EC-Council News : Advanced Security Training First Look !
Information technology continues to rapidly evolve and as the dependence on Internet technology increases, so are the risks to information systems. As such, information security professionals are required to stay up-to-date on the latest security technologies, threats and remediation strategies.
EC-Council's Center of Advanced Security Training (CAST) was created to address the need for highly technical and advanced security training for information security professionals.
CAST First Look Training Series
As part of the launch of CAST, we are pleased to present a First Look training series that will give an insight into the following programs, where we invite the authors of the respective courses to conduct a "LIVE" online training on a selected module from the program.
Advanced Penetration Testing (CAST 611)
A highly technical and intensive course that focuses attacking and defending highly secured environments. These environments simulate those found in government agencies and large corporations. In APT, you will be learning how to attack new operating systems such as Windows Vista, Windows 7, Windows Server 2008, and the latest Linux servers, all patched, and hardened. Both Network and Host-based Intrusion Detection/Preventions systems (IDS/IPS) will be in place as well. Read more.
Mar 24, 2011 - 9:00 A.M - 10:30 A.M (EDT)
Instructor: Joe McCray
Topic: SQL Injection To A Command Shell
In this training, you will learn how to probe a website to determine if it is vulnerable to SQL injection, go on all the way to actually getting a command shell on the host. This will be achieved using both SQLiX and SQLNinja.
Digital Mobile Forensics Deep Dive (CAST 612)
This advanced training program will be essential for anyone in the IT forensics spectrum, as well as for those who are responsible for designing, securing, implementing and supporting these new age smart mobile devices within corporations. Whether are you a first responder or even an experienced Digital Forensics investigator, this training will equip you with the advanced skills and knowledge required to preserve or extract digital evidences from various mobile devices, and trace origins of attacks. Read more.
Mar 31, 2011 - 9:00 A.M - 10:30 A.M (EDT)
Instructor: Wayne Burke
Topic: Mobile Software design And The Typical Boot Process For Smart Devices
This module explains how mobiles boot, and use architectural design components. It also describes how data is stored and accessed for the IOS system.
Advanced Application Security (CAST 613)
This highly technical and intensive course will center on thwarting off attackers by understanding how to defensively writing your code. A participant will learn the new techniques for case hardening your application from within. We will actually be attacking applications from the web, off the shelf binary applications as well as popular runtimes such as .net, Java and even adobe AIR (In a legal and Ethical Way), learning where mistakes were made and ensuring our own house is in order and we don't have these same faults internally. Read more.
Apr 7, 2011 - 9:00 A.M - 10:30 A.M (EDT)
Instructor: Tim Pierson
Topic: Programming to defend against Cryptographic Errors
In this training, you will understand how SSL can help or hurt a programmer. Understand what is certification revocation list, and also learn about Compelled Certificate Injection can be circumvented.
For more information about CAST, please visit: https://www.eccouncil.org/CAST
Director - CAST