Ethical Hacking Foundation (S-EHF)

Hands-on beginner's penetration testing training with TryHackMe lab challenges

Understand how hackers work, how a penetration test is performed, and what agreements to make to safely carry out a penetration test;

Use open-source intelligence, sniffing and port scanning tools and techniques to gain valuable information on a target;

Gain hands-on experience in vulnerability scanning, SQL injection, password cracking, XSS, and remote and local file inclusion with realistic TryHackMe lab challenges.

The language of instruction for this course is English.

Ethical Hacking Foundation Course – Learn the basics of penetration testing from expert hackers

In our Ethical Hacking Foundation course, you will learn to think like a hacker and immerse yourself in the techniques and tools hackers use to break into networks and systems. Designed by experienced hackers, the course guides you through the penetration testing process and challenges you to practice your hacking skills at every step of your journey.

In this beginner’s penetration testing training, you will learn hacking by doing it. Throughout the course, you will perform basic penetration testing tasks in a TryHackMe lab environment. You will try your hand at network sniffing, port scanning, SQL injection, password cracking, local and remote file inclusion, and cross-site scripting (XSS). At the end of the course, you will use your newly acquired hacking skills to carry out a basic black-box penetration test (Capture the Flag challenge).

This is an entry-level ethical hacking course for beginners with little or no programming experience. Are you looking for advanced penetration testing training? Our Ethical Hacking Practitioner course will challenge you with more complex hacking exercises to test networks, devices, access control, software and databases.

Prerequisites

This is a complete beginner’s penetration testing training. You don’t need any previous hacking knowledge or experience to participate. However, we strongly recommend you to have a basic understanding of Linux. Are you new to Linux? If you want to participate in our hacking exercises, please consider taking a one-day Linux Introduction course before signing up for Ethical Hacking Foundation.

Who should join Ethical Hacking Foundation?

This course is an ideal choice for anyone interested in exploring “the hacker mindset” and getting a solid understanding of basic penetration testing techniques.

We especially recommend this course if:

• You are considering starting a career in ethical hacking, and you would like to get basic hacking skills and credentials before following more advanced trainings;
• You would like to learn penetration testing fundamentals to succeed in a SOC analyst or IT security role.

What is included in this Ethical Hacking Foundation course?

• Official SECO-Institute course materials developed by experienced hackers;
• Training from passionate instructors who are active in the penetration testing industry;
• Access to SECO’s hacking lab environment
• Practice exam and exam syllabus to fully prepare for your Ethical Hacking Foundation certification exam;
• Certification exam voucher;
• Access to the (S)ECO-system, a professional community website where you will find additional resources and exclusive knowledge events.

Who should join Ethical Hacking Foundation?

This course is an ideal choice for anyone interested in exploring “the hacker mindset” and getting a solid understanding of basic penetration testing techniques.

We especially recommend this course if:

• You are considering starting a career in ethical hacking, and you would like to get basic hacking skills and credentials before following more advanced trainings;
• You would like to learn penetration testing fundamentals to succeed in a SOC analyst or IT security role.

Ethical Hacking Foundation Course Modules

Module 1: Penetration Testing – Preparation

• Understand the difference between hacking and ethical hacking
• Understand the legal implications of hacking
• Know what agreements to make in the intake phase to safely carry out a penetration test
• Understand the difference between white box, grey box and black box testing
• Understand the penetration testing process
• Learn to use Kali Linux for penetration testing

Module 2: Reconnaissance

• Understand the difference between passive and active reconnaissance
• Use common open-source intelligence (OSINT) tools to carry out passive reconnaissance and find useful information on the target
  • Identify relevant information to be found about the target
  • Make a plan for keeping track of the findings
  • Use Shodan.io to gather information on a target
  • Geolocate images to gather information on a target
• Use basic sniffing and scanning techniques to perform active reconnaissance and gather more useful information on the target
  • Use Wireshark to sniff network traffic and filter relevant information
  • Use Nmap to map the target network infrastructure and services
  • Perform TCP Connect, SYN “Half-open”, and UDP scans using Nmap
• Use Dirb and Nikto to scan for web content and web server vulnerabilities

Module 3: Web Application Attacks

• Find web application vulnerabilities with Zap
• Perform a basic web parameter tampering attack
• Perform a basic XSS attack
• Perform a basic SQL attack
• Crack hashed passwords
• Perform a basic file inclusion attack

Module 4: Capture the Flag

Use the techniques learnt in Modules 1-3 to break into a (simulated) company’s wireless network. Discover interesting hosts and identify the services running on them. Finally, access and exploit these services to gain access to the company’s systems.

In this beginner’s penetration testing training, you will learn hacking by doing it. Throughout the course, you will perform basic penetration testing tasks in a TryHackMe lab environment. You will try your hand at network sniffing, port scanning, SQL injection, password cracking, local and remote file inclusion, and cross-site scripting (XSS). At the end of the course, you will use your newly acquired hacking skills to carry out a basic black-box penetration test (Capture the Flag challenge).

What is included in this Ethical Hacking Foundation course?

• Official SECO-Institute course materials developed by experienced hackers;
• Training from passionate instructors who are active in the penetration testing industry;
• Access to SECO’s hacking lab environment
• Practice exam and exam syllabus to fully prepare for your Ethical Hacking Foundation certification exam;
• Certification exam voucher;
• Access to the (S)ECO-system, a professional community website where you will find additional resources and exclusive knowledge events.

• 3 course days, 1pm – 5.30pm CEST
• 8.5 hours of self-study
• 1 CPE credit per study hour
• English spoken online classroom

For follow-up options, please visit our website.