Advanced Infrastructure Hacking Training in Germany

  • Learn via: Classroom
  • Duration: 5 Days
  • Level: Expert
  • Price: From €6,123+VAT
We can host this training at your preferred location. Contact us!

IT infrastructure is more complex and dynamic than it’s ever been demanding comprehensive, up-to-date, and well-rehearsed security skills to match. Join this, fresh for 2023, hands-on 5-day course to push your infrastructure hacking to the next level and widen your career prospects.

Get your hands dirty with our popular virtual labs and learn from experienced, practicing penetration testers with a legacy of training at Black Hat.

Who’s it for?

  • Penetration testers and red teamers
  • Security consultants and architects
  • Network admins with security experience
  • CSIRT/SOC teams/blue teamers
  • Security/IT managers and team leads

Top 3 takeaways

  • Many of the latest and most complex infrastructure testing techniques
  • Hacks to use against your organisation’s own products
  • Knowledge of how to remediate as well as attack weaknesses in infrastructure

What you’ll learn

This course uses a Defence by Offence methodology based on real world engagements and offensive research (not theory). That means everything we teach has been tried and tested on live environments and in our labs, so you can put it into practice as soon as the training is over. By the end of the course, you’ll know:

  • How to think and behave like an advanced, real world threat actor
  • How to identify commonly used vulnerabilities known to have recently caused damage and disruption
  • How to deploy the latest and most common network infrastructure and cloud hacks, (including many novel techniques that can’t be detected by scanners)
  • How to analyse vulnerabilities within your own organisation and customise your hacking techniques in response
  • A huge menu of hacks for Windows, Linux, Microsoft Azure, AWS, Google Cloud Platform (GCP), software development systems, and more...

What you’ll be doing

You’ll be learning hands on:

  • Spending most of the session (~80%) on lab-based exercises
  • Using lab-based flows to explore and hack lifelike web application environments
  • Discussing the impact of the hacks covered with your course trainer

As different on-premise and cloud environments shapeshift and converge, the practice of infrastructure security is becoming more complex. Organisations and their security teams can no longer afford to understand the overarching attack surface at a high level. Nor can they rely on the same security practices that worked in the past. What’s needed is a thorough, contextual understanding of how and why your architecture and systems get targeted by threat actors, which are at risk, and what happens when those attacks succeed. Our Advanced Infrastructure Hacking course provides delegates with this knowledge and more, by giving them an up-to-date arsenal of advanced offensive testing and remediation skills.

Our syllabuses are revised regularly to reflect the latest in-the-wild hacks and whatever proof of concepts we’ve been developing through our own research. Because they remain so up to date with the threat landscape and security industry standard, many delegates return every 1-2 years to update their skills and get a refresh.

What’s in the syllabus

IPV4/IPV6 SCANNING AND OPEN-SOURCE INTELLIGENCE GATHERING (OSINT)

  • IPv6 service discovery and enumeration
  • Exploiting systems/services over IPv6
  • Host discovery and enumeration
  • Advanced OSINT and asset discovery
  • Exploiting DVCS and CI-CD server

HACKING DATABASES

  • PostgreSQL / MySQL
  • Oracle
  • NoSQL

WINDOWS EXPLOITATION

  • Windows enumeration and configuration Issues
  • Windows desktop breakout and AppLocker bypass techniques (Win 10)
  • Local privilege escalation
  • Windows Antivirus
  • Offensive PowerShell /Offsec Development
  • AMSI bypass Techniques
  • AV Evasion Techniques
  • Post-exploitation Tips, Tools, and Methodology

ACTIVE DIRECTORY ATTACKS

  • Active Directory delegation reviews and pwnage (Win 2016 Server)
  • Pass the hash/ticket
  • Cross domain and forest attacks
  • Pivoting, port forwarding, and lateral movement techniques
  • Persistence and backdooring techniques (Golden and Diamond Ticket)
  • Command and Control (C2) frameworks

LINUX

  • Linux vulnerabilities and configuration issues
  • Treasure hunting via enumeration
  • File share/SSH Hacks
  • X11 Vulnerabilities
  • Restricted shells breakouts
  • Breaking hardened web servers
  • Local privilege escalation
  • MongoDB exploitation
  • TTY “Teletype” hacks and pivoting
  • Gaining root access via misconfigurations
  • Kernel exploitation
  • Post exploitation
  • Persistence techniques

CONTAINER BREAKOUT

  • Kerberos authentication
  • Breaking and abusing Docker
  • Exploiting Kubernetes vulnerabilities
  • Breaking out of Kubernetes containers

CLOUD HACKING

  • AWS, MS Azure, and GCP specific attacks
  • Storage misconfigurations
  • Credentials, APIs, and token abuse
  • Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Software as a Service (SaaS), Container as a Service (CaaS), and serverless exploitation
  • Azure AD attacks
  • Exploiting insecure VPN configuration
  • VLAN hopping attacks

Note: our syllabuses are subject to change based on new vulnerabilities found and exploits released.

