back to overview
Hacking 101

Delivery: classroom // Duration: 3 days

During this course attendees will learn basic principles as well as common and more advanced tricks to break modern security mechanisms. The subjects of this workshop cover network security, low level software exploitation, reverse engineering, web application macking and more.


Learning Objectives

Attendees will learn to think and act with the mindset of an attacker. Understanding their routine, tools and procedures will enable you to gain a novel outside perspective onto your current setups and deployments. With this knowledge, you will find yourself capable of locating and addressing the most pressing threats faster and more efficiently. 


Course Content

Day one

  • Enumeration: Initial information acquisition (for example about Google Hacking, social networks or meta data analysis)

    • Network based enumeration (Portscans, different Portscan technologies, Banner Grabing)

    • Basic analysis of network traffic

  • Vulnerability Scanning: Introduction to different categories of weak points

    • Identification of weak points

  • Buffer Overflows: Functionality of Buffer Overflows

    • Modeling own exploits

Day two

  • Exploiting with Metasploit: Handling the Exploit Framework

    • Selection of suitable exploits

    • Goal-orientated use of payloads

    • Modeling your own Trojans

  • Hacking Applications: Comprehension of weak points on the level of application

    • Analysis of sample programs

    • Avoiding safety functionality in applications

  • Hacking Networks part 1 (regarding Cisco hardware): Attacks on Layer 2 (Man-in-the-Middle situations)

Day three

  • Hacking Networks Part 2 (regarding Cisco hardware)

  • Attacks on Layer 3: Attacks on network devices as well as on infrastructure

  • WLAN Hacking: Avoiding basic protective mechanisms, evaluation of advanced mechanisms

All modules entail concluding hands-on exercises, in which participants can exercise their theoretical knowledge practically. In compliance with the participants the results of these practices can be requited with scores, which will lead to a positioning on a scoreboard.


Target Audience

The course imparts essential knowledge and practical experience for a discrete realization of established and current attacks.This knowledge is useful to understand security measures and to evaluate their necessity.


Pre-requisite for Course Registration

  • IT-Security officers

  • Prospective penetration testers

  • New members of CERTs/Red teams


Pre-requisite for Attending

Own computer (preferably laptop), USB-/CD-bootable, administrative rights inclusive installed VMWare Workstation/ VMWare Player/Virtual Box.

  • Basics, which are of advantage for this course

  • Basic programming knowledge in at least one coding language

  • Practical experience with Shells(Command/PowerShell in Windows, Bash in Linux)

  • Basic TCP/IP knowledge (for example ARP, ICMP, SNMP)

  • Basic network infrastructure knowledge (Switching: VLAN, Trunk Port, routing: statistical, dynamic routing)

  • These basics are not absolutely necessary for participating, but foster the learning success during the course


How to get to the ISH Campus?

Address: Südallee 1 85326 Munich, Germany
Phone: +49 (0)89 975 32275

By car - from the A92 / Munich

Leaving the motorway A92 you will find yourself at the "Zentralallee". When reaching the first bridge, turn right and leave the "Zentralallee" following the sign with direction "Cargo/FOC".  When reaching the second bridge turn right again following "FOC". Continue to follow the street  until the end - for approx. 1,5 km -  and turn left. On your right you will reach the “Luftpostleitstelle” where the ISH is located. 

By S-Bahn / airplane

Take the S-Bahn line S8 or S1 and drive to the “Besucherpark”. Exit the S-Bahn station towards the Flight Operations Center (FOC / Lufthansa) and at the bottom of the stairs, turn left and follow the road for approx. 1,5 km, leaving the "Frachtgebäude/Cargo" at your right hand side. At its end turn left and you will reach the "Luftpostleitstelle" where the ISH is located. 

Are events and trainings in English or in German?

Since we want to provide the best trainings and events for “Securing the Global future” we offer our programs in both English and German. You can tell which language the training or event is in by which flag icon is listed next to the title. A British flag for English or the German flag for Deutsch.

How can I book an open class or company training?

For our "CDC Handling" open class trainings please register via our online registration form. If you plan a company training please arrange a date with our training department, as we offer these trainings on demand.

Which hotels are in the area?

While there are a wide range of hotels around the airport we have personally stay at both the Hilton and Hotel Novotel, and find them to be very nice and accommodating.

Hilton Munich Airport

Address: Terminalstraße Mitte 20, 85356 München-Flughafen
Phone: +49 (0)89 97820

Hotel Novotel

Address: Nordallee 29, 85356 München

Phone: +49 (0)89 9705130