UK flag UK
+44 (0) 207 874 5000
+44 (0) 207 874 5000
  • Home
  • Courses
  • Vulnerability Assessment Training: Protecting Your Organization

Vulnerability Assessment Training: Protecting Your Organization

Course 589

  • Duration: 4 days
  • Labs: Yes
  • Language: English
  • 32 (ISC)2 CPE A Credits
  • Level: Intermediate

This training course on Vulnerability Assessment instructs participants on minimising expensive security breaches and assessing risks within their enterprise stemming from various vulnerabilities.

Participants will learn to develop a comprehensive checklist for network security vulnerability assessments, pinpointing weaknesses in infrastructure, servers, web applications, and desktops. Moreover, the course covers report creation and interpretation, configuration of vulnerability scanners, identification of vulnerability points, and strategies for preventing network exploitation.

Vulnerability Assessment Training Delivery Methods

  • In-Person

  • Online

Vulnerability Assessment Training Course Information

In this course, you will learn how to:

  • Detect and respond to vulnerabilities, and minimise exposure to security breaches
  • Employ real-world exploits and evaluate their effect on your systems
  • Configure vulnerability scanners to identify weaknesses
  • Analyse the results of vulnerability scans
  • Establish an efficient strategy for vulnerability management

Prerequisites

Before taking this course, you should have a basic understanding of network security and security issues at the level of

And you should have an understanding of the following:

  • TCP/IP networking
  • Network security goals and concerns
  • The roles of firewalls and intrusion detection systems

Continuing Education Information

Vulnerability Assessment Course Outline

Introduction

  • Defining vulnerability, exploit, threat and risk
  • Creating a vulnerability report
  • Conducting an initial scan
  • Common Vulnerabilities and Exposure (CVE) list

Scanning and exploits

  • Vulnerability detection methods
  • Types of scanners
  • Port scanning and OS fingerprinting
  • Enumerating targets to test information leakage
  • Types of exploits: worm, spyware, backdoor, rootkits, Denial of Service (DoS)
  • Deploying exploit frameworks

Uncovering infrastructure vulnerabilities

  • Uncovering switch weaknesses
  • Vulnerabilities in infrastructure support servers
  • Network management tool attacks

Attacks against analysers and IDS

  • Identifying Snort IDS bypass attacks
  • Corrupting memory and causing Denial of Service

Exposing server vulnerabilities

  • Scanning servers: assessing vulnerabilities on your network
  • Uploading rogue scripts and file inclusion
  • Catching input validation errors
  • Performing buffer overflow attacks
  • SQL injection
  • Cross-Site Scripting (XSS) and cookie theft

Revealing desktop vulnerabilities

  • Scanning for desktop vulnerabilities
  • Client buffer overflows
  • Silent downloading: spyware and adware
  • Identify browser privilege escalation vulnerabilities

Implementing scanner operations and configuration

  • Choosing credentials, ports and dangerous tests
  • Preventing false negatives
  • Creating custom vulnerability tests
  • Customising Nessus scans
  • Handling false positives

Creating and interpreting reports

  • Filtering and customising reports
  • Interpreting complex reports
  • Contrasting the results of different scanners

Researching alert information

  • Using the National Vulnerability Database (NVD) to find relevant vulnerability and patch information
  • Evaluating and investigating security alerts and advisories
  • Employing the Common Vulnerability Scoring System (CVSS)

Identifying factors that affect risk

  • Evaluating the impact of a successful attack
  • Determining vulnerability frequency
  • Calculating vulnerability severity
  • Weighing important risk factors
  • Performing a risk assessment

The vulnerability management cycle

  • Examine Common Platform Enumeration and how to use it
  • Patch and configuration management
  • Analysing the vulnerability management process

Vulnerability controversies

  • Investigating CPE
  • Baseline management
  • Achieving compliance
Get This Course £2,195 For Team Prices Call: 44 (0) 207 874 5000

  • 4-day instructor-led training course

  • Earn 23 CompTIA CEUs

  • One-on-one after course instructor coaching

Get the Advantage £3,150
  • Take this course and gain unlimited access to more than 300 virtual instructor-led courses
  • Future-proof your career with more than 100 sought-after certifications in the market
  • Build real skills through hands-on learning in more than 180 virtual labs
  • Grow your skills and capabilities with more than one course at a time and save
Thank you for choosing subscriptions!
#589
  • Guaranteed to Run - you can rest assured that the class will not be cancelled.
    Jul 29 - Aug 1 9:00 AM - 4:30 PM BST
    Virtual
  • Aug 5 - 8 2:00 PM - 9:30 PM BST
    Virtual
  • Sep 23 - 26 2:00 PM - 9:30 PM BST
    Herndon, VA or Virtual
  • Oct 27 - 30 9:00 AM - 4:30 PM GMT
    London or Virtual
  • Jan 6 - 9 2:00 PM - 9:30 PM GMT
    Herndon, VA or Virtual
  • Jan 27 - 30 9:00 AM - 4:30 PM GMT
    London or Virtual
  • Apr 27 - 30 9:00 AM - 4:30 PM BST
    London or Virtual

  • Bring this or any training to your organisation

  • Full-scale program development

  • Delivered when, where, and how you want it

  • Blended learning models

  • Tailored content

  • Expert team coaching

Get the Advantage £3,150
  • Take this course and gain unlimited access to more than 300 virtual instructor-led courses
  • Future-proof your career with more than 100 sought-after certifications in the market
  • Build real skills through hands-on learning in more than 180 virtual labs
  • Grow your skills and capabilities with more than one course at a time and save
Thank you for choosing subscriptions!
#589
Questions about this course?
* Required Fields
Customise Your Team Training Experience

Fill out the form below or call 44 (0) 207 874 5000

* Required Fields
Preferred method of contact:

Need Help Finding The Right Training Solution?

Our training advisors are here for you.

Contact Us

Course FAQs

The process of defining, identifying, classifying and prioritising what vulnerabilities are in your system.

This assessment aims to find out what vulnerabilities may be within your system in time to fix them.

A vulnerability assessment scans for known vulnerabilities, while a penetration test tries to exploit and fix the weaknesses actively.

Yes! We know your busy work schedule may prevent you from getting to one of our classrooms which is why we offer convenient online training to meet your needs wherever you want. This course is available in class and live online.

Related Courses

  • Learning Tree
    Introduction to Cybersecurity

    The Information Security Training provides the knowledge and skills to analyze and assess network risks, then select & deploy appropriate countermeasures.

    Foundation
    3 days
    Online or In-class
    Starts from £2,515