Course highlights

What delegates love:

  • Our labs: probably the biggest selling point for our courses. Not only will you spend most of the course hacking hands-on in a lifelike web environment.
  • Individual access: you’ll have your own infrastructure to play with, enabling you to hack at your own speed.
  • Real-world learning: where many of the leading cybersecurity training courses are based on theory, our scenario-led, research-based approach ensures you learn how real threat actors think and behave.
  • Specialist-led training: you’ll learn from highly skilled and experienced practicing penetration testers and red teamers.
  • Up-to-date content: our syllabus remains so relevant and current, delegates come back year on year for more.
  • Remediations included: you’ll learn how to fix as well as find vulnerabilities.
  • Course topics: our cloud and AD modules are a favourite.


Contact us for more detail about our trainings and for all other enquiries!

Upcoming Trainings

Join our public courses in our Germany facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

Classroom / Virtual Classroom
22 November 2024
Berlin, Hamburg, Münih
5 Days
Classroom / Virtual Classroom
22 November 2024
Berlin, Hamburg, Münih
5 Days
Classroom / Virtual Classroom
17 Januar 2025
Berlin, Hamburg, Münih
5 Days
Classroom / Virtual Classroom
09 Februar 2025
Berlin, Hamburg, Münih
5 Days
Classroom / Virtual Classroom
11 Februar 2025
Berlin, Hamburg, Münih
5 Days
Classroom / Virtual Classroom
17 Januar 2025
Berlin, Hamburg, Münih
5 Days
Classroom / Virtual Classroom
15 Februar 2025
Berlin, Hamburg, Münih
5 Days
Classroom / Virtual Classroom
20 Februar 2025
Berlin, Hamburg, Münih
5 Days

Related Trainings

Advanced Infrastructure Hacking Training Course in Germany

The Federal Republic of Germany is the second most populous country in Europe and is located in Central Europe. The official language of the country is German. Germany is one of the richest countries in the world. The main exports of the country include motor vehicles and iron and steel products.

Here are some fun facts about Germany:
The fairy tale writer, the Brothers Grimm, came from Germany and wrote many famous stories such as Cinderella, Snow White, and Sleeping Beauty.
Germany is home to the largest theme park in Europe, the Europa-Park.
The famous composer Ludwig van Beethoven was born in Germany.
The Autobahn, the German highway system, is known for having no general speed limit.


Berlin was divided by the Berlin Wall from 1961 to 1989. Known for its street art, Berlin has many colorful murals and graffiti throughout the city. Also, Berlin is home to many famous museums, such as the Pergamon Museum and the Museum Island. Many clubs and bars stay open until the early hours of the morning in this big city.

Another popular city is Munich, which is famous for its Oktoberfest beer festival that attracts millions of visitors every year. Munich is also home to many historic buildings, including Nymphenburg Palace and the Marienplatz town square.

The country's capital and largest city is Berlin, however Frankfurt is considered to be the business and financial center of Germany. It is home to the Frankfurt Stock Exchange, the European Central Bank, and many other financial institutions. Because of its central location within Europe and its status as a major financial hub, Frankfurt is often referred to as the "Mainhattan," a play on the city's name and its association with the Manhattan financial district in New York City.

Frankfurt is also a major transportation hub, with the largest airport in Germany and one of the largest in Europe, Frankfurt Airport. Additionally, it is a popular destination for tourists, with its historic city center, beautiful parks, and vibrant cultural scene.

Some of the top German technology companies like Siemens AG, Bosch, SAP SE, Deutsche Telekom, Daimler AG and Volkswagen has business centers in Frankfurt. The country has a strong tradition of engineering and innovation, and is home to many other world-class technology companies and research institutions.

Tailored to meet the specific needs of Germany, Bilginç IT Academy combines cutting-edge training methodologies with our comprehensive range of Certification Exam preparation courses and accredited corporate training programs. Experience a transformative approach to IT training that will redefine your expectations.
By using this website you agree to let us use cookies. For further information about our use of cookies, check out our Cookie Policy.