Cyber Security For Beginners

Learn footprinting using search engines to gather target information, including office locations, contact details, emails, and employee names, by mastering Google search operators and file type filtering.

Explore whois footprinting by querying domains to reveal registrar, creation and expiration dates, name servers, DNS details, and related IP history and hosting data.

Perform DNS footprinting with nslookup to discover DNS servers and records (A, SOA, MX, NS) for the target domain, and verify with ping, using Kali and root access.

Explore dns footprinting with the prebuilt tool dnsenum in kali, gathering host addresses, mail records, server ips, and reverse ip checks to identify domains hosted on same servers.

Download and install Zenmap, the graphical version of Nmap, to run an intense scan, view open ports, and explore host topology and details.

Explore DNS poisoning, a technique that manipulates DNS records to redirect users to malicious sites, demonstrated via a DNS chef setup and a spoofed IP for phishing and malware.

Examine how social engineering exploits human behavior to breach security and master five techniques: authority, scarcity, social proof, fear, and trust, plus practical countermeasures.

Explore the syn flood concept through a metasploit-based demo on Kali Linux targeting Windows 10, and learn practical countermeasures such as firewall filtering, bandwidth management, and reverse proxy monitoring.

Explore web server concepts, components like root directory, server root, conf, logs, CGI bin, and virtual hosting, plus practical enumeration using http print.

Learn web server reconnaissance with Skipfish in Kali Linux, capturing scan output and reviewing directory listings for vulnerabilities. Use netcat for footprinting to identify the server name and nginx version.

Learn to identify a web server version with the Metasploit http_version module, then use the files_directory module with a dictionary to locate potentially sensitive files.

Learn to scan a web server for options with the Metasploit Framework, configure the option module, and run a web dev scanner to verify allowed methods and server status.

Create a local offline copy of a website using the Hdtracks website copy tool, setting up a project and target URL to mirror the site on your drive.

Learn to perform web application brute forcing with dirbuster to discover directory structures, generate reports, and interpret results.

Explore web application exploitation concepts, including dynamic server-side processing, three-layer architecture (presentation, business logic, database), and the role of web services in interoperability.

Explore os command injection attacks, selecting the os command injection option and observing dns lookup results blocked by a firewall, then reveal users with net user showing nobody and B.

Learn how cross-site scripting attacks exploit web vulnerabilities by injecting malicious JavaScript, using reflected or stored XSS to reflect input and steal session cookies.

Learn how parameter based access control can be abused by manipulating the URL parameter to gain higher privileges, demonstrated on a session management administrative portal.

Explore how sql injection exploits web application vulnerabilities to bypass security, gain unauthorized database access, and manipulate data, highlighting risks in insecure web apps.

Learn how to enumerate a backend database to determine the number of columns using SQL injection techniques like order by and unknown column errors, confirming seven columns.

Demonstrates union SQL injection to determine column counts, enumerate the database and tables, and extract user data such as login and password fields, including hashed passwords.

Discover how SQL injection bypasses web application logins on a controlled demo banking site, illustrating authentication weaknesses and how security tools detect such vulnerabilities.

Explore wireless networks, their mobility, and how access points connect to local area networks; weigh advantages like minimal wiring and cost effectiveness against security, bandwidth, and interference.

Learn how to encrypt files and folders using the crypt for free tool, set a password, decrypt securely, and understand why deleting originals enhances real-world security.

Learn to use hash calculator to generate and compare md5 hashes for a file, demonstrating how tampering changes hash and how integrity can be verified.

download metasploitable three from GitHub or Rapid7, unzip the zip, and open the dot ova file in VirtualBox; follow the same process as Metasploitable two.

Explore honeypots, comparing production and research types, their roles in internal networks, and how to deploy and use the paint box tool in Kali to detect and deter intruders.

download and install Xampp on Windows, set up a local web server with Apache, MySQL, PHP, and Perl, and configure the control panel.

Set up a web server with Apache using Xampp, host a page in htdocs, map a domain to a public IP via DNS, and access it through localhost or 127.0.0.1.

Learn to create a MySQL database and a users table with an auto-incrementing id in phpMyAdmin via Xampp, defining int and varchar fields for id, username, and password.

Demonstrates how an sql injection attack on a login page bypasses authentication by injecting or 1=1 into username and password fields.

Explore how an insecure login page is vulnerable to SQL injection, demonstrating how crafted inputs bypass authentication, and conclude with securing practices using username and password hashing.

Learn how to protect credentials by hashing usernames and passwords with PHP, using MD5 as a one-way encryption, and viewing how hashed values replace plaintext in a sample app.

