On This Page

Hands-On Hacking Fundamentals

SensePost | March 20 - 21



Overview

Hands-On Hacking fundamentals is the first in a series of courses offered by SensePost, we are hackers who have been pwning, presenting talks, researching and giving training for over 18 years across the world. We kick of the course by explaining why vulnerabilities exist, how one would discover them and how to proceed with epic pwnage. This gets you into the mindset of a hacker and by exploiting real-world vulnerabilities yourselves, you start to see how attackers operate. This course is hands-on with practicals that will have you extracting credentials from memory, popping shells, taking over a database servers and cracking WiFi networks. All of the exercises are based on real-world infrastructure, so you will be targeting and exploit systems found in modern networks and corporations around the world.

COURSE TOPICS:

  • Information security fundamentals
  • Working with a command-line interface (Linux and Windows)
  • Command-line FU (Linux and Windows)
  • Computer networking fundamentals
  • Discovering vulnerabilities
  • Offensive tools and techniques, including Kali Linux Exploiting vulnerabilities in the network and application layer Exploiting vulnerabilities in web applications and wireless networks
  • This course is ideal for anyone starting out in their journey into the exciting world of penetration testing and hacking who want to obtain a solid practical understanding of core concepts including; infrastructure hacking, web application pwnage and WiFi haxory.

Online Training Environment:

  • We moved our entire lab environment to AWS, which means that each student signing up to our courses gets access to their own dedicated training environment, allowing for as much haxory and experimentation.
  • We've also strive to make the theory as practical as possible and break away from death by slides, we want students to walk away with a strong understanding of the topics and demonstrative practical experience.

Who Should Take this Course

This course is ideal for anyone starting out in their journey into the exciting world of penetration testing and hacking who want to obtain a solid practical understanding of core concepts including; infrastructure hacking, web application pwnage and WiFi haxory . If you work in an environment where you "need" to understand what attackers are doing and how attacks work, this is the course for you.

Student Requirements

Students need to ensure they are comfortable with networking and operating system fundamentals. We will supply a series of pre-training information to you so you can study beforehand and be prepared when arriving at Blackhat.

No hacking experience is required for this course; this is a beginner's course. Enthusiasm is a must though!

What Students Should Bring

Students should bring a laptop, that's it! Through our online training portal you will be able to connect to your own personal Kali in the cloud machine, giving you access to the entire virtual lab environment from your browser.

What Students Will Be Provided With

Our training portal will be made available to all students before they attend Black Hat. This portal allows you to register an account and gain access to the slides used and any prerequisite information we feel would help you get the best out of this course. All content for the course, including tools required and instructions to connect to your dedicated lab environment during training will be made available via the online training portal.

Access to this portal will continue after the course, allowing you to revisit slides and tools long after the training has concluded.

Trainers

Samuel Hunter is a senior consultant and training manager at SensePost. Over the years he has hacked a plethora of diverse technologies and developed several training courses to share his experience with students. He has presented at conferences around the world and trained everyone from IT professionals to Military in the art of red teaming and cyber warfare.

Dane Goodwin is a senior consultant at SensePost with a proven track record of pwning all the things. He has contributed to the InfoSec community over the years by delivering training and speaking at conferences around the world, developing hacking tools including a BlackHat Arsenal release and contributed to the most recent edition of "Network Security Assessments" by Chris McNab.