Certified Ethical Hacker Curriculum Outline
Ethical Hacking and the Need for Penetration Testing
Overview/DescriptionEthical hacking - this almost seems like a contradiction of words, but it isn't; it is a skill set that is increasingly in demand from year to year. This course examines the differences between hacking and ethical hacking, the stages and phases of ethical hacking, the laws that govern hacking and ethical hacking, and the penetration testing methodology that is used to perform ethical hacking. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)2.0
Lesson Objectives Ethical Hacking and the Need for Penetration Testing
Recognize the basic principles of information system security Associate vulnerabilities with the hacking technologies that are used to exploit them Recognize how ethical hackers can protect themselves when performing ethical hacking Recognize the stages of ethical hacking Identify common methods ethical hackers can use to test information system security Analyze attacks made by a malicious hacker, for a given scenario Recommend a strategy ethical hackers can use to protect themselves, for a given scenario Recognize how Title 18 of the U.S. Code applies to ethical hackers and the legality of their actions Recognize situations where privacy laws or principles are breached Recognize the five hacking classes of attack Identify automated vulnerability scanning tools Calculate the annual loss expectancy of an organization due to hacking, for a given scenario Determine the applicable law where a computer crime has been committed Course Number:
sp_etih_a01_it_enus
Back to ListFootprinting, Scanning, and Enumeration
Overview/DescriptionGathering information about a company, its network, and the servers, services, and ports that it uses and has open is a very important part of preparing for an attack on a network; but it is also tremendously important for an ethical hacker to take the same steps and to find the same weaknesses. This course will examine the steps taken to gather information, find a network range, network scanning and tools, enumeration techniques, and the countermeasures used against all of these. This course also assists students who are preparing for the EC Council’s Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)2.5
Lesson Objectives Footprinting, Scanning, and Enumeration
Recognize how to use open source searching to gather information Recognize the role of RIR Recognize the purpose of NSlookup Sequence the TTL process Recognize how traceroute is used in footprinting Recognize how e-mail tracking works Identify port scanning issues Recognize how the TCP three-way handshake works Recognize the types of scans you can perform with Nmap Differentiate between war driving and war dialing Differentiate between active and passive fingerprinting Recommend a reconnaissance and scanning strategy for ethical hacking Recognize the difference between kernel mode and user mode in Windows NT systems Recognize how certain Windows elements affect security Recognize how to limit NetBIOS null session vulnerabilities Recognize how to counter SNMP vulnerabilities Recognize how to limit DNS zone transfer vulnerabilities Recognize how to use Active Directory enumeration Recommend a strategy for enumeration and for countering enumeration Course Number:
sp_etih_a02_it_enus
Back to ListSystem Hacking and Malicious Content
Overview/DescriptionHacking systems and planting and or sending malicious content are the two most performed actions by hackers. As an ethical hacker, it will be your responsibility to test systems against hacking and to be prepared for the different types of malicious content that hackers will try to get into your network environment. This course examines password cracking methodologies and tools, privilege escalation, keyloggers, rootkits, steganography, trojans and backdoor types and tools, and different types of viruses and worms and their countermeasures. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)2.0
Lesson Objectives System Hacking and Malicious Content
Identify the tools used for password cracking and privilege escalation Recognize examples of strong passwords Differentiate between the types of password attacks Categorize passwords as weak or strong and recognize the types of attacks they're vulnerable to Identify the characteristics of hardware and software keyloggers Recognize how to counter rootkits Sequence the steps to create an alternate data stream in Windows Recognize the tools used for steganography and erasing evidence Recognize how trojans work Recognize the hacking tools used for covert communication, port redirection, and wrapping Recognize how e-mail can be used as a trojan attack vector Recognize the countermeasures for trojans Categorize viruses according to their infection techniques Recognize the countermeasures for viruses Recognize key concepts about viruses and trojans Course Number:
sp_etih_a03_it_enus
Back to ListSocial Engineering and Sniffing
Overview/DescriptionEmployees are often a major security concern in big business, as social engineering is one of the most used methods to gain information and thus allow corporate networks to be hacked. Sniffing of corporate networks is also a method that hackers use to gain access to corporate resources. This course examines different types of social engineering and identity theft, along with sniffing techniques such as flooding and spoofing, the tools used both to perform and prevent them, and countermeasures that can be taken. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)1.5
Lesson Objectives Social Engineering and Sniffing
Categorize examples of human-based social engineering Recognize methods for computer-based social engineering Identify examples of insider attacks Identify types of phishing attacks Identify the countermeasures for social engineering Analyze social engineering scenarios and recommend countermeasures Recognize how ARP spoofing works Recognize how DNS spoofing works Recognize how to counter sniffing Recognize the techniques used for ARP, MAC, and DNS sniffing Course Number:
sp_etih_a04_it_enus
Back to ListDeterring Electronic Intrusions
