Hacking 101

During this course attendees will learn basic principles as well as common and more advanced tricks to break modern security mechanisms. The subjects of this workshop cover network security, low level software exploitation, reverse engineering, web application mocking and more.

Attendees will learn to think and act with the mindset of an attacker. Understanding their routine, tools and procedures will enable you to gain a novel outside perspective onto your current setups and deployments. With this knowledge, you will find yourself capable of locating and addressing the most pressing threats faster and more efficiently.

• Enumeration: Initial information acquisition
• Vulnerability Scanning: Introduction to different categories of weak points
• Buffer Overflows: Functionality of Buffer Overflows
• Exploiting with Metasploit: Handling the Exploit Framework
• Hacking Applications: Comprehension of weak points on the level of application
• Hacking Networks part 1 (Cisco hardware): Attacks on Layer 2 (Man-in-the-Middle situations)
• Hacking Networks Part 2 (regarding Cisco hardware)
• Attacks on Layer 3: Attacks on network devices as well as on infrastructure
• WLAN Hacking: Avoiding basic protective mechanisms, evaluation of advanced mechanisms

All modules entail concluding hands-on exercises, in which participants can exercise their theoretical knowledge practically.

• IT Security officers
• Prospective penetration testers
• New members of CERTs / Red teams

• Own computer (preferably laptop), USB-/CD-bootable, administrative rights inclusive installed VMWare Workstation/ VMWare Player/Virtual Box.
• Basic programming knowledge in at least one coding language
• Practical experience with Shells (Command/PowerShell in Windows, Bash in Linux)
• Basic TCP/IP knowledge (for example ARP, ICMP, SNMP)
• Basic network infrastructure knowledge (Switching: VLAN, Trunk Port, routing: statistical, dynamic routing)

Practical assessment