HBN Reloaded : BlackOps

This course forms part of SensePost's new Hacking by Numbers Reloaded training series. BlackOps is the penetration-testing course. This is not your average point and click pwnage course, but a course designed and developed based upon real-world field experience using real world tools and techniques.

The students will be instructed on how to generate an appropriate payload, gain remote access (bypassing inbound/outbound protection mechanisms), and persist on the target box or network. This course touches upon the latest tools and techniques aiding data harvesting, exfiltration, pivoting, privilege escalation, HIPS evasion, persistence, client-side attacks, and OSINT.

This year we’ve added additional modules that look at how you’d tackle large infrastructure penetration tests (seeing the wood through the trees), a monster section on stalking people using OSINT approaches, and a section on real-world malware techniques/types, AV bypassing, data harvesting and extrusion techniques used in the wild. Finally our last module is a no-holds barred module where you need to stalk, social engineer, exploit and exfiltrate data from a suspected bad guy using the techniques learned throughout the course.

Course Topics

Day One

  • Non-Standard Network Targeting - IPV6, mDNS/DNS, creative traceroute, rapid reconnaissance
  • Compromise - Remote vulnerability identification exploitation and post exploitation SSL/MITM, WPAD, IPv6 attacks, smbrelaying and finally crypto attacks against obfuscated credentials.
  • Privilege Escalation - Going from local user to enterprise admin using exploits and standard OS tools.
  • Persistence – Gotta keep what you’ve worked so hard for.

Day Two

  • Pivoting – Running amok through the network without being seen.
  • Open Source Intelligence - Finding your target using OSINT methods (the more you know…)
  • Client-side exploitation – They are all yours, now what?
  • HIPS Evasion – Bypassing protection devices and other inline protection devices.
  • Final CULEX

Each section follows with a practical whereby students are required to capture the flag using the techniques they have just learned.

For the final CULEX, students will be putting all the skills they’ve learned in the course to good use. This will also include exposure to client-side attack tools such as Andromeda, Alueron (KINS), vSkimmer, currently in use by real-world criminals.

BlackOps takes all the skills you’ve already acquired (maybe from our Infrastructure Bootcamp course, but it’s not a prerequisite) and puts them into action. We look at what you do once you’ve found vulnerability from a pre/post exploitation point of view and also how you’d get data out without tripping any alarms. It’s the final course before going into our hardest HBN course: Combat

Who should take this course?

BlackOps designed for experienced penetration testers, network administrators, security professionals and IT security enthusiasts who have a need to acquaint themselves with real-world offensive penetration testing techniques, tactics and tools.

Black Ops naturally follows directly from our Bootcamp courses and prepares students for HBN Combat - our ultimate hands-on course. Students need to ensure they have the necessary level of skill associated with previous experience as a penetration tester or similar hacking skills. Although prior participation in an HBN course is not a prerequisite, significant exposure to hacking training, tools and techniques is highly recommended.

Students requirements

Students need to ensure they have the necessary level of skill. No hacking experience is required for this course, but a solid technical grounding is an absolute must. Students are expected to be versed in basic programming or scripting, networking and Internet technologies, 'nix and Windows operating systems, basic SQL and database technologies.

No advanced skills are required, but students without a good, practical knowledge of these areas will fall behind in this fast-paced class. Students without the requisite technical skills are encouraged to consider our Hacking by Number Reloaded - Cadet course, which can be completed online

Pricing, Location and Availability

This is a two-day course that can be presented at your premises (in-house) or at local training centres. Prices are available on request.