Penetration Testing using Python

Course Description

Python Penetration Testing from Codec Networks, is designed to give candidates the skills they need for tweaking, customizing, or outright developing your own tools to put you on the path of becoming a great penetration tester.

This course is appealing to a wide variety of backgrounds ranging from people without a drop of coding experience all the way up to skilled Python developers looking to increase their expertise and map their capabilities to penetration testing and also covers the concepts of system security, attacking web applications, network security, exploitation techniques, binary and malware analysis and task automation.

The course further teaches how to employ the Python language for security research, attack automation, and penetration testing with a practical approach. This course also covers the concepts of system security, attacking web applications, network security, exploitation techniques, binary and malware analysis and task automation.

Who Should Attend

The course is targeted at Security Professionals who want to learn how to develop Python applications, Penetration testers who want to move from being a consumer of security tools to the creator security tools, Technologists that need custom tools to test their infrastructure and desire to create those tools themselves.

Pre-requisites

Candidates should have prior programming experience and be familiar with basic concepts of Python Coding and Scripting. To go for this course, candidate must attended for Python Coding & Scripting course.

Learning Objectives

After completing this course, students will have a fundamental understanding of how to:

Comprehend the File Handling, Functions, and Functional Programming
Configure Python in Linux and Windows
Access the network and Internet
Create Directory Access and Managing Files
How to set Controls and Permissions
Comprehend the Clients architecture and Servers
Understand the XSS and SQL attacks on web applications
Fundamentals of Process Debugging

Course Duration

40 Hours.

Course Content

Python Scripting Essentials

Introduction to Interpreted Languages and Python
Data Types and variables
Operators and Expressions
Program Structure and Control
Functions and Functional Programming
Classes, Objects and other OOPS concepts
Modules, Packages and Distribution
Python in Linux and Unix
Python in Windows
Python in Mobiles: iPhone and Androids
Python in Embedded Devices: Routers
Program Portability

System Programming and Security

I/O in Python
File and Directory Access
Multithreading and Concurrency
Inter Process Communication (IPC)
Permissions and Controls

Creating Sniffers and Packet Injectors

Raw Socket basics
Socket Libraries and Functionality
Programming Servers and Clients
Programming Wired and Wireless Sniffers
Programming arbitrary packet injectors
PCAP file parsing and analysis

Web Application Security

Web Servers and Client scripting
Web Application Fuzzers
Scraping Web Applications – HTML and XML file analysis
Web Browser Emulation
Attacking Web Services
Application Proxies and Data Mangling
Automation of attacks such as SQL Injection, XSS etc.

Exploitation Writing and Analysis Automation

Exploit Development techniques
Immunity Debuggers and Libs
Writing plugins in Python
Binary data analysis
Exploit analysis Automation

Malware Analysis and Reverse Engineering

Process Debugging basics
Pydbg and its applications
Analyzing live applications
Setting breakpoints, reading memory etc.
In-memory modifications and patching

Attack Task Automation

Task Automation with Python
Libraries and Applications

Course related details

View BROCHURE & Outline for this Course

LATEST BLOGS

WHY IS CYBER SECURITY AWARENESS TRAINING NECESSARY FOR YOUR BUSINESS?

Why is Cyber Security Awareness Training Necessary for your Business - Blogs

To begin with, a cyber-security-trained workforce provides a lower risk to an organization’s information network’s security infrastructure. Because it guards against Data/security breaches and damages, cyber security is essential.

WHAT IS SPLUNK INTRODUCTION, ARCHITECTURE & STAGES IN SPLUNK

What is Splunk - Introduction, Architecture and Stages in Splunk - Blogs

Splunk may be a software platform to look, analyze and visualize the machine-generated data gathered from the websites, applications, sensors, devices, etc. which structure your IT infrastructure and business. Real-time processing is Splunk’s biggest point.

WHAT’S SQL INJECTION & DIFFERENT TYPES OF ATTACKS AND HOW CAN AN ATTACK BE PREVENTED?

What's SQL Injection & different types of Attacks and how can an Attack be Prevented - Blogs

SQL Injection (SQLi) is a type of Nursing injection attack in which an attacker uses harmful SQL queries to administer an online app’s information server, allowing them to access, change, and delete unauthorized information.

MOBILE HACKING – HOW TO HACK AN ANDROID PHONE

Mobile Hacking How to Hack an Androd Phone - Blogs

A mobile device allows communication between users on radio frequencies. It is used to send emails, multimedia sharing, and also used for internet access. In this period of time mobile has taken over desktops and computers as mobile phones. People are relying less on the computer as mobile has made our life simpler.

HOW TO BECOME A CYBER SECURITY EXPERT

How to Become a Cyber Security Expert - Blogs

We often hear the term “Ethical Hacker” or “Penetration Testers,” but who are they? Many companies employ penetration testers to improve data security by distinguishing and rectifying framework shortcomings before criminal programmers can abuse these shortcomings.

TOP 10 POPULAR CERTIFIED ETHICAL HACKING (CEH) TOOLS

Top 10 Popular Certified Ethical Hacking CEH Tools - Blogs

Certified Ethical Hacking tools facilitate a military operation, making back doors and payloads, cracking passwords, ANd an array of different activities. during this article, we’ll be discussing the highest ten moral hacking tools. Let us Disscus all the Popular Certified Ethical Hacking – CEH Tols.

HOW TO HACK WIRELESS NETWORKS

There are two main types of encryptions used. Wired Equivalent Privacy (WEP) is a Security Algorithm for IEEE 802.11 wireless networks. Wi-Fi Protected Access (WPA) and Wi-Fi Protected Access II (WPA2) are two Security Protocols and security certification programs developed by the Wi-Fi Alliance to secure wireless Computer Networks.

CAREERS AND SCOPE IN “CYBER SECURITY”

Careers and Scopes in Cyber Security - Blogs

We are putting software everywhere. This is changing the way we live and how we behave and interact with the world around us. As technology becomes more and more deeply integrated into our lives, we become more and more dependent on it. But this dependence makes us vulnerable if technology fail.

HOW HACKERS TRACK YOU AND DETECT YOUR IDENTITY ONLINE?

How do Hackers Track you and Detect your Identity Online - Blogs

When you surf the Internet, you may feel that you are alone but in fact, everything you do is being watched and recorded. The website you click will retain detailed information about each visitor, the ISP will monitor and store logs of all users, and even plugins and operating systems will collect and share information about your daily habits.

BASICS OF ETHICAL HACKING TRAINING

Hacking is a very common word now a day. Every other day we have attacks on cyberspace. According to studies, there is one cybercrime in India every 10 minutes. Ethical hacking is a concept where the Ethical Hacker (Security professionals) performs penetration testing to find out the vulnerabilities and patch them before any black hat hacker exploits them.

offers

Contact us

Codec Networks ready to help you.visit our HELP CENTER for any assistance

Live Feed & Resources

View Latest Blogs for this Course

View Upcoming Event and News

View Upcoming Webinar