InfoSec & PenTest Training

About the Courses


All Heorot.net courses qualify for a minimum of 40 ISC2 CPE credits.

All tools and techniques learned during our courses are intended to be used for legitimate purposes only. The staff at Heorot.net believe that illegal hacking has become an epidemic, and the only way to combat this wave of malicious attacks is to educate both the public and professionals alike in how to conduct their own in-house penetration tests. By emphasizing penetration tests as a part of a larger security policy to protect corporate or government enterprises, students can improve their employer’s overall security posture and identify industry threats.

Heorot.net includes a wide range of information security and penetration test courses, including free classes on various pentest tools, as well as the widely-recognized De-ICE.net PenTest LiveCDs which allows students to practice their pentest skills against legitimate, and safe, targets. Many of these courses are available for training on-site. If you have any questions about the courses available, please don’t hesitate to contact us at: contact [at] heorot [dot] net

Online Courses


Shodan Certified Penetration Tester Course

For those just starting out in the field of professional penetration testing, the Shodan Certified Penetration Tester course will provide a thorough understanding of how a professional penetration test is conducted and the methodologies behind performing an attack. It is suggested you already have a familiarity with basic Linux commands and file structure. The course covers the following topics:

  • Penetration Test Methodology
  • Use and Selection of Hacker Tools
  • System Exploitation Fundamentals
  • Password Attacks (Remote and Local)
  • Legal Issues
  • Enumerating Users
  • Network Sweeping and Tracing
  • OS and Version Detection
  • Port Scanning Fundamentals
  • Reporting the Results
  • Project Management Requirements
  • Documention Requirements
  • Hands-On Experience Conducting Your Own Penetration Test



Nidan Certified Penetration Tester Course

For those individuals familiar with hacker tools who have some penetration testing experience, the Nidan Certified Penetration Tester course will provide a comprehensive understanding of how to run a penetration test in a real-world environment. Students should have a solid understanding of Linux and the ability to effectively use commercial and Open Source hacker tools. The course covers the following topics:

  • Application of the OSSTMM within a penetration test
  • Risk Analysis and Security Metrics
  • Network Packet Crafting
  • Exploiting File System Security
  • Web Application Testing
  • Reviewing Code for Potential Exploits
  • Password Encryption and Cracking Methodologies
  • Advanced Techniques of Tools and Hacking Methods
  • Hands-On experience conducting your own penetration test
  • Project Management Processes and Techniques
  • Documenting Your Results



button_sandan

Advanced training in Professional Penetration Testing is available for those interested in becoming experts in their field. The Sandan Certified Penetration Tester course focuses on web-based attacks targeting both applications and databases. Students must have successfully completed the Nidan Certified Penetration Tester course before they can attend the 3DCPT course. The course covers the following topics:

  • Introduction to Databases
  • Database Architectures
  • Understanding SQL
  • Common Attacks
  • SQL Injections
  • Remote Port Attacks
  • Host Attacks
  • Web Server Attacks
  • Application Attacks
  • SQL Injections
  • Authorization Bypass
  • Application Flaws
  • Cross Site Scripting
  • Web 2.0
  • Application Fuzzing




Yondan Certified Penetration Tester Course

The ability to attack network protocols and devices can improve the chances of success during a professional penetration test. The Yondan Certified Penetration Tester course focuses on network attacks and how to evade network appliances, such as firewalls and intrusion detection systems. Students must have successfully completed the Sandan Certified Penetration Tester course before they can attend the 4DCPT course. The course covers the following topics:

  • Networking Protocols
  • Wireless Encryption Attacks
  • Shells / Reverse Shells
  • Protocol Tunneling
  • Protocol Hacking
  • Pivot Attacks
  • Evasion and Enumeration
  • Firewalls and Firewall Rules
  • Attacking Rulesets
  • Attacking Firewall OSes
  • Intrusion Detection Systems
  • Alert Signatures
  • IDS Avoidance Techniques
  • Attacking IDS Application




Godan Certified Penetration Tester Course

The Godan Certified Penetration Tester course represents the pinnacle of professional penetration testing, and concentrates on dissecting and creating application exploits. Students must have successfully completed the Yondan Certified Penetration Tester course before they can attend the 5DCPT course. The course covers the following topics:

  • Malware Analysis Lab Configuration
  • Windows x86 Assembly Code Concepts
  • Reverse-Engineering Malware
  • Identify and Exploit Buffer Overflows
  • Circumvention of Access Restrictions



Discounts

We provide discounts for the following categories:

  • Students
  • Government employees
  • Military personnel
  • Group purchases

In order to qualify for a discount, you must contact us at: contact [at] heorot [dot] net. Discounts must be requested prior to payment, and cannot be retroactively applied to any courses already paid for. Discounts (other than group purchases) are 20% of the course’s full purchase price (no additional discounts may be applied). Group purchases are discounted based on quantity.