Cambridge
Academy
In London
Course Description
Introduction
Cybersecurity threats are becoming increasingly sophisticated, targeting organizations across all sectors. To defend against these threats effectively, professionals must understand not only how systems are protected, but also how they can be attacked. Ethical hacking provides this critical perspective by enabling security professionals to think like attackers in a controlled and lawful manner.
This course is designed to prepare participants for the Certified Ethical Hacker (CEH v12) certification by building a solid foundation in cybersecurity concepts, attack methodologies, and defensive strategies. Participants will gain insight into how vulnerabilities are discovered and exploited, and how to implement effective countermeasures across modern IT environments.
Course Objectives
By the end of this course, participants will be able to:
· Explain the role of ethical hacking within cybersecurity frameworks.
· Conduct structured information gathering and target analysis.
· Identify weaknesses in systems, networks, and applications.
· Understand common attack techniques and how they are executed.
· Apply security controls and mitigation strategies to reduce risk.
· Strengthen overall security posture across different environments.
Target Audience
This course is designed for:
· Cybersecurity and IT professionals seeking certification.
· Network and system administrators.
· Security analysts and consultants.
· Individuals transitioning into cybersecurity roles.
· Anyone interested in ethical hacking and penetration testing fundamentals.
Course Content
Unit 1: Ethical Hacking Concepts and Security Foundations
· Overview of cybersecurity threats and attacker motivations.
· Ethical hacking principles, scope, and professional conduct.
· Core security concepts including risk, vulnerability, and threat modeling.
· Legal and regulatory considerations in security testing.
· Fundamentals of encryption, hashing, and secure communication protocols.
Unit 2: Information Gathering and Target Profiling
· Techniques for collecting publicly available and technical information.
· Identifying digital footprints through open-source intelligence (OSINT).
· Mapping target infrastructure, domains, and network ranges.
· Discovering active hosts, services, and entry points.
· Organizing collected data to support further security analysis.
Unit 3: Exploiting System Weaknesses and Access Techniques
· Understanding how attackers gain initial access to systems.
· Techniques for exploiting misconfigurations and software vulnerabilities.
· Methods used to bypass authentication and escalate privileges.
· Analysis of malicious software behavior and system compromise techniques.
· Applying defensive measures to detect and prevent unauthorized access.
Unit 4: Network-Level Attacks and Defensive Strategies
· Monitoring and analyzing network traffic for vulnerabilities.
· Common attack vectors targeting network infrastructure.
· Human-focused attack techniques and their impact on security.
· Identifying and mitigating service disruption attacks.
· Implementing defensive mechanisms such as intrusion detection and segmentation.
Unit 5: Securing Applications, Wireless Systems, and Emerging Technologies
· Identifying weaknesses in web applications and backend systems.
· Understanding input-based attacks and secure development practices.
· Assessing wireless network vulnerabilities and protection methods.
· Security considerations for mobile environments and endpoint devices.
· Risks associated with interconnected systems such as IoT and industrial technologies.