An up-to-date and effective corporate training program, reinforced with lab support, where you can learn the latest DDoS attack techniques and defense strategies.
The Power Behind Industry Leaders
About Training
DDoS Attacks and Mitigation Training is a corporate training program supported by hands-on labs, providing comprehensive knowledge on denial-of-service attack techniques and corresponding defense strategies.
Throughout the training, participants gain insights into critical areas such as IT configuration errors, bandwidth exploitation, and TCP/IP protocol vulnerabilities. Both Layer 7 (application layer) and Layer 4 (network layer) DoS attack methods are demonstrated in practice.
By the end of the course, participants will understand how DoS and DDoS attacks are executed, learn effective protection techniques, and develop a solid foundation in TCP/IP protocols and various DDoS attack types.
The training is conducted online with lab access between 10:00 AM and 5:00 PM on weekdays, completed over 3 days, and participants receive a wet-signed Privia Security certificate upon completion.
Prerequisites for the Training
Participants are expected to have certain foundational competencies to ensure they can fully benefit from the training:
Basic knowledge of information security
Fundamental understanding of TCP/IP protocols
Who Should Attend the Training?
Our corporate training program is designed for professionals who want to learn the most up-to-date and effective techniques against DoS and DDoS attacks:
Information security specialists
Cybersecurity professionals
System administrators
Network engineers
Digital forensics experts
Law enforcement personnel
Service provider staff
Curriculum
- 3 Sections
- 72 Lessons
- 3 Days
- 1. Day | DoS/DDoS Attacks and Defense24
- 1.1– Wikileaks
- 1.2Real-World DDoS Examples
- 1.3Hacktivist Groups and Their Role in DDoS
- 1.4What is IP Spoofing?
- 1.5DoS/DDoS Concepts
- 1.6What is a Zombie Computer?
- 1.7Operation and Roles of a Zombie Computer
- 1.8Countermeasures Against Zombie Computers
- 1.9What is a Botnet?
- 1.10Botnet Software
- 1.11Historical Botnets and Evolution
- 1.12– Eggdrop
- 1.13– GTBot
- 1.14– Bobax
- 1.15– Rustock
- 1.16– Zeus
- 1.17– Conficker
- 1.18IRC Bots
- 1.19Social Media Bots
- 1.20Mobile Botnets
- 1.21– Mobile Botnet vs PC Botnet Comparison
- 1.22Fast Flux Network Concept
- 1.23– Single-Flux
- 1.24– Double-Flux
- 2. Day | Structure and Encapsulation24
- 2.1Turning Points of the Internet
- 2.2DARPA, ISO
- 2.3ARPANET
- 2.4INTERNET
- 2.5TCP/IP
- 2.6OSI Reference Model and Structure
- 2.7TCP/IP Layers
- 2.8TCP/IP Model and Structure
- 2.9Data Naming in TCP/IP Layers
- 2.10Internet Registry Authorities
- 2.11TCP/IP Protocols and Operation Principles
- 2.12Ethernet and Hardware Addressing
- 2.13Ethernet Structure and Encapsulation
- 2.14ARP (Address Resolution Protocol)
- 2.15ARP Operation
- 2.16ARP Cache
- 2.17ARP Header Structure
- 2.18ARP Spoofing
- 2.19MAC Flooding
- 2.20ICMP Protocol
- 2.21– ICMP Flood
- 2.22IP (Internet Protocol)
- 2.23IP Address Classes
- 2.24IP Header Structure
- 3. Day | DoS/DDoS Prevention Methods and Techniques24
- 3.1– DNS Flood Attacks
- 3.2How HTTP Works
- 3.3– HTTP GET
- 3.4– HTTP POST
- 3.5– HTTP Flood
- 3.6– GET Flood
- 3.7– POST Flood
- 3.8DoS/DDoS Attacks Due to Software or Design Flaws
- 3.9– Slowloris Tool and Usage
- 3.10– What is Rate Limiting?
- 3.11UDP Protocol
- 3.12– UDP Header Structure
- 3.13– Creating UDP Packets with Hping
- 3.14– IP Spoofing at the UDP Layer
- 3.15– UDP Flood
- 3.16– UDP Flood Testing Using Hping
- 3.17DoS/DDoS Attacks Targeting DNS Services
- 3.18– DNS Architecture
- 3.19– DNS Query Types
- 3.20– Recursive Query
- 3.21– Iterative Query
- 3.22– DNS Name Resolution
- 3.23– IP Spoofing in DNS Protocol
- 3.24– DNS and TCP Relationship
