HSVM-YN: Hacking and Security Vulnerability Management

Name: HSVM-YN: Hacking and Security Vulnerability Management
Brand: Cybersecurity

RM2,750.00

Cyber attackers are constantly evolving—are your IT teams evolving with them? The Hacking and Security Vulnerability Management course is a 3-day immersive training that gives IT professionals the skills to understand, exploit, and defend against common system and application vulnerabilities.

Why this course is critical:
From Equifax to Facebook, major breaches have stemmed from known vulnerabilities. This course equips your team to identify weaknesses before attackers do—and close the gaps with confidence.

Training Duration: 3 Days

Certificate Of Completion Available
Group Private Class
VILT Class Available
SBL-Khas Claimable

Download Course Outline

In today's digital landscape, organizations face a growing number of cyber threats that exploit vulnerabilities in systems and applications. This 3-day training program equips IT personnel with foundational knowledge and practical skills in ethical hacking techniques and security vulnerability management. Participants will gain a hands-on understanding of how attackers identify and exploit system weaknesses—and more importantly—how to proactively defend and mitigate these threats.
Understand key concepts of information security and vulnerability management.

Identify security risks in networks, web applications, and mobile systems.

Perform basic vulnerabilities assessments using industry-standard tools.

Apply best practices to secure IT infrastructure against common attacks.
Day 1: Foundations of Security & Web Application Vulnerabilities

Module 1: Web Application Security Basic

Http / Https Fundamentals.

Why there is differences.

What is more secure

What will happen if my applications using HTTP instead HTTPS

Bonus: - What is SHTTP.

OWASP Top 10 vulnerabilities overview examples (XSS, SQLi, CSRF)

Module 2: Hands-on Web Attacks & Defense

Demo: SQL Injection & Demo: Cross-Site Scripting (XSS)

What does these attacks can do.

These attacks are common example you can do this as bug bounty whichever application offers bug bounty exercises.

Mitigation Techniques

Module 3: Network Security Fundamentals

Common Network threats (MITM, Sniffing)

Examples of these attacks

Real-world example – Equifax data breach

2013 Facebook MITM attack

Basic firewalls & IDS also IPS concepts

Explain the firewall types of firewalls

What are the differences

Module 4: Vulnerability Scanning Basic

Introduction to Nmap (port scanning)

Getting started with Nmap

Using Nessus for basic scans

Exposing on scanning and reporting

Day 2: Network Security & Penetration Testing Basics

Module 5: Password Security & Cracking

Common password vulnerabilities

Learn apply best password

Demo: Hash cracking with John Ripper

Module 6: Hands-on Network Penetration Testing

Basic Metasploit Usage

Intro of this framework

Functions of Metasploit

Exploiting weak services

Module 7: Wireless Security Risks

Wi-Fi hacking demo (WPA2 cracking)

How it works

How to stay secure

Best practices for Wi-Fi secure

Module 8: Defensive Security & Patching

Patch management best practice

Securing Windows / Linux system

Day 3: Mobile Security & Real-World Remediation

Module 9: Mobile security overview

Android/iOS security models

Common app vulnerabilities

Module 10: Hands-on Mobile app testing

Using DROZER for Android assessment

iOS app security checks

Module 11: Security Best Practices

Secure Coding basics

Incident response steps

Module 12 (Final Exercise)

Trial test on MobSF (Mobile Security Framework)

Frequently Asked Questions

What is no-code automation for project management?

No-code automation uses visual tools like Google Sheets and n8n to automate workflows without writing programming code.

Who should attend this automation course?

This course is suitable for project owners, operations managers, PMO staff, and non-technical stakeholders managing projects.

Do I need coding skills to join this course?

No. The course follows a no-code philosophy and uses drag-and-drop tools.

What tools are used in this course?

The course uses Google Sheets, n8n, and AI tools such as ChatGPT or DeepSeek.

Can AI really read and organize project emails?

Yes. AI can extract structured information such as dates, costs, issues, and urgency from emails and reports.

Is this course HRDC Claimable?

Yes. This course is HRDC claimable, subject to HRDC approval and company eligibility requirements.

Can this course be customized for our organization?

Yes. The workflows and templates can be adapted to reflect your organization’s project processes and approval structures.

Will I leave with working automation templates?

Yes. Participants receive ready-made templates and build working automations during the course.

HSVM-YN: Hacking and Security Vulnerability Management

OVERVIEW

OBJECTIVES

COURSE MODULE

Frequently Asked Questions

Contact Us