SANS SEC 542 (GWAPT) Web App Penetration Testing and Ethical Hacking 2016

SANS SEC 542 (GWAPT) Web App Penetration Testing and Ethical Hacking 2016
English | Size: 3.80 GB
Category: CBTs


Web applications are a major point of vulnerability in organizations today. Web app holes have resulted in the theft of millions of credit cards, major financial and reputational damage for hundreds of enterprises, and even the compromise of thousands of browsing machines that visited Web sites altered by attackers. In this intermediate to advanced level class, you’ll learn the art of exploiting Web applications so you can find flaws in your enterprise’s Web apps before the bad guys do. Through detailed, hands-on exercises and training from a seasoned professional, you will be taught the four-step process for Web application penetration testing. You will inject SQL into back-end databases, learning how attackers exfiltrate sensitive data. You will utilize cross-site scripting attacks to dominate a target infrastructure in our unique hands-on laboratory environment. And you will explore various other Web app vulnerabilities in-depth with tried-and-true techniques for finding them using a structured testing regimen. You will learn the tools and methods of the attacker, so that you can be a powerful defender.
[Read more…]

SANS FOR578-USB v2015 Only USB

SANS FOR578-USB v2015 Only USB
English | Size: 30.71 GB
Category: Video Training


FOR578: Cyber Threat Intelligence will help network defenders and incident responders:

Construct and exploit threat intelligence to detect, respond, and defeat advanced persistent threats (APTs)
Fully analyze successful and unsuccessful intrusions by advanced attackers
Piece together intrusion campaigns, threat actors, and nation-state organizations
Manage, share, and receive intelligence on APT adversary groups
Generate intelligence from their own data sources and share it accordingly
Identify, extract, and leverage intelligence from APT intrusions
Expand upon existing intelligence to build profiles of adversary groups
Leverage intelligence to better defend against and respond to future intrusions.
[Read more…]

SANS SEC642 Advanced Web App Penetration Testing, Ethical Hacking, and Exploitation Techniques(2013)

SANS SEC642: Advanced Web App Penetration Testing, Ethical Hacking, and Exploitation Techniques(2013)
English | Size: 228.84 MB
Category: Linux | Security


This course is designed to teach you the advanced skills and techniques required to test web applications today. This advanced pen testing course uses a combination of lecture, real-world experiences, and hands-on exercises to educate you in the techniques used to test the security of enterprise applications. The final day of the course culminates in a Capture the Flag event, which tests the knowledge you will have acquired the previous five days. [Read more…]

SANS SEC566 Implementing and Auditing the Critical Security Controls – In-Depth (2013)

SANS SEC566: Implementing and Auditing the Critical Security Controls – In-Depth (2013)
English | Size: 323.25 MB
Category: Networking | Security


Cybersecurity attacks are increasing and evolving so rapidly that it is more difficult than ever to prevent and defend against them. Does your organization have an effective method in place to detect, thwart, and monitor external and internal threats to prevent security breaches? This course helps you master specific, proven techniques and tools needed to implement and audit the Critical Security Controls as documented by the Center for Internet Security (CIS).
[Read more…]

SANS MGT414 SANS Training Program for CISSP® Certification 2013

SANS MGT414: SANS Training Program for CISSP® Certification 2013
English | Size: 519.36 MB
Category: Networking | Security


SANS MGT414: SANS Training Program for CISSP® Certification is an accelerated review course that is specifically designed to prepare students to successfully pass the CISSP® exam.

MGT414 focuses solely on the 8 domains of knowledge as determined by (ISC)2 that form a critical part of CISSP® exam. Each domain of knowledge is dissected into its critical components, and those components are then discussed in terms of their relationship with one another and with other areas of information security.
MGT414.1: Introduction; Security and Risk Management
MGT414.2: Asset Security and Security Engineering (Part 1)
MGT414.3: Security Engineering (Part 2); Communication and Network Security
MGT414.4: Identity and Access Management
MGT414.5: Security Assessment and Testing; Security Operations
MGT414.6: Software Development Security [Read more…]

SANS 610 v2015 PDF

SANS 610 v2015 PDF
English | Size: 211.14 MB
Category: HACKING


This popular course explores malware analysis tools and techniques in depth. FOR610 training has helped forensic investigators, incident responders, security engineers, and IT administrators acquire the practical skills to examine malicious programs that target and infect Windows systems. Understanding the capabilities of malware is critical to an organization’s ability to derive threat intelligence, respond to information security incidents, and fortify defenses. [Read more…]

SANS Security 542 CD-ROM Version 1009

SANS Security 542 CD-ROM Version 1009
English | Size: 688.54 MB
Category: Programming | Linux


SANS SEC 542 (GWAPT) Web App Penetration Testing and Ethical Hacking
SANS Security 542 CD-ROM Version 1009 [Read more…]

SANS SEC542 Web App Penetration Testing and Ethical Hacking 2016

SANS SEC542 Web App Penetration Testing and Ethical Hacking 2016
English | Size: 485.56 MB
Category: Security


SEC542.1: Web Penetration Testing and Ethical Hacking: Introduction and Information Gathering
SEC542.2: Web Penetration Testing and Ethical Hacking: Configuration, Identity, and Authentication Testing…. [Read more…]

SANS 760 VMs (2014)

SANS 760 VMs (2014)
English | Size:1.98 GB
Category:HACKING


SANS 760 Advanced Exploit Development for Penetration Testers Virtual Machines. [Read more…]

SANS-ICS-410-2014-AUDIO

SANS-ICS-410-2014-AUDIO
English | Size:364.53 MB
Category: Misc Learning


SANS has joined forces with industry leaders to equip security professionals and control system engineers with the cybersecurity skills they need to defend national critical infrastructure. ICS410: ICS/SCADA Security Essentials provides a foundational set of standardized skills and knowledge for industrial cybersecurity professionals. The course is designed to ensure that the workforce involved in supporting and defending industrial control systems is trained to keep the operational environment safe, secure, and resilient against current and emerging cyber threats. [Read more…]