Overview/DescriptionSecuring electronic access to an environment forms the backbone of IT security professionals' jobs. IT security specialists deal with methods to secure network access, both internally and externally. This course examines firewall, intrusion detection system (IDS), and honeypot detection techniques, as well as evasion techniques that can be used by an ethical hacker to determine whether a network is secure from hackers. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)1.0
Lesson Objectives Deterring Electronic Intrusions
Recognize the firewall architectures Identify ways to breach and bypass firewalls Identify ways in which to evade IDS Recognize the main IDS detection methods Recognize how honeypots can be used by IT security professionals Recognize key concepts about electronic intrusion detection and evasion methods Course Number:
sp_etih_a05_it_enus
Back to ListDenial of Service and Session Hacking
Overview/DescriptionDenial of Service and Distributed Denial of Service attacks are common methods used by hackers to disrupt service to networks and to corporate environments. Session hijacking is used by hackers as a method to take over sessions after a user has successfully authenticated with a server. This course examines how DoS and DDoS attacks, along with Bots and Botnets, disrupt corporate environments. And it examines session hijacking and the methods that are used to both accomplish it, and to prevent it. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)1.5
Lesson Objectives Denial of Service and Session Hacking
Categorize some typical DoS attacks Recognize how DDoS works Recognize how to use defense in depth to prevent DoS Sequence the stages of a botnet attack Recognize how to defend computers from bots Recognize how DoS and DDoS attacks work and how to counter them Identify how session hijackers can close a client's session with a server and impersonate the client Recognize the functions of the TCP/IP layers Sequence the session hijacking steps Recognize how to defend against session hijacking Recognize how session hijacking works and how it can be countered Course Number:
sp_etih_a06_it_enus
Back to ListLinux Hacking
Overview/DescriptionThe various distributions of Linux are becoming more and more popular. This course examines the history of Linux, the different flavors that are available, and the file structures used. This course also examines the methods that can be used to secure Linux systems, along with the tools that can be used both to test the security, and to penetrate it. Finally, this course examines the countermeasures that can be put in place to maintain the security of Linux systems. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills.
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)1.0
Lesson Objectives Linux Hacking
Sequence the steps to compile a Linux kernel Assign specific permissions to a file or directory in Linux Recognize the purposes of Linux hacking tools Recognize the purpose of Linux security tools Recognize where information is stored in Linux and basic Linux commands Recognize the commands for scanning and remote control for certain Linux hacking tools Recognize how to assign permissions to users, groups, and others in Linux Course Number:
sp_etih_a07_it_enus
Back to ListCryptography
Overview/DescriptionCryptography has been used for thousands of years to secure messages, identities, vital information, and communications mechanisms. This course analyzes the invention of cryptography, the use of algorithms and ciphers, and the secure mechanisms used for message authentication and certificate authority. And the course examines electronic security measures and the hacking tools that can be used to break encryption. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)2.0
Lesson Objectives Cryptography
Define key cryptographic terms Distinguish between the most common types of symmetric key algorithms Select the appropriate message format for a scenario Distinguish between types of asymmetric algorithms Determine the appropriate cryptography implementation for a given scenario Distinguish between hash algorithms Recognize what's involved in different types of attack against hash algorithms Recognize the guidelines for key management and distribution Identify the characteristics of digital signatures Recognize how to implement best practices for e-mail encryption Distinguish between the security mechanisms for electronic transactions and e-mail Differentiate between various types of cipher Recognize the features of common hacking tools used in cryptanalysis Apply e-mail encryption guidelines and determine the appropriate hash algorithm for a given scenario Course Number:
sp_etih_a08_it_enus
Back to ListInternet-based and Database-based Attacks
Overview/DescriptionInternet-based attacks and the mechanisms used to both accomplish and to defend against them is a staple of both hackers and ethical hackers today. This course examines how to hack web servers, and conversely, how to defend against those attacks, how to examine web applications for vulnerabilities, and how to fix them, how web-based password cracking is done, and how it is defended against. This course examines SQL injection attacks and defense mechanisms, along with buffer overflows and the countermeasures that can be put in place to deal with them. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)2.0
Lesson Objectives Internet-based and Database-based Attacks
Recognize how to use Telnet for banner grabbing Identify the countermeasures you can take against web server attacks Recognize the IIS server attack types Identify web application vulnerabilities Recognize the countermeasures to web server application attacks Recognize common methods of authentication Recognize countermeasures to password-cracking attacks Recommend countermeasures to Internet-based attacks Identify examples of SQL injection attacks Recognize the steps an attacker may take when preparing to perform a SQL injection attack Identify SQL injection countermeasures Recognize various types of SQL injection attacks Recognize how buffer overflow attacks occur Recognize how to defend off-the-shelf products against buffer overflow attacks Recognize how to perform and defend against SQL injections and buffer overflows Course Number:
