Security & Ethical Hacking: Attacking the Network

Security & Ethical Hacking: Attacking the Network

Instructor: Ahmed M. Hamza

What you'll learn

Conduct Man-in-the-Middle attacks on computer networks, modern browser defenses and protocols.
Describe Penetration testing principles and offensive security advanced practical concepts.
Utilize Offensive techniques and recon methods for hardened systems and networks, firewalking, network manipulation/tunneling for remote attackers.

Details to know

Shareable certificate

Add to your LinkedIn profile

Assessments

5 assignments

Taught in English

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

Earn a career certificate

Add this credential to your LinkedIn profile, resume, or CV

Share it on social media and in your performance review

There are 5 modules in this course

This course explains the science and art behind offensive security techniques used in penetration testing of networks and systems. A review of networking concepts is given. Students will utilize low-level programming through network interfaces, in executing a variety of network attacks, while learning to use essential auxiliary tooling for both recon and active attacks. An introduction to cryptogpahy for pentesters is provided.

An understanding of python programming and networking basics is required. Course assessments are practical work, quizzes and exams. This course can be taken for academic credit as part of CU Boulder’s Masters of Science in Computer Science (MS-CS) degrees offered on the Coursera platform. This fully accredited graduate degree offer targeted courses, short 8-week sessions, and pay-as-you-go tuition. Admission is based on performance in three preliminary courses, not academic history. CU degrees on Coursera are ideal for recent graduates or working professionals. Learn more: MS in Computer Science: https://coursera.org/degrees/ms-computer-science-boulder

Module 1 provides an introduction to the course sequence, motivations, ethical concepts and challenges, and a refresher on networking concepts.

What's included

4 videos4 readings1 assignment1 discussion prompt1 ungraded lab

4 videosTotal 25 minutes

Course Introduction3 minutesPreview module
Motivation and Ethics10 minutes
Networking - The Packet 4 minutes
Networking Part - Brief Journey of a Packet7 minutes

4 readingsTotal 75 minutes

Earn Academic Credit for your Work!10 minutes
Course Support10 minutes
Assessment Expectations5 minutes
Basic Network Resources and Cheat Sheets for Ncat 50 minutes

1 assignmentTotal 30 minutes

Module 1: Introductory Concepts Quiz30 minutes

1 discussion promptTotal 5 minutes

Introduce Yourself5 minutes

1 ungraded labTotal 120 minutes

Module 1 Lab Exercise120 minutes

Module 2 provides an in-depth technical introduction to network packet crafting and interpretation with scapy. Other essential tools such as ncat (and the older netcat!), as well as an introduction to monitoring tools.

What's included

4 videos2 readings1 assignment1 ungraded lab

4 videosTotal 61 minutes

Ncat One9 minutesPreview module
Ncat Two13 minutes
An Introduction to Network Programming with Scapy19 minutes
Inspecting Scapy Traffic19 minutes

2 readingsTotal 150 minutes

SCAPY Introduction Documents30 minutes
Networking Tools120 minutes

1 assignmentTotal 30 minutes

Module 2: Essential Tooling and Libraries Quiz30 minutes

1 ungraded labTotal 120 minutes

Module 2 Lab Exercise120 minutes

Module 3 provides a detailed exposition of Nmap for host discovery, port scanning, service and operating system identification. We touch on firewalking (firewall bypass) and evasion techniques in heavily monitored environments. We also discuss other, related tooling, and manual construction with scapy for some things beyond nmap native capability.

What's included

5 videos1 reading1 assignment1 ungraded lab

Module 4 examines how network recon leads to a variety of network attacks, and the timeline of modern browser-built defenses in encrypted communication, and how these can be bypassed. An advanced attack scenario with malicious software updates is presented.

What's included

5 videos1 assignment1 ungraded lab

5 videosTotal 60 minutes

Network Attacks Part One9 minutesPreview module
Network Attacks Part Two6 minutes
Networks Attack on HTTPS19 minutes
SSLStrip Defenses13 minutes
SSLStrip Defense Bypasses12 minutes

1 assignmentTotal 30 minutes

Module 4: Network Manipulation, Positioning and Practical Attacks/Defenses Quiz30 minutes

1 ungraded labTotal 60 minutes

Module 4 Lab Exercise60 minutes

Most advanced attackers possess evasive capabilities when operating campaigns in any target network -- module 5 builds on previous material and focuses specifically on masking attacker activities with network tunneling. We examine the SSH protocol and tunneling forms, as well as how to use dynamic socks proxies to enable any remote tool to covertly tunnel into, and operate within, a target space.