and security teams across dozens of organizations in the public sector, financial services, life sciences, and other industries. He enjoys exploiting and securing software stacks, software development life cycles, and teaching developers how to seamlessly build out secure code while mitigating and remediating flaws at (and in) the source. John’s research and project interests include machine learning and artificial intelligence, software development and engineering, and retro PC gaming. INTP / DISC C / Chaotic Good.

Twitter: https://twitter.com/marhtini

Derek Yamron is a Senior Consultant at Coalfire Labs Federal, specializing in network and web application penetration testing for both federal and commercial clients. He has completed numerous red team engagements for clients across that spectrum and brings that passion to teaching others in the field. His main interests include AD security, infrastructure, and social engineering.

LinkedIn: https://www.linkedin.com/in/derek-yamron-41159a26/

Share with friends

Date and Time

Location

Rhode Island College

600 Mount Pleasant Avenue

Providence, RI 02908

View Map

Refund Policy

Refunds up to 30 days before event

Eventbrite's fee is nonrefundable.

Save This Event

Event Saved