Windows Exploits and Forensics: Legacy Systems & Third Party Applications

Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level

---

Overview/Description

When an organization uses systems that are no longer serviced and supported and therefore, do not receive security updates, they expose themselves to serious security attacks. To ensure a healthy network ecosystem, security operations personnel must be aware of the vulnerabilities these systems are exposed to.

In this course, you'll explore how to conduct offensive security operations against legacy Windows-based systems. You'll learn to recognize older versions of Windows, identify common exploits for these older versions, and scan Server 2008 for vulnerabilities. You'll then learn how to enumerate Server 2008, exploit legacy systems, and gain a reverse shell on a legacy system. You'll then learn how to recognize common third-party applications and vulnerabilities and how to exploit them. Finally, you'll learn how to identify and avoid a honeypot.

Expected Duration (hours)
1.0

Lesson Objectives

Windows Exploits and Forensics: Legacy Systems & Third Party Applications

discover the key concepts covered in this course

identify common attacks against legacy Windows host-based machines

identify common attacks against legacy Windows Server-based machines

scan a Windows Server 2008 environment for potential vulnerabilities

enumerate data from services running on Windows Server 2008 hosts

run an exploit on a Windows Server 2008-based machine to gain user credentials

run an exploit on a Windows-based machine to gain a reverse shell

list common third-party applications used in Windows environments

outline how to find vulnerabilities for third-party applications

exploit a third-party application and gain access to a system

recognize a honeypot and how to avoid falling into their trap

summarize the key concepts covered in this course

Course Number:
it_cywexfdj_05_enus

Expertise Level
Intermediate