RCCE1: Rocheston Certified Cybersecurity Engineer – Level 1

Module 1 : Cybersecurity Threats, Attacks and Defenses

• Develop a comprehensive understanding of cybersecurity threats and the concept of cyberthreat.
• Analyze various types of security controls and their applications in cybersecurity.
• Gain a deep understanding of defense-in-depth strategies and their role in minimizing cybersecurity vulnerabilities.
• Evaluate and compare different categories of cybercriminals and their motivations.
• Enhance analytical skills to interpret cybersecurity findings and identify key insights.
• Study various cybercrime attack methods and learn from real-life case studies.
• Acquire knowledge on data breach prevention techniques and best practices.
• Learn effective strategies to prevent and mitigate Distributed Denial of Service (DDoS) attacks.
• Understand phishing attacks and develop skills to anticipate and counter such threats.
• Gain insights into malware types, their misuse, and defense mechanisms.
• Familiarize with the Greynoise Visualizer and its applications in cybersecurity analysis.
• Investigate insider attacks and develop strategies to minimize their impact.
• Understand the risks associated with mobile phones, rogue apps, and devise appropriate security measures.
• Explore the role of the Internet of Things (IoT) in the digital age and its implications on cybersecurity.
• Develop a deep understanding of cloud computing and its associated cybersecurity challenges.
• Recognize the dangers of social networks and develop strategies to protect against potential threats.
• Understand the limitations of passwords and explore alternative authentication methods.
• Learn about two-factor and biometric authentication and their role in providing secure solutions.
• Investigate global crime syndicates, their operations, and the dark web.
• Gain insights into the assassination market, phishing scams, and various types of phishing attacks.
• Acquire comprehensive knowledge about ransomware and its impact on businesses and individuals.
• Understand economic espionage, its methods, and the targeting of trade secrets.
• Explore the impact of artificial intelligence (AI) on cybersecurity and potential threats.
• Discover various defense mechanisms to protect against cybercriminals and their attacks.
• Develop a thorough understanding of GDPR compliance and its complexities in relation to cybersecurity.

Module 2 : Reconnaissance, ML and Artificial Intelligence

• Develop a comprehensive understanding of the footprinting process and the steps involved in information gathering.
• Examine various types of information gathering techniques.
• Gain insights into the perspectives of both attackers and investigators during the information gathering process.
• Develop a solid understanding of the OSI model’s seven layers and the TCP/IP model architecture.
• Learn how to create multiple logical networks using subnetting techniques.
• Study the evolution of IP addresses, including the role of ASN numbers and BGP protocols.
• Explore the concept of Internet Exchange Points and their importance in network infrastructure.
• Gain knowledge about cloud computing, cloud storage providers, and their significance in modern networking.
• Understand the role of caching servers in network performance optimization.
• Learn about Anycast protocols, Cloudflare infrastructure, and various applications that leverage these technologies.
• Understand the importance of the QUIC protocol and its implications for network performance.
• Explore the rationale behind implementing SSL and TLS protocols for HTTPS security.
• Investigate the usage of Content Delivery Networks and various web services that rely on these platforms.
• Delve into the importance of the IPFS filesystem and its role in distributed storage.
• Learn how network diagnostic tools such as Ping and Traceroute function.
• Explore various port scanning tools and their applications in network security.
• Take a deep dive into DNS operations, including different DNS types and their functions.
• Understand the concept of website monitoring and the tools used for effective monitoring practices.
• Study the OSINT framework and its applications in open-source intelligence gathering.
• Investigate tools and techniques for finding and analyzing servers and other devices on internet networks, including Maltego, theHarvester, Kamerka tool, Spiderfoot, Creepy, and Foca.
• Learn about website mirroring tools and their potential applications in network security.
• Understand real-world spoofing techniques and how to detect and mitigate their impact.
• Develop skills for identifying and dealing with fake news and fake people, including the tools used for creating and detecting fake content.
• Learn strategies for protecting web content from unauthorized access and manipulation.
• Explore the techniques behind Deepfake technology and its implications for digital media.
• Discover how face detection technology works, including the tools used for cognitive services and machine learning.
• Gain experience working with TensorFlow, real-time object detection, and training data sets for machine learning models.
• Learn how Deepfake faceswaps are created and the potential impact of fake video content on digital media.
• Discover methods for preventing video tampering and maintaining the integrity of digital media assets.
• Investigate reputation management tools, internet censorship, and strategies for accessing blocked websites.
• Learn about alternative internet infrastructure and how to use it during internet shutdowns or restrictions.
• Understand the role of proxy servers in network access and the different types of proxy servers available.
• Learn how to safely access networks using Google’s Outline Tool and other secure tunneling technologies.
• Develop skills for maintaining digital privacy and browsing anonymously using web proxies.
• Delve into the dark web and deep web, and explore their implications for cybersecurity.
• Assess the financial motivations behind cybercrime, organized cybercrime groups, and their impact on network security.
• Investigate anonymous web hosting services and their role in facilitating cybercrime.
• Understand the growing importance of real-time media communication platforms and their potential impact on traditional email communication.
• Explore WebRTC applications and how they function in modern communication infrastructures.
• Gain knowledge about data privacy, strategies for protecting data, and the role of AI tools in detecting privacy policy violations and legal complaints.
• Learn about the Cybersecurity Tech Accord, GDPR compliance, and their implications for organizations.
• Investigate the legal and ethical considerations surrounding cookie laws, data mining, and analytics.
• Develop proficiency in using various information gathering tools and techniques to enhance network security.
• Learn how network scanners are used to assess and secure both small home networks and larger networks with thousands of connected devices.

