EC-Council CAST® — Advanced Penetration Testing®

This course has been replaced by the EC-Council Certified Penetration Testing Professional® (CPENT®). Access the course page.

The EC-Council Centre of Advanced Security Training has arrived at Firebrand Training. This three-day Advanced Penetration Testing course is intensive, and focuses on attacking and defending highly-secured environments. You will learn what it takes to hack into some of the most secure networks and applications in the world.

Warning: This is not a beginner’s course. You'll spend 80% of the course in hands-on hacking labs, so you're expected to know how to hack many platforms and architectures. The course is right for you if you're a: security consultant, penetration tester, firewall administrator, system architect or system administrator.

You will learn how to:

• Attack modern operating systems, such as Windows Vista, Windows 7, Windows Server 2008 and Linux servers
• Identify system vulnerabilities that can be taken advantage-of by a malicious intruder
• Identify vulnerabilities that exist in an unpatched operating system
• Breach the security of a network or system
• Test intrusion detection and response capabilities
• Analyse and address your system’s weaknesses, through penetration testing
• Break into a highly-secured organisation from the 'outside'
• Move around a network without being detected by IDS/IPS
• Avoid common security features, such as: locked down desktops, GPOs, IDSs/IPSs/WAFs
• How to 'pentest' high security environments, such as government agencies and financial institutions.

Note: this course doesn't include an exam, but you'll become Advanced Penetration Testing certified.

9x Accredited Training Centre of the Year

Firebrand Training has again won the EC-Council Accredited Training Centre of the Year Award, from a Training Partner network that has more than 700 training centres across 107 countries. This extends a record-breaking run of successive awards to nine years.

Jay Bavisi, President of EC-Council said: “The annual EC-Council Awards highlights the commitment and achievements of our global partners and trainers that have contributed to the information security community.”

Module 1: Advanced Scanning

• Bypassing Network Filtering
• Stealth Scanning
• Bypassing IDS/IPS

Module 2: Attacking From the Web

• XSS to command-shell
• SQL Injection to command-shell
• MS-SQL
• MySQL
• Oracle
• File Handling to command-shell
• File Upload to command-shell
• RFI to command-shell
• LFI to command-shell

Module 3: Client-Side Pentesting

• Bypassing Antivirus
• Packing Binaries
• Modifying Binaries with OllyDBG
• Writing Custom Trojans
• Email Collection
• Pivoting into the LAN

Module 4: Attacking From the LAN

• USB Hacksaw/USB Switchblade
• Bypassing Port Security
• Bypassing NAC Solutions

Module 5: Breaking out of Restricted Environments

• Citrix in Kiosk Mode
• Restricted Desktops
• Group Policy Object Restricted Applications

Module 6: Bypassing Network-Based IDS/IPS

• Enumerating the network
• Defeating IDS/IPS Signatures

Module 7: Privilege Escalation

• Privilege Escalation in Windows XP
• Privilege Escalation in Windows Vista

Module 8: Post-Exploitation

• Remote Command Execution
• Automating Tasks
• Enabling RDP/VNC
• Persistence

Official EC-Council Courseware

• CAST 611 - Advanced Penetration Testing

Warning: This is not a beginner’s course. You'll spend 80% of the course in hands-on hacking labs, so you're expected to know how to hack many platforms and architectures. The course has been created for: security consultants, penetration testers, firewall administrators, system architects and system administrators.

You must be familiar with:

• IT Security best practices, TCP/IP and common web technologies:
  • Windows administration for servers and workstations
  • Linux/*NIX system administration
  • Intermediate command line proficiency on both Windows and *NIX systems
• The following web technologies and languages:
  • HTTP
  • HTML
  • Javascript
  • ASP
  • PHP
  • SQL
• Metasploit and VMware

Seven reasons why you should sit your course with Firebrand Training

• Two training options. Choose between residential classroom-based and online courses
• You'll be certified fast. With us, you’ll be trained in record time
• Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
• Pass the first time or train again for free. This is our guarantee. We’re confident you’ll pass your course the first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
• You’ll learn more. A day with a traditional training provider generally runs from 9am–5pm, with a nice long break for lunch. With Firebrand, you’ll get at least 12 hours/day of quality learning time with your instructor
• You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
• You’ll be studying with the best. We’ve been named in the Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 135,000 professionals

*For residential training only. Doesn't apply for online courses
**Some exceptions apply. Please refer to the Exam Track or speak with our experts

Are you ready for the course? 

Get access to free practice tests for your course  Free Practice Test