Learn how to secure a login page by hashing the username and password with MD5 before database checks, ensuring hash-based authentication and protection against SQL injection.

Explore how a PHP login flow uses header location to redirect to home.php, letting users reach the welcome page without credentials via back button or direct URL.

Secure the home page by enforcing session checks and redirecting to login.php when the session is empty, preventing direct URL access and ensuring only valid credentials grant access to home.php.

Explore how a network is structured, including routers, IP addresses, and the default gateway, and examine MITM, ARP poisoning, session hijacking, DNS spoofing, and DDoS attacks.

Demonstrates sniffing attacks and man-in-the-middle via ARP poisoning using Cain and Abel in a virtual lab, showing how HTTP login credentials are captured and the need for HTTPS with SSL.

Download and install VirtualBox, import the Kali Linux VM, boot it, and perform apt-get update, upgrade, dist-upgrade, and autoremove for a secure penetration testing setup.

Demonstrate sniffing and spoofing with Ettercap in Kali Linux by performing a two-way ARP poisoning attack on a Windows 7 host to capture login credentials over http.

Demonstrates cookie stealing and cookie injecting using Wireshark and a browser editor to illustrate how an attacker can hijack a session.

Demonstrate a practical cross-site scripting attack by building a vulnerable app, injecting html and javascript, and observing defacement and alert exploits in a live demo.

Explore how cross-site scripting enables cookie stealing and session hijacking, including attacker workflows with PHP, back-end file handling, and JavaScript document.cookie to hijack sessions.

Learn to defend a website against cross-site scripting by applying an HTML special chars filter to user input in PHP, preventing script execution and safely displaying status updates.

Explore sequences as an automatic numbering system that prevents gaps, and learn how materialized views store the output of queries alongside tables and views in a database.

Understand database triggers as actions based on events between related tables, automatically updating related outputs when data changes.

Explore integer, decimal, and number data types, distinguishing whole numbers from decimals with precision and scale, and learn how fixed versus flexible precision affects data validation.

Explain clob, blob, and b file data types for storing resumes, photos, and audio or video in database columns, and why tools are needed for file storage.

Explore data types and the role of data constraints in validating input. Learn about primary keys, foreign keys, unique keys, not null, and check constraints.

Identify the primary key as the single, unique column in a table that cannot contain duplicates or null values. Auto index this column to enable fast data retrieval.

This lecture introduces sql as structured query language and outlines five categories. It explains data definition language and its ddl statements—create, alter, drop, truncate, and rename—to define database objects.

Learn data control language (dcl) and how to grant or revoke access for database users, including permissions like read, insert, change, and delete.

Explore data definition language basics through the create statement to define a table with two columns: exam_code as varchar(10) and exam_type as char(10); end with a semicolon.

Learn how to alter tables to add columns, define data types, and apply constraints such as primary key, check, not null, and foreign key in SQL.

Demonstrates using alter table to modify a column’s size, noting you can increase or decrease on empty tables and not on tables with data, and how to apply not null.

Master drop functionality in alter table statements to remove columns and constraints, including dropping not null constraints and primary keys with cascade when referenced by foreign keys.

Learn the basics of data manipulation language (DML) after DDL, and use insert, update, and delete to manage data in the database.

Learn to insert values into a table using insert into table values, handling numbers, varchar fields with single quotes, and nullable columns with foreign key integrity constraints.

Explore SQL insert commands by selecting specific columns and values, duplicating data, and using insert with select to copy rows from one table to another.

Learn to insert into specific columns from one table using select with a where clause to copy a single row into another table.

Explore data control language (DCL) with grant and revoke, showing how to grant select, insert, update, delete, create on a database or table to users or roles, including grant option.

Explains data retrieval language (DRL) and demonstrates select statements, including selecting all columns, specific columns, conditional retrieval, operators, like, order by, and subqueries.

Discover how built-in SQL functions boost query efficiency by using four main types: character, math, date/time, and conversion. Learn about each type one by one.

Master seven string functions—concat, init cap, instr, substr, length, lower, upper, and trim—to learn how to build, locate, extract, measure length, and trim text.

Explore string functions in Oracle SQL with live examples of concat, init cap, and instr, showing how to join words and locate characters with start positions.

Explore substring, length, lower, upper, and trim functions with starting positions, negative indices, and space handling to extract, convert, and clean text.

Learn four numeric functions—count, row numbers, sum, and truncate—and see how they operate on table data, including the numeric use of truncate versus trim.