Module 3 : Cyber Vulnerabilities

• Develop an understanding of various types of vulnerabilities and their impact on computer security.
• Gain knowledge about the different stages of the hacking lifecycle, and learn to recognize zero-day vulnerabilities.
• Acquire skills to ensure internal network security and implement effective vulnerability management strategies.
• Develop expertise in conducting security audits and vulnerability assessments in compliance with industry standards.
• Learn the working mechanism of network vulnerability scanners and explore available tools and technologies.
• Understand the role of threat intelligence in ensuring the reliability of information, and gain insights into Greynoise and Shadowserver Threat Intelligence.
• Develop proficiency in Splunk Data Analysis and Splunk Architecture for cyber threat detection and mitigation.
• Familiarize with Cybersecurity Policy Framework and its role in supporting the development of cybersecurity regulations.
• Gain knowledge about key concepts in cybersecurity policy, the Geneva Convention, and cybercrime laws.
• Acquire an understanding of NIST guidelines for securing servers and the NIST Cybersecurity Framework.
• Learn about the CMMC Model structure and its application in cybersecurity management.
• Develop expertise in penetration testing methods, Defense in Depth, and the importance of regular pen testing for organizations.
• Gain proficiency in pen testing framework workflow and cheatsheet, along with various vulnerability scanners and network discovery tools.
• Develop skills in using Microsoft Defender, Darktrace-AI Scanner, Extrahop Reveal(X), Netwrix Auditor, SolarWinds Risk Intelligence, and Nessus for detecting and mitigating cyber threats.
• Learn about Microsoft Application Inspector, Qualys, and machine learning-enabled security applications like CrowdStrike Falcon, Rapid7 Insight VM, and Trustwave Network Scanner.
• Develop expertise in managing and securing IoT devices using Retina IoT Scanner (RIoT) and other relevant tools.
• Gain proficiency in using ImmuniWeb, Netsparker, Detectify, bbqsql SQL Injection Tool, Lynis, Nikto, and Faraday for detecting web application vulnerabilities, leaked data, and personal PIIs.
• Acquire the ability to assess system compliance, detect vulnerabilities, and develop effective strategies for securing networks and systems against cyber threats.