sp_etih_a09_it_enus
Back to ListWireless Attacks and Countermeasures
Overview/DescriptionWireless networking is becoming more and more prevalent in corporate networks. The methods used to set up and secure these networks are often tested by hackers to see if they can penetrate and gain information from them. This course examines wireless systems and 802.11x WLAN operational modes. This course discusses WEP and other wireless security protocols, along with WLAN threats, wireless hacking tools, and the security countermeasures that can be used to counter these threats. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)2.0
Lesson Objectives Wireless Attacks and Countermeasures
Recognize features of the primary modes used for cellular communication Recognize features of the RF technologies for 2.4 Ghz wireless LANs Identify the components of Bluetooth security algorithms Sequence the steps of the association process Recognize how wireless systems work Recognize features of the WEP authentication methods Identify the vulnerabilities of WEP Recognize how wireless networks are vulnerable to DoS attacks Recognize how the broadcast bubble makes wireless networks vulnerable to eavesdropping Recognize common wireless hacking tools Recognize how to increase the security of wireless LANs Recognize how wireless security protocols work and how to defend a wireless network Course Number:
sp_etih_a10_it_enus
Back to ListPhysical Security
Overview/DescriptionPhysical security is the foundation for all networking security mechanisms. Unless a network is physically secure from threats, all other types of security can be negated. This course focuses on the need for, and implementation of physical security and how it is used as an all encompassing backbone for enterprise security. This course also assists students who are preparing for the EC Council's Ethical Hacking and Countermeasures (CEHv6) exam 312-50.
Target AudienceExisting or in-training IT security professionals seeking detailed security penetration testing skills.
PrerequisitesA technical background with a solid understanding of networks and networking concepts, such as TCP/IP, IP Routing, and LAN Switching, as well as Windows and/or UNIX/LINUX operating systems; a general familiarity with the principles and usage of command-line, coding, and GUI-based technologies for manipulating IT operating systems
Expected Duration (hours)2.0
Lesson Objectives Physical Security
Recognize the major sources of physical loss for an organization Recognize the key objectives of a layered defense solution Recognize perimeter security mechanisms Recognize how CPTED strategies are used in loss and crime prevention Identify the appropriate physical security mechanisms to implement in a given scenario Identify the appropriate controls for securing the inside of a building or facility Identify the appropriate fire-protection technique for a scenario Identify the most appropriate intrusion detection technology for a scenario Determine the appropriate intrusion detection system to implement, given a specific scenario Recognize best practices for securing the data center or server room, for protecting portable equipment, and for ensuring protection at object level Identify the appropriate strategy for securing compartmentalized areas in a given scenario Course Number:
sp_etih_a11_it_enus
Back to List
CEHs must be certified through the International Council of E-Commerce Consultants (EC-Council), a member-based organization
which has certified 22,000 members globally in various e-business and information security skills. The EC-Council certifications
are recognized worldwide and receive endorsements from top government agencies, such as the U.S. Federal Government, National
Security Agency (NSA) and more.
Becoming a Certified Ethical Hacker is certainly a lucrative career move. CEHs can make anywhere from $15,000 to $45,000
per project!
CBT Direct boasts the most beneficial online certification training on the market. With online training, you have the flexibility
to study on your schedule, and with the speed and reliability of the internet, CBT Direct’s Certified Ethical Hacker (CEH)
online training course is accessible anywhere you have an internet connection. Convenience finally costs less with CBT Direct –
the most affordable online training solution today.
The unique design of CBT Direct’s Certified Ethical Hacker (CEH) certification course incorporates a proven four-step
learning process: presentation, demonstration, guidance and independent practice. This four-step proven learning model for CBT
Direct’s Certified Ethical Hacker (CEH) training course ensures the greatest level of retention to prepare you for your
Certified Ethical Hacker (CEH) certification exam.
This training would be beneficial for individuals looking for IT job positions such as: Network Administrator,
Site Administrator, Security Officer, Auditor and any Security Professional concerned about a network infrastructure’s integrity.
(*Note: The 312-50 exam is essentially the same as the ECO-350 exam. The 312-50 is given only to students who have
completed the course at an EC Council training facility. The ECO-350 is for students who have taken alternative training, or
no training at all. Only the 312-50 test can also be taken at a Prometric Testing Center.)
For anyone who has not taken a course directly from an EC Council training facility, that person must have 2
years of security related work experience. You must also request a letter from your immediate supervisor / department
head, on company letterhead detailing your work experience. If this is not possible, a detailed letter must be submitted
along with the application, available for download on the EC Council website, when it is sent in for pre-approval
for taking the test.
As politicians, vendors and CISOs debate over the best way to protect our data, companies have become
more and more vulnerable to security threats. Smart companies realize that the best way to catch a hacker is to act like one.
A Certified Ethical Hacker (CEH) is needed to help an organization take preemptive precautions against their own malicious
attacks by legally and ethically attacking their system themselves.
