|
Title: CEH v5 Module 1: Intro to Ethical Hacking Post by: don on November 13, 2006, 04:22:31 PM - Why Security?
- Essential Terminologies - Elements of Security - The Security, Functionality, and Ease of Use Triangle - What Does a Malicious Hacker Do? - Reconnaissance - Scanning - Gaining access - Maintaining access - Covering Tracks - Types of Hacker Attacks - Operating System attacks - Application-level attacks - Shrink Wrap code attacks - Misconfiguration attacks - Hacktivism - Hacker Classes - Hacker Classes and Ethical Hacking - What Do Ethical Hackers Do? - Can Hacking be Ethical? - How to Become an Ethical Hacker? - Skill Profile of an Ethical Hacker - What is Vulnerability Research? - Why Hackers Need Vulnerability Research? - Vulnerability Research Tools - Vulnerability Research Websites - How to Conduct Ethical Hacking? - Approaches to Ethical Hacking - Ethical Hacking Testing - Ethical Hacking Deliverables - Computer Crimes and Implications - Legal Perspective - U.S. Federal Law - Japan’s Cyber Laws - United Kingdom’s Cyber Laws - Australia’s Cyber Laws - Germany’s Cyber Laws - Singapore’s Cyber Laws Source: http://www.eccouncil.org/EC-Council%20Education/ceh-course-outline.htm Don Title: Re: CEH v5 Module 1: Intro to Ethical Hacking Post by: blackazarro on November 30, 2006, 10:21:22 PM I just began studying for the CEH v5 and finished reading module 1 of the official courseware. As I was doing the exercises at the end of the module, I stumbled upon a question where I had to pause and think for minute. The question that I was referring is question #5: What are the similarities and differences between Ethical Hacking and Penetration Testing? I know that Vulnerability assessment and Pentesting are use interchangeably, however they have their differences. Vulnerability assessment is when you test a target for known vulnerabilities whereas Penetration Testing is use to conduct the actual exploitation based on the information obtained from the former test. But what is Ethical Hacking when compared to Penetration testing? The following is the information I found so far:
Quote The term ethical hacking refers to the co-ordinate and comprehensive check of security of a network and on systems inside it, in order to assess the actual risk level data is exposed to, and to propose possible corrective actions aimed at raising the security level. Penetration Testing involves simulating an attack using tools and techniques available to external hackers and willful insiders to probe for weaknesses and ascertain the potential damage that could be caused. Damage to an insecure network may involve recording and tampering with network traffic, obtaining passwords and gaining administrator access or exploitation of published software weaknesses where patches have not been updated, to name but a few common examples. In real terms, such attacks can lead to loss, theft or alteration of business-critical and highly sensitive data. I think the term Ethical Hacking has a similar meaning to Vulnerability assessment. Although I originally thought that Ethical Hacking refer to the entire process of testing including Vulnerability and Penetration testing. Anyways, as far as similarities between Ethical Hacking and Penetration Testing goes, well I guess both form of testing may utilize the same techniques and tools, however, each test providing different results. So, what you guys think. Is there anybody that would like to share their insights on this subject. ;) Title: Re: CEH v5 Module 1: Intro to Ethical Hacking Post by: Kev on December 02, 2006, 02:03:25 PM My understanding of the terms is that an Ethical Hacker uses the same techniques as a pentester but is bound by a code of conduct. He has “rules of engagement” and strives to do no harm. Not all pentesters subscribe to that and sometimes go further than what they were authorized to do, as in the case of the pentester who went further into the FBI network than perhaps he should have.
Title: Re: CEH v5 Module 1: Intro to Ethical Hacking Post by: blackphantom on June 18, 2007, 05:50:30 AM HI THERE I AM NEW TO THE CEH can any body help me out on the CEH i really want to learn it.
Title: Re: CEH v5 Module 1: Intro to Ethical Hacking Post by: don on June 18, 2007, 07:31:54 AM Welcome to EH-Net. Start a new thread with details of your experience and where you want to go, and I'm sure you'll get plenty of help here.
Don Title: Re: CEH v5 Module 1: Intro to Ethical Hacking Post by: lelakimipa on July 27, 2007, 01:28:53 AM @blackazarro:
where d u get the modules or exam tryout, may i have the source? thank you. i think you're right about that opinion man. Title: Re: CEH v5 Module 1: Intro to Ethical Hacking Post by: blackazarro on July 27, 2007, 01:57:32 AM The module and exercise came from the EC-Council official courseware. This courseware cost me $500 bucks. However, you can get it now for $400 dollars. If that's too expensive for you then I suggest and recommend that you purchase CEH: Official Certified Ethical Hacker Review Guide: Exam 312-50 (http://www.amazon.com/CEH-Official-Certified-Ethical-Hacker/dp/0782144373/ref=pd_bbs_sr_1/105-9112680-2878059?ie=UTF8&s=books&qid=1185518582&sr=8-1). There are questions after each chapter plus it comes with a cd with a testing software. Some of the questions from this book were in my exam. Plus this book narrows it down to what you have to know for the exam. In addition, I wrote a post here (http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,1369.msg4925/#msg4925) on how I passed the CEH(v5) exam. Check it out. Hope this helps.
Powered by SMF 1.1.7 |
SMF © 2006-2007, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com |