Python Security for Practitioners Training

This 4-day instructor-led training course teaches students how to create their own security defense using the Python programming language.

Course Overview

This training course teaches students how to move from a theoretical understanding of offensive computing concepts to a practical implementation. Instead of relying on another attacker’s tools, this course will teach students to create their own security defense using the Python programming language. This course demonstrates how to write code to intercept and analyze network traffic using Python, craft and spoof wireless frames to attack wireless and Bluetooth devices, and how to data-mine popular social media websites and evade modern anti-virus. 


Python Security for Practitioners Training

10/05/21 - 10/08/21 (4 days)

8:30AM - 4:30PM EST

Tysons Corner, VA
10/12/21 - 10/15/21 (4 days)

8:30AM - 4:30PM EST

10/12/21 - 10/15/21 (4 days)

8:30AM - 4:30PM EST

Columbia, MD

Not seeing a good fit?

Let us know. Our team of instructional designers, curriculum developers, and subject matter experts can create a custom course for you.

Contact Us

Learn more about custom training

Course Outline

Setting Up Your Python Environment

  • nstalling Kali Linux
  • WingIDE

The Network: Basics

  • Python networking in a paragraph
  • TCP Client
  • UDP Client
  • TCP Server
  • Replacing Netcat
  • Building a TCP Proxy
  • SSH with
  • SSH Tunneling 

The Network: Raw Sockets and Sniffing

  • Building a UDP Host Discovery Tool
  • Packet Sniffing on Windows and Linux
  • Decoding the IP Layer
  • Decoding ICMP

Owning the Network with SCAPY

  • Stealing Email Credentials
  • ARP Cache Poisoning with SCAPY
  • PCAP Processing

Web Hackery

  • The Socket Library of the Web: urlib2
  • Mapping Open Source Web App Installations
  • Bruite-Forcing Directories and File Locations
  • Bruite-Forcing HTML form authentication

Extending Burp Proxy

  • Setting Up
  • Burp Fuzzing
  • Bing for Burp
  • Turning Website Content into Password Gold

Github Command and Control

  • Setting Up a GitHub Account
  • Creating Modules
  • Trojan Configuration
  • Building a GitHub-Aware Trojan

Common Trojaning Tasks on Windows

  • Keylogging for Fun and Keystrokes
  • Taking Screenshots
  • Pythonic Shellcode Execution
  • Sandbox Detection

Fun with Internet Explorer 

  • Main n the Browser
  • IE COM Automation for Exfiltration

Windows Privilege Escalation

  • Installing the Prerequisites
  • Create a Process Monitor
  • Windows Taken Privileges
  • Winning the Race
  • Code Injection

Automating Offensive Forensics

  • Installation
  • Profiles
  • Grabbing Password Hashes
  • Direct Code Injection

Python Security for Practitioners Training FAQs

Who should take this course?

This course is intended for security professionals tasked with developing Python applications, Pen testers looking to expand their knowledge into building security tools, and technologists needing customized tool sets.

What is the recommended experience for this course?

Students should have basic experience and understanding of any scripting or programming language.

Subscribe now

Get new class alerts, promotions, and blog posts