Q/EH® Qualified/ Ethical Hacker Certification Exam and Class

This Intense 5 day Q/EH® Qualified/ Ethical Hacker class provides with basic understanding of the skills and tools required to determine potential security weakness in your organization. This class is your next class after Security+ or before CISSP®. Be ready for SERIOUS tactical Ethical Hacker skills training learning how to defend networks from cyber attack. Step up to Qualified with the Q/EH Certification, voted “Best Professional Security Training Company” Finalist 2009 - by SC Magazine.

"Yes. Pls quote me, The instructor was great, he was very knowledgeable. I had CEH^™ and CHFI^™ training from another vendor and I did receive certification but I wish I had attended your classes instead, I would have learned much more."

No death by powerpoint - the Q/EH study guide engages you in real world scenarios, no old hacking tools,like other Certifying Ethical Hacking classes. More than 35 hands-on tactical security labs to ensure your qualified and validated to defend networks from cyber threats.

We're here to help! CALL NOW 877-357-7744

We are dedicated to your tactical security success. We constantly add new security tools, white papers and update SU hacking labs to keep you motivated and expand your tactical security knowledge & hacking skills.

• New! Multiple VM's on each laptop, the latest BackTrack and Linux tool kits
• New Saint Vulnerability Exploit tool with discount code
• Core Impact 8IP, 7-Day LICENSE FREE CD with every class registration!
• Expert Instructors
• 99% pass rate, highest pass rate in the industry
• 100% Satisfaction Guarantee
• Instruction and review with an experienced master hacker
• Q/EH Exam on site last day of class
• Access to Security University 's IT Professional Reference Library of targeted pre-class reading
• Free download of Linux & 400+ up-to-date hacking tools and exploits
• "Where Qualified Happens"
• No book substitutes for the real thing

Class Fee:	$2,995
Time:	8:30am - 6pm
Location:	Click here to view the class schedule
CPE Credits:	45 - CNSS /NSA-approved!
	Download the 2010 SU class RoadMap
Prerequisites:	You should know TCP/IP protocols, Windows, & Linux or Unix OS CEH™ Prep. SU EXAM onsite last day

Q/EH® Qualified Ethical Hacker Certification exam tests on the following domains.

SAINT Exploit tool

Class Tuition & Bonuses
Instruction and review with an experienced master hacker
Q/EH Exam on site last day of class
Access to Security University's IT Professional Reference Library of targeted pre-class reading, with:
Free download of Linux & 400+ up-to-date hacking tools and exploit

The business of Ethical Hacking your network
• Incident Management
• Laws & Legislation
• White & Black Box Testing
• Software Security Testing
• Code Review
• DRP Disaster Recovery Planning

Reconnaissance/ footprinting
•  Define the term Footprinting
•  Describe information gathering methodology
•  Describe competitive intelligence
•  Understand DNS enumeration
•  Understand Whois, ARIN lookup
•  Identify different types of DNS records
•  Understand how traceroute is used in Footprinting
•  Understand how e-mail tracking works
•  Understand how web spiders work

Scanning
•  Define the term port scanning, network scanning and vulnerability scanning
•  Understand the Q/EH scanning methodology
•  Understand Ping Sweep techniques
•  Understand nmap command switches
•  Understand SYN, Stealth, XMAS, NULL, IDLE and FIN scans
•  List TCP communication flag types
•  Understand War dialing techniques
•  Understand banner grabbing and OF fingerprinting techniques
•  Understand how proxy servers are used in launching an attack
•  How does anonymizers work
•  Understand HTTP tunneling techniques
•  Understand IP spoofing techniques

Enumeration
•  What is Enumeration?
•  What is meant by null sessions
•  What is SNMP enumeration?
•  What are the steps involved in performing enumeration?

Sniffers
•  Understand the protocol susceptible to sniffing
•  Understand active and passive sniffing
•  Understand ARP poisoning
•  Understand ethereal capture and display filters
•  Understand MAC flooding
•  Understand DNS spoofing techniques
•  Describe sniffing countermeasure

System hacking
•  Understanding password cracking techniques
•  Understanding different types of passwords
•  Identifying various password cracking tools
•  Understand Escalating privileges
•  Understanding keyloggers and other spyware technologies
•  Understand how to Hide files
•  Understanding rootkits
•  Understand Steganography technologies
•  Understand how to covering your tracks and erase evidences

Buffer Overflows
•  Overview of stack based buffer overflows
•  Identify the different types of buffer overflows and methods of detection
•  Overview of buffer overflow mutation techniques

SQL Injection
•  What is SQL injection?
•  Understand the Steps to conduct SQL injection
•  Understand SQL Server vulnerabilities
•  Describe SQL Injection countermeasures

Virus and Worms
•  Understand the difference between an virus and a Worm
•  Understand the types of Viruses
•  How a virus spreads and infects the system
•  Understand antivirus evasion techniques
•  Understand Virus detection methods