Module 4 : Web Application Attacks Course Objectives

• Comprehend the significance of developing modern web applications that are reliable, secure, and flexible to meet evolving user demands and business needs.
• Gain a comprehensive understanding of web applications and their inherent complexities, including an overview of various web architectures and how web application attacks operate.
• Study modern web application languages and frameworks, such as JavaScript, Python, and Ruby on Rails, to understand their role in developing secure web applications.
• Explore socket programming, Grepper, and Dfinity Distributed Computer, and discover how these technologies contribute to the performance and security of web applications.
• Investigate the benefits of Microsoft PowerShell for automating and simplifying various processes in web application development and management.
• Delve into web application analysis, information gathering, and enumeration techniques to evaluate the security posture of web applications and identify potential vulnerabilities.
• Learn how to use Microsoft SQL Server Vulnerability Assessment service to scan databases and identify potential security weaknesses.
• Understand various web application attacks and their relationship to network and infrastructure penetration testing, including LDAP, Content Management Systems, and static site generators such as Jekyll.
• Explore the benefits and limitations of Private Cloud, Load Balancers, file synchronization programs, and IPFS Distributed File System in enhancing the security and performance of web applications.
• Identify various types of web application attacks, such as Spoofing, Botnet, Advanced Persistent Threat, Cache Poisoning, and Cross-site Request Forgery, and understand the importance of encryption in preventing these attacks.
• Analyze the security implications of Containerization, Role-based Access Controls, Rootkits, SQL Injections, and Session Management in web applications.
• Investigate the solutions provided by Web Application Firewalls to protect web applications from common attacks and vulnerabilities.
• Explore the necessary security features that web applications should have, such as secure coding practices, input validation, and secure authentication mechanisms.
• Understand the various phases and methodologies involved in the Software Development Lifecycle, including Black Box and Red Box Testing.
• Learn about the different types of security assessment tests, such as Management Testing, Data Validation Testing, Authentication Testing, Business Logic Testing, and Client-side Testing.
• Analyze Clickjacking attacks and File Inclusion attacks, and explore the advantages of code obfuscation in protecting against these threats.
• Gain a comprehensive understanding of SQL Injection attacks, including blind SQL injections, and learn how to use SQLmap penetration testing tool to identify and prevent these attacks.
• Explore various source code editing tools, SQL Injection scanners, and code analyzers such as Sonarqube to enhance the security of web applications.
• Gain hands-on experience with vulnerable web applications such as DVWA Damn Vulnerable Application and OWASP Mutillidae, and explore the Levithian Audit Toolkit for evaluating web application security.
• Learn about web application attack and audit frameworks, as well as security testing tools and scanners for evaluating the security of websites.
• Understand the concept of decoy systems, such as Honeypots, and their role in detecting and mitigating web application attacks.

Module 5 : Web Shells, Spywares and Backdoors

• Gain an understanding of Docker, container, and OS virtualization technologies.
• Develop skills in using container orchestration tools and explore the Kubernetes architecture and marketplace.
• Master the use of Docker commands and learn how to start SQL and run a Linux desktop in Docker.
• Gain proficiency in Docker Compose and Kubernetes commands, Web UI, cheat sheets, and catalog.
• Learn to work with Microsoft Azure, create and manage Google Cloud resources, and manage Amazon AWS services.
• Develop an understanding of attack methodologies and analyze threat vectors.
• Explore the use of web shells, Netcat, web shell attacks, and types of web shells.
• Learn to upload web shells using WordPress plugins and identify fake WordPress plugins.
• Understand the functionality of Microsoft Freta and the steps involved in Gmail phishing scripts.
• Investigate various phishing attacks, DNS spoofing, and the Gophish phishing campaign framework.
• Explore the generation of fake SSL certificates, CA root certificates, and the creation of phishing sites.
• Gain knowledge of secure tunnels and hacking methods for 2-factor authentication.
• Learn about various Trojans, including Fat Rat, Dr0o1t Framework, and EvilOSX for macOS X.
• Examine the USB Rubber Ducky tool and other tools for setting up backdoors.
• Understand backdoor payloads transfer by DNS traffic, ICMP backdoor, and the workings of DNS-Persist Trojan.
• Become proficient in command and control server commands and explore the Empire framework.
• Explore macOS Trojans, Windows Trojans, their types, and Windows botnets.
• Learn to write custom Trojans and backdoors and explore Lime Rat Trojan and Quasar Rat.
• Understand how to hide attack traces and learn about keyloggers for different operating systems.
• Investigate supply chain attacks, USB mailing attacks, and the functionality of Revealer Keylogger for Windows.
• Learn about various monitoring systems, phone monitoring, and screen recorders.
• Explore JavaScript keyloggers and the concept of steganography, including hiding data using various methods.
• Learn about Instegogram, steganography attacks, and tools for steganography.
• Develop skills in using and creating ransomware, advanced Java ransomware, and various ransomware attacks.
• Gain knowledge of different types of ransomware, including Apocalypse, BadBlock, BigBobRoss, Bart, and BTCWare.
• Learn to protect against malware and web shells and explore Microsoft’s built-in ransomware protection.

