Certified advanced Penetration Tester Course Overview

Certified advanced Penetration Tester training course help to learn an intense approach to the world of exploitation and PenTesting set in the highest security environments around. In this training class, you will learn how to challenge traditional practices and use alternate methods and software in penetration testing. You will also learn how to attack from the web using cross-site scripting, SQL injection attacks, remote and local file inclusion and how to understand the defender of the network you're breaking into to.

Target Audience

  • Penetration Testers
  • Network Administrators
  • IT Auditors
  • Information Security Engineers
  • Security Consultants
  • 1. Do you have limited Window for training?
  • 2. Can you only spend 4-hours per day?
  • 3. Do you want to start training immediately?
  • If your answer is yes to any one of the above, you need 1-on-1- Training
The 1-on-1 Advantage
Flexible Dates
4-Hour Sessions
  • View video
  • The course will be free if we are not able to start within 7 days of booking.
  • Only applicable for courses on which this logo appears.

Your will learn:

Module 1: Setting up the Lab
  • Installing and configuring VMware workstation
  • Installing Kali Linux
  • Configure Network Connection
  • Updating and Upgrading kali Linux
  • Introduction to Bash Environment
  • Automating Administration with Bash Scripting
  • Penetration testing framework
  • Pre-engagement interactions
  • Intelligence gathering
  • Threat modelling
  • White Box and Black Box
  • Penetration Testing vs. Vulnerability Assessment
  • Google hacking
  • Discovering Devices using Shodan
  • DNS Information Gathering
  • Whois Information Gathering
  • Email Tracking
  • Route and Network information Gathering
  • All-in-one information gathering
  • TCP Connect Port Scanning
  • Stealth Port Scanning techniques
  • UDP port Scanning
  • Nmap Scripting Engine
  • Advance Port Scanning Techniques
  • Active Banners and System OS Enumeration
  • Passive Banners and System OS Enumeration
  • Enumerating users, groups and shares with SMB
  • Enumerating DNS resource records
  • Enumerating SNMP
  • Enumerating SMTP
  • Vulnerability Research
  • Introduction to fuzzing
  • Memory Stack and Heap
  • Introduction to Buffer Overflow
  • DEP and ASLR
  • Buffer overflow in action
  • Setting up Metaslpoit
  • Exploitation with Metasploit
  • Using Metasploit Auxiliary
  • Using Exploits Modules
  • Getting Familiar with Payloads
  • Staged and Non-staged Payloads
  • Working with Meterpreter Session
  • Working with Multi Handler
  • VNC Exploitation
  • Adding your own MSF Modules
  • Using Post Exploitation Modules
  • Enabling RDP
  • Dumping Password Hashes
  • Escalating Local Privilege in Linux
  • Bypassing UAC in Windows
  • Escalating Privileges through Physical Access
  • Misconfiguration Attacks for Privilege Escalation
  • Types of Password Attacks
  • Password Cracking Techniques
  • Generating Password Dictionary
  • Dictionary Attack
  • Rainbow Attack
  • Brute Force Attack
  • Introduction to Windows and Linux Password Hash
  • Pwdump and L0pthCrack
  • Breaking Password Hash
  • John the Ripper and OphCrack
  • Pass the Hash in Windows
  • Cracking Telnet and SSH password
  • Cracking FTP and HTTP password
  • Hydra , Fireforce and Ncrack
  • Using Metasploit Post Exploitation Modules
  • Encoding Payload using Msfencode
  • Using Veil Framework
  • Using Shellter
  • Using Custom Tools and Payloads
  • Protocol Tunnelling
  • Proxy
  • Installing persistent Backdoor
  • Netcat, The Swiss Army Knife
  • Starting a Listener using Netcat
  • Connecting to Target using Netcat
  • Stealing Files with Netcat
  • Controlling Target with Netcat
  • Sniffing Concepts
  • Using WireShark for Sniffing
  • Capture And Display Filters
  • Follow TCP Stream
  • Analysing Graphs and Endpoints in Wireshark
  • Tracing Geo Location of IP in Wireshark
  • Using TCP Dump
  • ARP Poisoning
  • DHCP Starvation
  • Mac flooding
  • DNS Poisoning redirecting user to fake website
  • Sniffing Credentials From Secured Websites
  • SYN Flood Attack
  • Application request Flood Attack
  • Service request Flood
  • Permanent Denial of Service Attack
  • Introduction to Web Application Vulnerabilities
  • Introduction to BurpSuite Proxy
  • Cross Site Scripting (XSS)
  • Cookie Stealing
  • Session Hijacking
  • Cross Site Request Forgery (CSRF)
  • LFI and RFI
  • Hacking database using SQL injection
  • Enumerating Database
  • Extracting Database Records
  • SQL Injection with Automated Tools
  • Web Application Assessment and Exploitation with Automated Tools
  • Introduction to Wireless Security
  • Revealing hidden SSID
  • Cracking Wireless Encryptions
  • Cracking WEP
  • Cracking WPA and WPA2
  • Configuring Fake Access Point
  • Halting Wireless Network Through Dos Attack
  • Restricting Wireless Access Through Wireless Jammer
  • Introduction to Client Side Attacks
  • Gathering Client Information
  • Exploiting Browser Vulnerability
  • Exploiting Internet Explorer Vulnerabilities
  • Metasploit Browser Autopwn
  • Stealing passwords through phishing
  • Generating backdoors
  • Java Applet attack Method
  • Introduction to Firewall and IDS
  • Testing IDS rules
  • Testing Firewall Rules
  • Firewalking
  • Type of Report
  • Presentation Report
  • Post Testing Procedure
Live Online Training (Duration : 40 Hours)
Group Training 1700 Per Participant
06 - 10 Jun 09:00 AM - 05:00 PM CST
(8 Hours/Day)
04 - 08 Jul 09:00 AM - 05:00 PM CST
(8 Hours/Day)
1-on-1 Training 3400 1950 + If you accept merging of other students.
4 Hours
8 Hours
Week Days

Start Time : At any time

12 AM
12 PM

1-On-1 Training is Guaranteed to Run (GTR)
Classroom Training (Available: London, Dubai, India, Sydney, Vancouver)
Duration : On Request
Fee : On Request
On Request
Classroom Training is available. Enquire for the fee Click
Ultra-Fast Track

If you can't spare 40 hours. We can offer you an Ultra-Fast Track for 20 hours for only USD 1,560

Course Prerequisites
  • Basic Computer Knowledge.
  • Introduction to Vulnerability Assessment and Penetration Testing
  • Information Gathering Methodology
  • Scanning and Enumeration
  • Identify Vulnerabilities
  • Exploitation
  • Post Exploitation
  • Advanced Tips and Techniques
  • Preparing a Report
  • Practice Ranges

Request More Information

Add Name and Email Address of participant (If different from you)


Yes, fee excludes local taxes.
The Fee includes:
  • Courseware
  • Remote Labs
Yes, Koenig Solutions is a Learning Partner