• Security & Identity
• Authentication
• Computer Emergencies
  • Reports & Downloads
  • Training
    • Vulnerability Exploitation & Countermeasures
    • Web Application Security
    • IT Forensics
  • Internet Background Noise
  • Contact
• Certificates
• Spam protection

Vulnerability Exploitation & Countermeasures

This course is designed for companies and individuals who are professionally involved in assessing at a technical level the risk posed by vulnerabilities. We show you how drive-by-attacks work and how attackers exploit vulnerabilities in the client software. You learn, among other things, about countermeasures are implemented in the MS Windows operating systems and the precise way in which they work.

Target group
IT security officers, vulnerability managers, penetration testers, ethical hackers, Windows administrators with responsibility for security, members of security teams (CERT, CSIRT).

Requirements
The course is technically demanding and comprises a large number of hands-on exercises. You should have a good knowledge of the MS Windows OSes (XP, Windows Vista, Windows 7). Each participant develops a number of exploits for a genuine vulnerability in Windows. To do this, they will make use of a debugger and a hexeditor among other things. You should have knowledge of working with these tools or be ready to acquire this during the course. A basic knowledge of Assembler and Java Script is similarly an advantage.

Course objectives
Participants:

• learn and understand how drive-by-attacks work.
• know how attackers exploit vulnerabilities on the client side in Windows.
• are familiar with the countermeasures implemented on the MS Windows system and know how they work to provide protection against attacks.
• understand how attackers can circumvent these countermeasures.
• appreciate how skilfully attackers operate and understand why current MS Windows systems minimise the security risk.
• can better assess whether and how their own infrastructure needs to be protected in the case of acute security incidents.

Key concepts
Drive-by-Infection, Drive-by-Downloads, Buffer Overflow, DEP, ASLR, Heapspraying, Shellcode, Debugger, Hex-Editor, Metasploit, Exploit, Payload, Register, Assembler, IA-32 Architecture, Memory layouts, Stack, Heap, DLL, JavaScript.

Cost
CHF 2250 including VAT and course material. We will provide laptops for the hands-on exercises. Catering is included in the price of the course. After completing the course, you will be issued with a confirmation of your participation.

Date of next course:
Currently at the planning stage.

Contact
Have you any questions? Would you like to hold this course on your company premises? Contact us by e-mail at training@switch.ch or by phone on +41 44 268 1540.

Register now and choose a date