Trojans and Backdoors
•  What is a Trojan?
•  What is meant by overt and covert channels?
•  List the different types of Trojans
•  What are the indications of a Trojan attack?
•  Understand how “Netcat” Trojan works
•  What is meant by “wrapping”
•  How does reverse connecting Trojans work?
•  What are the countermeasure techniques in preventing Trojans?
•  Understand Trojan evading techniques

Denial of Service
•  Understand the types of DoS Attacks
•  Understand how DDoS attack works
•  Understand how BOTs/BOTNETS work
•  What is “smurf” attack
•  What is “SYN” flooding
•  Describe the DoS/DDoS countermeasures

Session Hijacking
•  Understand Spoofing vs. Hijacking
•  List the types of Session Hijacking
•  Understand Sequence Prediction
•  What are the steps in performing session hijacking
•  Describe how you would prevent session hijacking

Wireless Hacking
•  Overview of WEP, WPA authentication systems and cracking techniques
•  Overview of wireless Sniffers and SSID, MAC Spoofing
•  Understand Rogue Access Points
•  Understand Wireless hacking techniques
•  Describe the methods in securing wireless networks

Hacking Web Servers
•  List the types of web server vulnerabilities
•  Understand the attacks Against Web Servers
•  Understand IIS Unicode exploits
•  Understand patch management techniques
•  Understand Web Application Scanner
•  What is Metasploit Framework?
•  Describe Web Server hardening methods

Web Application Vulnerabilities
•  Understanding how web application works
•  Objectives of web application hacking
•  Anatomy of an attack
•  Web application threats
•  Understand Google hacking
•  Understand Web Application Countermeasures

Physical Security
•  Physical security breach incidents
•  Understanding physical security
•  What is the need for physical security?
•  Who is accountable for physical security?
•  Factors affecting physical security

Social Engineering
•  What is Social Engineering?
•  What are the Common Types of Attacks
•  Understand Dumpster Diving
•  Understand Reverse Social Engineering
•  Understand Insider attacks
•  Understand Identity Theft
•  Describe Phishing Attacks
•  Understand Online Scams
•  Understand URL obfuscation
•  Social Engineering countermeasures

Linux Hacking
•  Understand how to a Linux Kernel
•  Understand GCC compilation commands
•  Understand how to install LKM modules
•  Understand Linux hardening methods

IDS, Honeypots and Firewalls
•  List the types of Intrusion Detection Systems and evasion techniques
•  List firewall and honeypot evasion techniques

Cryptography
•  Overview of cryptography and encryption techniques
•  Describe how public and private keys are generated
•  Overview of MD5, SHA, RC4, RC5, Blowfish algorithms

Penetration Testing Methodologies
•  Overview of penetration testing methodologies
•  List the penetration testing steps
•  Overview of the Pen-Test legal framework
•  Overview of the Pen-Test deliverables
•  List the automated penetration testing tools

Appendix I, II, II
•C&A Review• Event Correlation• Incident Mgt• Law & Legislation• Snort Rules•Black Box Testing• PKI• Software Security Testing•Code Review• COOP• BCP Business Continuity Planning• DRP Disaster Recovery Planning

What is a Q/ISP® "Qualified" Information Security Professional Certification?
The 125 question online Q/ISP certification exam has questions from 4 Q/ISP Security Skills certification prep classes:
Qualified/Ethical Hacking
Qualified/Security Analysis Penetration Testing
Qualified/Forensics Expert
Qualified/Network Defense

The Q/ISP, Q/EH, Q/SA- Q/PTL, Q/FE & Q/ND certification exams do not require training classes.
The Q/ISP certification is selected to be reviewed for 8570 certification list & awaiting NOCA's new assessment based certification approval.

What is a "Qualified" Q/ISP? A Qualified Q/ISP has attained 4 SU Q/ISP® Validation Certifications. Each Validation Certification is attained by attending the Q/ISP tactical security skills certification prep class to validates your tactical security skills - Q/EH, Q/SA - Q/PT License, Q/FE & Q/ND. Each validation & certification prep class is 5 days of hands-on labs, with an online certification exam AND a intense hands-on "Practical" exams. You have to pass both the On-line certification exam and the "Practical" validation projects before you earn a SU Q/ISP (Validation) Certification.

The Security University Security Pyramid represents enlightenment, man's breaking free of stagnant education and reaching towards the supreme source of security skills training and validation, globally illuminating risk preparedness.

Prior to 2008, if you attended Security University's EC-Council^® Authorized CEH®, ECSA®, CHFI® classes and passed the certification exams you are eligible for the Q/ISP® Qualified/ Certifications but still have to pass the Q/ISP tactical certification exams.

Since 2004 SU has certified over 3500 ECSA®/ Q/SA® Qualified Security Analysts Penetration Testers in 7 countries!
Customize your Q/SA® Q/PTL training program today!
  US Congress wants hack teams for self-penetration download for more..

Compliance requirements aside, penetration testing is an absolutely critical aspect of any security program. Attackers test every company's defenses every day.


Legal Notice:
The CEH^® Certification is provided exclusively by EC-Council^® and its ATC's, Security University is not sponsored by, approved by, or affiliated in any way with EC-Council^®.