Module 6 : Denial of Service Attacks

• Develop an understanding of the concepts and mechanisms behind Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) attacks.
• Examine the various types of DDoS attacks and their unique characteristics.
• Acquire knowledge on the fundamentals of IP spoofing and the functioning of botnets in DDoS attacks.
• Gain in-depth insights into the workings of DDoS and DoS attacks and their effects on targeted systems.
• Study the different attacks on the Application Layer and their impact on web applications.
• Develop a comprehensive understanding of HTTP Flooding, SYN Flooding, and DNS Amplification attack techniques.
• Gain knowledge about the Low and Slow attack and its impact on server resources.
• Examine the possibilities and features offered by UFONet for launching DDoS attacks.
• Analyze various DDoS attack tools, including those utilizing TOR circuits, RedEye, and GoldenEye.
• Learn about the largest DDoS attacks in history and their consequences.
• Understand the functioning of DDoS Attack Visualization Systems and their utility in analyzing attacks.
• Study real-world examples of DDoS attacks, such as the Amazon DDoS attack, Github DDoS attack, and DDoS attack using embedded Javascript.
• Develop an understanding of the various DDoS mitigation strategies and their effectiveness in protecting against attacks.
• Explore the workings of Cloudflare’s Global Network of Data Centers and their role in mitigating DDoS attacks.
• Study Gladius, a blockchain-based DDoS Blocker, and gain insights into its potential for protecting against DDoS attacks.

Module 7 : Log Management and Network Analyzers

• Analyze various methods of connecting computers in a network and understand their implications.
• Gain a comprehensive understanding of the OSI model and TCP/IP Networking model, and their respective layers and functionalities.
• Learn about Ethernet Addressing, the importance of Address Resolution Protocol (ARP), and the role of Broadcast Address in network communication.
• Examine the concept of ARP Caching and its impact on network performance.
• Understand the structure and purpose of Data Frames in network communication.
• Learn about Spoofing Mac Address and its implications in network security.
• Analyze the features and functionalities of Wireshark Packet Analyzer and its application in network monitoring.
• Study various types of packet sniffers (tcpdump), network visualizers (Afterglow), and network analyzers (Capsa) to enhance network analysis skills.
• Investigate Colasoft Mac Scanner and Colasoft Packet Player for advanced network analysis.
• Learn about Network Topology Mapper and its practical applications in network monitoring and management.
• Explore NetFlow traffic analyzer and passive network sniffing tools for efficient network monitoring.
• Understand the functionalities of Scrutinizer and its role in network analysis.
• Study the network protocol Netflow and its applications in network monitoring.
• Analyze various types of network spoofing attacks, including ARP Spoofing, IP Spoofing, DNS Spoofing, and more.
• Understand how DHCP Exhaustion Attack works and its potential consequences.
• Learn about Man-in-the-middle attack, its types, and the tools used for such attacks.
• Understand Email Hijacking, Wi-Fi Eavesdropping, and Stealing Browser Cookies, and their implications on network security.
• Learn about the role of Cookies in web browsing and their potential security risks.
• Examine how to run sniffing and spoofing attacks using Bettercap and understand its practical applications in network security.
• Learn how to enable transparent HTTP Proxy and its implications on network security.
• Recognize the importance of the Network statistics tool, Darkstat, in network analysis and monitoring.
• Get acquainted with various session hijacking tools and their applications in network security.
• Investigate the use and functionality of covert tools like LAN Turtle and Packet Squirrel in network analysis.