Explore numeric functions in Oracle SQL with practical examples using air.countries and hr.employees, including count, max (highest salary), rownum, sum, and distinct to handle duplicates.

Explore the date and time function's five types, including system date, system timestamp, current date, current time stamp, and last day of the month.

Explore essential SQL conversion functions, including two date, two character, and two number, with practical examples to convert data to date, character, or numeric formats.

Demonstrates converting strings to date with practical format codes, turning inputs into year month date and time formats. Show how format changes affect the stored date and default display.

Convert numbers to strings and strings to numbers with practical examples, covering decimal places, negative values, and formatting such as dollar signs and leading zeros.

Explore inner, left outer, right outer, and full outer joins by linking employees to departments on department id to display each employee’s first name with their department.

install Red Hat Enterprise Linux 7.3 from installation media. configure language, network, hostname, and credentials, enable server with gui, accept license, and complete first login.

Learn to replace password login with ssh keys by generating an rsa key pair and copying the public key to a server using ssh-copy-id, enabling passwordless authentication.

This vim-ii tutorial walks beginners through creating a file in the home directory, editing text, saving, undoing, copying, pasting, global substitution, and navigation commands.

Explore essential Linux file operations with cat, touch, head, tail, wc, cp, mv, ls, ll, and rm, learning how to create, view, copy, move, rename, and delete files and directories.

Learn to manage users with a command-line utility: view options with --help, create users with department and shell settings, set expiration, verify /etc/passwd, and assign passwords, noting root privileges.

Learn practical user management commands to lock and unlock accounts, assign secondary groups, rename usernames, and set or modify user IDs for secure server administration.

Explore how Linux handles users and groups with /etc/passwd, /etc/group, and /etc/shadow, including primary and secondary groups, GID values, and password aging and expiration settings.

Manage user passwords with the password command, including locking, unlocking, and expiring passwords, configuring maximum and minimum lifetimes with warning days, and viewing current settings for a user.

Learn basic permissions—read, write, and execute—and their effects on files and directories. Understand that read on files opens data, read on directories lists contents, and execute enables running or entering.

Explore how access control lists manage permissions using getfacl and setfacl, including recursive and default acl settings to grant staff and sales groups access while preserving existing permissions.

Explore how Linux boots services, reveal running processes with ps ux and wc, and distinguish jobs from processes, including backgrounding with control z and bg.

master linux process management with shell jobs, background and foreground control, and commands like ps, top, kill, pkill, and systemctl status.

Master Vim basics: search characters or words with n, N, and /, highlight results with hlsearch, and use character, line, and block visual modes along with macros and registers.

Practice three terminal openings, create a Vim file named student, view first eight lines of /etc/passwd and last five of /etc/shadow, copy file, and rename new folder to old folder.

Master vim basics in part one, covering colon help, gg to the top, insert and replace modes, visual mode tweaks, and essential text editing like joining lines.

Open a terminal from context menu, applications, or search, then use vim to create and save a file. Practice head, tail, cp, mkdir, and mv for basic file tasks.

Set up a sysadmin group with Tom and Jerry as secondary members, with Harry lacking an interactive shell. Schedule a cron job for Jerry at 14:23 to run /bin/echo hello.

Create a sysadmin group and three users with passwords and no login for Harry; set /common/admin to 2770, run a cron job for Jerry, and ACLs for Natasha and Sarah.

Create 400 mb ext4 partition mounted at /common; add user neo with uid 1337 and password; search for root in /ATC/passwd and save to /search; back up /ATC to /home/backup.tar.bz2.

Explore useful linux commands like rev, factor, and yes, and observe a controlled demonstration of a forkbomb, highlighting its risk and how it can exhaust system resources.

Discover the sam file as the most important pillar of Windows security, its location, why it’s inaccessible, and how passwords are stored as unreadable hashes.

Understand how Windows logins work, from typing a username and password to hash comparison with the SAM file. Explore open and closed login scenarios.

Learn how to change a Windows admin password using the net user command, running command prompt as administrator. Understand why this bypasses password checks and how to verify the change.

Learn to manage Windows passwords with the net user command, including removing or changing local passwords across Windows XP to Windows 10, and note Microsoft account limitations.

Explore brute force password cracking on Windows using the Ophcrack live OS. Boot from USB or CD, target Windows XP to Windows 8, and note limitations on newer versions.

learn to use lasersoft recovery suite to copy complete data from a windows target computer without a password, and to create an ISO image for bootable media.

Learn the five-step process used by hackers and ethical hackers: footprinting to gather information, scanning for weaknesses, gaining access, maintaining access, and clearing tracks.

