Understanding how attackers operate is key to effective defence. This course trains participants in the mindset and techniques of ethical hacking. They will simulate real-world attacks across system, network, and application layers using the same tools as adversaries—under controlled, legal, and ethical conditions.
Learning Outcomes:
Identify vulnerabilities through reconnaissance and scanning
Exploit systems and web applications using ethical hacking tools
Analyse malware and evade detection mechanisms
Apply countermeasures to harden organisational defences
Key Topics:
Ethical hacking methodology and phases
Network scanning and system exploitation
Malware analysis and steganography
Intrusion detection and prevention strategies
Exam Details
This course is designed to build participants’ understanding of key concepts and domains covered in the Certified Ethical Hacker (CEH) v13 certification. Certification is awarded when the Knowledge exam is passed. In order to achieve CEH Master Level certification, an additional Practical exam needs to be taken. This practical exam is optional.
The Knowledge Exam is 4-hours consisting of 125 questions. The Practical Exam (optional) is 6-hours consisting of 20 challenges.
To maximise success, participants are strongly encouraged to complement the course with additional self-study, revision of course materials, and dedicated practice before attempting the exam.
FUNDING INFORMATION
SkillsFuture Singapore (SSG)
Funding is available on Course Fee. Please see below for the eligibility categories available.
| Self-sponsored | Singapore Citizen & PR aged ≥ 21 years | Up to 50% funding |
| Singapore Citizen aged ≥ 40 years | Up to 70% funding | |
| Company Sponsored (Non-SME) | Singapore Citizen & PR aged ≥ 21 years | Up to 50% funding |
| Singapore Citizen aged ≥ 40 years | Up to 70% funding | |
| Company Sponsored (SME) | Singapore Citizen & PR aged ≥ 21 years | Up to 70% funding |
| Singapore Citizen aged ≥ 40 years | Up to 70% funding |
SSG Funding Requirements
- Trainees must scan their attendance twice daily using the SingPass application.
- Trainees must attain at least 75% attendance.
- Trainees must pass the in-house assessment to be eligible for funding.
- Trainee and/or sponsoring company is/are required to meet all SSG-mandated eligibility criteria and requirements for funding. For more information, please refer to SkillsFuture homepage.
Appeal Policy and Procedure
- As a candidate in this course assessment, you may appeal your results if you disagree with them.
- To do so, submit your written appeal request via email to esv_comat_cse@stengg.com within 3 working days from date of assessment.
Cancellation, Postponement and Refund Policy
- Request for cancellation or postponement must be submitted in writing more than 4 weeks before the class start date to avoid any charges.
- Written notice for cancellation or postponement received 2 to 4 weeks before class start date will incur Late Cancellation Charge - 50% of course fee.
- Written notice for cancellation or postponement received less than 2 weeks before class start date will incur Late Cancellation Charge - 100% of course fee.
- If payment has been made and ST Engineering e-Services Pte Ltd accepts the trainee's written notification to cancel or withdraw from the course, ST Engineering e-Services Pte Ltd will issue a refund, less any applicable Late Cancellation Charges.
Feedback Policy and Procedure
- You may submit feedback via email to esv_comat_cse@stengg.com or your servicing Account Manager.
- Any formal feedback will be handled within 10 working days from receipt with a written reply given. An interim reply will be provided should more time be required.
Module 1: Introduction to Ethical Hacking
Learn the fundamentals and key issues in information security, including the basics of ethical hacking, information security controls, relevant laws, and standard procedures.
Module 2: Footprinting and Reconnaissance
Learn how to use the latest techniques and tools for footprinting and reconnaissance, a critical pre-attack phase of ethical hacking
Module 3: Scanning Networks
Learn different network scanning techniques and countermeasures.
Module 4: Enumeration
Learn various enumeration techniques, including Border Gateway Protocol (BGP) and Network File Sharing (NFS) exploits and associated countermeasures.
Module 5: Vulnerability Analysis
Learn how to identify security loopholes in a target organization’s network, communication infrastructure, and end systems. Different types of vulnerability assessment and vulnerability assessment tools are also included.
Module 6: System Hacking
Learn about the various system hacking methodologies used to discover system and network vulnerabilities, including steganography, steganalysis attacks, and how to cover tracks.
Module 7: Malware Threats
Learn about different types of malware (Trojan, viruses, worms, etc.), APT and fileless malware, malware analysis procedures, and malware countermeasures.
Module 8: Sniffing
Learn about packet sniffing techniques and their uses for discovering network vulnerabilities, plus countermeasures to defend against sniffing attacks.
Module 9: Social Engineering
Learn social engineering concepts and techniques, including how to identify theft attempts, audit human-level vulnerabilities, and suggest social engineering countermeasures.
Module 10: Denial-of-Service
Learn about different Denial of Service (DoS) and Distributed DoS (DDoS) attack techniques, plus the tools used to audit a target and devise DoS and DDoS countermeasures and protections.
Module 11: Session Hijacking
Learn the various session-hijacking techniques used to discover network-level session management, authentication, authorization, and cryptographic weaknesses and associated countermeasures.
Module 12: Evading IDS, Firewalls, and Honeypots
Learn about firewalls, intrusion detection systems (IDS), and honeypot evasion techniques; the tools used to audit a network perimeter for weaknesses; and countermeasures.
Module 13: Hacking Web Servers
Learn about web server attacks, including a comprehensive attack methodology used to audit vulnerabilities in web server infrastructures and countermeasures.
Module 14: Hacking Web Applications
Learn about web application attacks, including a comprehensive hacking methodology for auditing vulnerabilities in web applications and countermeasures.
Module 15: SQL Injection
Learn about SQL injection attack techniques, evasion techniques, and SQL injection countermeasures.
Module 16: Hacking Wireless Networks
Learn about different types of encryption, threats, hacking methodologies, hacking tools, security tools, and countermeasures for wireless networks.
Module 17: Hacking Mobile Platforms
Learn mobile platform attack vectors, Android and iOS hacking, mobile device management, mobile security guidelines, and security tools.
Module 18: IoT Hacking
Learn different types of Internet of Things (IoT) and operational technology (OT) attacks, hacking methodologies, hacking tools, and countermeasures.
Module 19: Cloud Computing
Learn different cloud computing concepts, such as container technologies and serverless computing, various cloud computing threats, attacks, hacking methodologies, and cloud security techniques and tools.
Module 20: Cryptography
Learn about encryption algorithms, cryptography tools, Public Key Infrastructure (PKI), email encryption, disk encryption, cryptography attacks, and cryptanalysis tools.
.png?width=50&name=Artificial%20Intelligence%20(AI).png)
-1.png?width=360&name=Server%20(4)-1.png)
/AI%20(6)-1-1.png?width=360&name=AI%20(6)-1-1.png)
/AI%20(8)-1.png?width=360&name=AI%20(8)-1.png)
-1.png?width=360&name=Automation%20RPA%20(2)-1.png)
/AI%20(5)-1.png?width=360&name=AI%20(5)-1.png)
