Conscientia 2010 | Ethical Hacking Workshop

Ethical Hacking Workshop

Workshop

Learn to trace emails, create your own VIRUS (Vital Information Resources Under Siege. Did you know that?!), hack into sites, and get the results you want from google by using simple tricks!

Two students stand to win a scholarship worth Rs. 50,000/-. The scholarship will be given to the best performers of the quiz that will be taken at the end of the workshop. It will be in the form of vouchers worth Rs. 50,000/- for facilities offered by Innobuzz.

Click here to register.

Registrations for this workshop are now closed.

Topics 1

Part I

Why is Security needed?
What is ethical hacking?
Ethical Hacker vs Malicious Hacker
Types of Hackers
Building an approach for ethical hacking

PART II | Google Hacking

What is Google?
How does Google work?
Google Tricks
Basic Hacks
Google Calculator
Google News
Google Tools
How can Google hacking help an ethical hacker?
Preventing Google Crawls
Practical Class: Case Studies

PART III | Scanning

What is Scanning?
Objectives of Scanning
Practical Class
Scanning Tools to be used:
- Nmap
- Null Scan
- Firewalk
- XMAS Scan
- NIKTO
- GFI Languard

PART IV | Email Hacking

How does Email work?
Tracing an Email
Spam
- What is Spamming?
- Methods of Prevention
- Laws about Spamming
Fake Emails
Detecting Fake Emails
Tracing Server variables

Part V | Trojans

Definition
Legend
Difference b/w Trojan, virus and worms
Working of Trojans
Server, Client, Direct & Reverse connections
Trojan Practical
Beast, Bandook etc.
Both direct and reverse connection
Trojans on WAN
Problems – Dynamic IP
NAT
Using netcat as a Trojan
Antivirus Detection process
Heuristics, signatures
Hex editing, source code changes, custom, binders, packers, DLL injection
Social Engineering – Deploying Trojans
Manual Detection
TCP-view, process monitors

Topics 2

Part VI | Session Hijacking

Understanding Sessions
Passive vs. Active session hijack
TCP sessions and HTTP sessions
TCP session hijacking – Telnet
Stealing Cookies to Hijack Session ID - XSS

Part VII | PHP Injection

Understanding Sever side scripting
Using code-injection to escalate privileges
Briefings on PHP, ASP etc.
Coding PHP shell
Using PHP shells
Exploiting file upload vulnerability
PHP vulnerable functions and safe mode
Prevention of code injection

Part VIII | SQL Injection

Defining SQL
Understanding web application
Using SQL to login via middleware language
Checking SQL Injection vulnerability
URL and forms
SQL query SELECT, DROP etc.
SQL cheat sheets
Using source changes to bypass client side validation
PHP magic quotes
Using SQL injection tools
Importance of Server side validation

Part IX | Sniffing

Introduction
Active, Passive
DNS, ARP
Tools
Wireshark, Ettercap Cain n Abel
Detecting Sniffing
DNS Poisoning
Router Hacking
Emulating WAN sniffing

Kit

Participants will be provided with "Innobuzz Ethical Hacking Kit" which contains tons of Information Security Tools. Participants will also be provided with printed handouts which will guide the students through the workshop.

Fees

The fee for the Workshop is Rs. 1100/- per person.

The Payment is to be made by Demand Draft in favour of The Registrar, IIST, Payable at Trivandrum. You also need to send an attested photocopy of the college ID cards of the team members. Do not forget to mention your Registration ID (ID's are provided in the registration mail). DD's received after 23rd February 2010, will NOT be accepted. You are requested to send us an email at 2010[at]conscientia[dot]co[dot]in with a scanned copy of the demand draft, to prevent problems arising due to postal delay.

Please mail your DD at the following address:
Conscientia Office,
Indian Institute of Space Science and Technology,
ATF Campus, ISRO P.O., Thumba,
Thiruvananthapuram 695022,
Kerala

Important Information

Participants must register on the website to attend this workshop.
Certificates will be awarded to all the participants.
For any queries and clarifications, contact wnl[at]conscientia[dot]co[dot]in.

List of DDs Received

To be updated soon.

Home | About Us | Certificate Policy | Get in Touch | Credits
Copyright © Conscientia 2010. All Rights Reserved.
Site best viewed in Firefox 3.5 (1280x800 pixels).

WHAT'S NEW?

RESULTS ANNOUNCED!

Click to view results of Pragmaticus, Propulsion GenNext and AHADS and Henceforth!

PRAKSHEPAN

Constraints added and launcher photos uploaded in water rocketry event. Click here for more.

ASCENT

Rules changed and FAQs added. Click here for more.

ACCOMMODATION

Registrations for accommodation are now closed. Click here to review instructions and details.

INSTRUCTIONS

All participants coming to IIST for Conscientia to note a few things very importantly. Click here to view.

RESULTS ANNOUNCED!

Click to view results of Mathematrix, PhyKnight, AstroReflections, Avdhaarna and Chain Quiz 2!

PRIZES ANNOUNCED!

Total prizes worth Rs. 1.5 lakh to be won! Hurry and register now!

Final Schedule
Further changes, if any, will be notified at the campus.
Travel Arrangements

SPONSORS