• Home
• Topics
• Threat management and prevention
• Penetration Testing and Ethical Hacking-Threat management and prevention
• Where can I find an advanced ethical hacking/penetration testing course?

Where can I find an advanced ethical hacking/penetration testing course?

There are two schools of thought when it comes to advanced penetration testing: 1) becoming an expert of tools and methods and 2) becoming an expert of the vulnerabilities and exploit code. Both are valid pursuits intellectually and professionally, and they are not necessarily mutually exclusive. But diving into exploit code clearly requires knowledge of programming.

Since the question stated that you are more interested in knowledge than a certificate/certification, one course popped into my head immediately. I would recommend the InfoSec Institute's Advanced Ethical Hacking Course taught by Jack Koziol. In the course he not only covers the tools and methods such as SQL Injection, sniffing SSL encrypted sessions and Metasploit, but he also covers the code end of the equation with reverse engineering and writing your own exploit code. In addition, there is an option to sit for the Certified Expert Penetration Tester (CEPT) exam (not to be confused with the more well known cert from Mile2 CPTE), but the CEPT barely registers a blip on the security credential scene, so this is completely optional. If knowledge is your reward, Jack is your man.

Dig Deeper

This was first published in November 2006

More from Related TechTarget Sites

• Security
• Cloud Security
• IT Channel
• Networking Channel
• Systems Channel
• Storage Channel

• Security

  • Using social engineering testing to foster anti-social engineering training

    Worried your users could easily be pwned? Learn about improving social engineering testing to foster anti-social engineering training.

  • BeyondTrust acquires eEye Digital Security for vulnerability management

    Analysts say eEye’s vulnerability and configuration management capabilities are a good fit with BeyondTrust’s privilege management and AD integration.

  • How to detect and mitigate Poison Ivy RAT malware-style attacks

    Learn how to prevent malcode like the Poison Ivy RAT malware, sophisticated malware that has been crafted especially for an enterprise take-down.

• Cloud Security

  • Quiz: Understanding cloud-specific security technologies

    Think you understand cloud-specific security technologies as well as expert Joseph Granneman does? Test your knowledge with this quiz.

  • CSA launches cloud security certification initiative for service providers

    Plan calls for working with certification bodies, government agencies, as well as an independent CSA certification.

  • PCI virtualization compliance still a challenge

    No black and white when it comes to PCI compliance in virtualized environments, experts say.

• IT Channel

  • To the cloud: Solution providers offer cloud assessment, deployment services

    As more companies look to the cloud, IT solution providers find opportunities in guiding customers through cloud assessment and pilot project deployment.

  • Partner focus strengthens CA Technologies’ channel strategy

    CA Technologies is changing how it interacts with the channel and has launched a fresh partner program with a new portal that offers training and marketing support for partners.

  • Mobile data management in spotlight as SMB tablet use grows

    The best way to secure data in the tablet age is to establish centralized data policies and implement mobile data management, solution providers say.

• Networking Channel

  • Think you can't make digital signage sales?

    When video wall technology was expensive it was hard to sell. But selling digital signage has dropped in cost and many companies are now eager to replace static signs.

  • Cisco Partner Summit 2012: Support services, cloud and mobility reign

    At Cisco Partner Summit 2012, Cisco continues its attempt to improve business by refocusing its channel partner strategy with support services, mobility and cloud announcements.

  • Cisco Smart Services: Partners can customize with open APIs

    At Cisco Partner Summit 2012, the company extended its Cisco Smart Services plan, promising to make management services more customizable and simpler to maneuver.

• Systems Channel

  • How BYOD can be an opportunity for VARs

    It may seem like BYOD squeezes VARs out of the purchasing cycle, but there are opportunities to take advantage of this trend.

  • V2V conversion using VMDK to VHD Converter

    If your VMware customers are interested in Microsoft Hyper-V, you can use the VMDK to VHD Converter tool to perform a V2V conversion and migrate VMs.

  • Five ways your VDI implementation can fail

    Solution providers can win with VDI solution sales, but failure to communicate with customers and manage expectations can kill a VDI implementation.

• searchStorageChannel

  • The pros and cons of cloud backups for storage resellers

    In this interview, see the pros and cons of cloud backup compared with tape backup, as well as how storage VARs can take advantage of that to guide their customers in the move to the cloud.

  • HIPAA-compliant cloud storage services: Due diligence is key to survival

    To provide HIPAA-compliant cloud storage services, storage VARs and MSPs face many, grave regulatory requirements. Learn about the risks and get advice for performing due diligence.

  • EMC readies new VMAX storage, will unveil VMAX 40K at EMC World 2012

    Headlines: EMC’s latest VMAX storage is the VMAX 40K; the vendor will officially launch its highest-end enterprise array and Enginuity software at EMC World 2012.

• About us
• Contact us
• Site index
• Privacy policy
• Advertisers
• Business partners
• Events
• Media kit
• TechTarget corporate site
• Reprints
• Site map