Module 8 : Identity and Access Management

• Analyze the flaws in current password security systems and understand their limitations.
• Understand the sensitive types of passwords and their implications on user security.
• Examine how Credential Stuffing attacks are made and their potential consequences.
• Analyze how Password Guessing works, the different Types of Password Attacks, and their implications on user security.
• Become aware of NIST Guidelines 800-65B for maintaining password security and best practices.
• Learn about the CyberScanner Online Password Cracking Calculator and its application in password security analysis.
• Understand the importance of password length in increasing security and its impact on user security.
• Recognize the limitations of using Brute-force attacks in web services and alternative password security measures.
• Discover the alternatives to passwords such as Multi-factor Authentication, Yubikey, Windows Hello, Slicklogin, and other emerging technologies.
• Explore how Biostamp works and its potential applications in user authentication.
• Learn about Encryption keys, their types, and their role in securing user data.
• Understand the mechanisms for Cracking Encryption Keys and their implications in user security.
• Grasp the concept of Hashing, how Hashing Algorithms work, and their applications in password security.
• Understand Cyclic Redundancy Checks, Checksums, and Cryptographic Hash Functions and their role in data integrity and security.
• Learn when Rainbow tables are useful and their applications in password cracking.
• Analyze the effectiveness and risks associated with using Password Managers for managing user credentials.
• Understand the consequences of storing passwords in one place and the potential security risks involved.
• Explore various software available for generating and storing passwords and managing important credentials.
• Learn how John the Ripper tool works and its applications in password cracking.
• Explore how passwords can be generated using Crunch Wordlist Generator, CeWL, and Mentalist for enhanced password security.
• Examine the functionality of Hashcat tool and its ability to crack various types of passwords.
• Learn how to crack passwords using tools like Medusa, Hydra, and Distributed Password Cracking, and understand the process of cracking Bitcoin Wallet passwords.
• Study Google Authenticator Architecture and its applications in user authentication.
• Learn to configure 2FA to Web Application and its implications on user security.
• Understand how Google reCAPTCHA can protect websites against automated attacks.
• Learn about Google OAuth protocol for authorization and how to configure it for web applications.
• Understand the OpenID decentralized authentication protocol and its role in user authentication.
• Learn how LDAP authentication works and its benefits in a network environment.
• Understand the functionality of a Password reset disk using Windows 10 Password Reset Disk.
• Explore various Commercial Password Recovery Tools and their applications in password security.
• Learn about Web Authentication Standard and its role in user authentication.
• Get introduced to Quantum Computing and its potential impact on password security and encryption.

Module 9 : Wireless Hacking

• Develop a comprehensive understanding of Wi-Fi and the ISM band concepts.
• Identify and differentiate between various Wi-Fi channels and frequencies.
• Understand the functioning of Wi-Fi boosters and their applications.
• Examine different types of Wi-Fi antennas and their use cases.
• Develop strategies for preserving privacy on open public Wi-Fi networks.
• Compare and contrast WPA2 and WPA3 protocols and their security features.
• Explore Wi-Fi6 technology and its associated hacking techniques.
• Learn methods for discovering unsecured Wi-Fi networks and their vulnerabilities.
• Master packet injection, brute-forcing, dictionary attacks, and rogue access points for Wi-Fi hacking.
• Acquire proficiency in the step-by-step process of hacking Wi-Fi networks.
• Gain expertise in using the Aircrack multi-purpose tool for Wi-Fi hacking.
• Understand the functionalities of Airmon, Aireplay, Airgraph, Airolib, and Airserve tools.

• Learn to effec