CEH v11: Hijacking Concepts & Countermeasures

Ethical Hacker v11    |    Intermediate
  • 4 Videos | 1h 2m 20s
  • Includes Assessment
  • Earns a Badge
Sessions are like a verified conversation between trusted systems, which makes session hijacking a common form of attack. In this course, you'll learn about session hijacking, including how it's accomplished and the different types. Session hijacking attacks can be performed at the network level, so you'll also explore common network-based session hijacking attacks such as UDP, TCP, and RST hijacking. Next, you'll move on to examine common application level session hijacking attacks such as man-in-the-middle, man-in-the-browser, cross-site scripting, and cross-site request forgery. Finally, you'll learn about common session hijacking security controls and countermeasures, as well as best practices like using encrypted protocols and secure session handling techniques. This course is one in a series that helps to prepare you for the Certified Ethical Hacker v11 (312-50) exam.

WHAT YOU WILL LEARN

  • describe session hijacking and how it can be accomplished
    recognize the different types of session hijacking
    identify tools and details that can be used to perform session hijacking using man-in-the-middle attacks
    recall the details necessary to perform common network based session hijacking attacks like UDP, TCP, and RST hijacking
    recognize the details of common network based session hijacking attacks
    describe common application level session hijacking attacks
  • describe the man-in-the-browser application level session hijacking attack
    identify the protocols or components that can be taken advantage of by an application level session hijacking attack
    identify the types of cross-site scripting (XSS) application level session hijacking attacks
    describe common session hijacking security detection methods and best practices
    recognize common session hijacking security controls, best practices, and secure session handling techniques

IN THIS COURSE

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

Skillsoft is providing you the opportunity to earn a digital badge upon successful completion of this course, which can be shared on any social network or business platform

Digital badges are yours to keep, forever.