Explore how attackers maintain access to a Windows system by building a back door and exploiting login screen vulnerabilities like sticky keys.

Explores how sticky keys can be used on Windows 7 to access a system, discusses file permissions and ownership by trusted installer, and covers the ethical considerations of clearing tracks.

Learn to apply and remove file and folder permissions in Windows via command prompt, using cackles to control access for users like everyone, guest, and admin.

Protect your system from attackers with the deep freeze software, which restores changes to the original state after logging off and blocks net user and sethc tampering.

Explore a safe virtual-machine demonstration of a basic virus created with a batch script, illustrating how automation can generate folders and simulate looping execution in a controlled Windows environment.

Explore how a virus or worm could harm a Windows system by duplicating the Windows folder to exhaust disk space and overwhelm resources, illustrating potential damage and slowdown.

Examine how modifying the associated file for exe programs creates a virus, causing an icon change and blocked commands, then restoring the original x file resolves it.

Demonstrate a basic virus that shows 'you have been hacked' popups and persistent log-off messages, creates random folders, slows the system, and shows protection steps in the next lesson.

Discover how an advanced virus disguises as a legitimate program using a VLC icon and batch file, running covertly with bat to x converter and command prompts on Windows XP.

This lecture introduces the Beast Trojan and its server–client architecture, detailing reverse connections and the Trojan’s remote control features like files, registry, remote desktop, webcam, passwords, keylogger, and more.

Demonstrate a basic trojan built with python sockets on two virtual machines, with a listening target and a connecting attacker, illustrating client-server interactions.

Shows how to extend a trojan by sending data between hacker's and victim's PCs using sockets, encode the message with utf-8, and decode and display the received data in python.

Learn how to exchange data and remotely execute commands on a target pc using a Python trojan, including sending input, decoding data, and receiving command output.

Learn what xampp stands for—x for any os, apache web server, mysql, php and perl—and how to install it and set up htdocs.

Explore front end and back end concepts, build a login form with HTML, CSS, and JavaScript, and use PHP to validate credentials against a database to illustrate SQL injection concepts.

Design a website login form using HTML input tags for username, password, and a login button, with break tags, and test locally via localhost.

Learn how to use get and post methods to send form data from index.html to verify.php on localhost, and implement unique input names for username and password in PHP.

Develop a basic PHP server-side script that receives post data with $_POST, stores it in variables, and echoes the username and password to demonstrate front-end to back-end data transfer.

Create a user authentication database with a three-column users table (id, username, password) in MySQL via phpMyAdmin, starting the MySQL service in Xampp and approving firewall access.

Create a database named example and a new table with id as an auto-incrementing integer primary key, and username and password as varchar fields.

Insert data into a database by adding rows to a table, using the auto-increment feature, and illustrate with sample usernames and passwords.

Demonstrate how to verify user credentials with a basic SQL query on the users table, using select star, where username and password, and/or logic to determine results.

Build and run a login query using PHP and mysqli, store the query in a variable, count rows with mysqli_num_rows, and display messages based on username and password.

Illustrates how SQL injection can access a website and how to edit code to protect it by using limit one, a unique username, and hash-based query termination.

Learn how sql injection can bypass login using a known username like admin, with semicolon and hash comment, and explore beginner security protections.

Explains how google search operators like in url, site, in title, index of, and file type filter results from a hacker's perspective, with examples and cautions about confidential information.

Explore Google hacking with search operators to uncover IP cameras, login portals, password lists, and driving-license images via Google hacking database, learning why terms and conditions matter before uploading data.

Explore reverse engineering from a hacker's perspective, learn how license key validation works, and examine how software can be analyzed to bypass activation.

Learn to open an exe's assembly code using a debugger, explore a trial keylogger, and understand how to run and inspect software inside memory with step-by-step debugging.

Explore how social engineering deceives targets, detailing human-based and computer-based techniques, including bank impersonation calls, OTP manipulation, and phishing.

explore social engineering through phishing to capture user credentials by building a php-based page that uses post requests to collect emails and passwords, demonstrating attacker techniques and web-page spoofing.

Kali Linux is a Debian-based distribution for high-level penetration testing and advanced security auditing, developed by Offensive Security and built with more than 500 inbuilt hacking tools.

Explore the differences between Unix and Linux, from Unix's Bell Labs origins and paid model with Mac OS, to Linux's free, open-source GPL clone and popular distributions.

Learn to copy files with the cpp command, rename on copy, and move them with mv; view your current directory with pwd or wd, and navigate root and downloads paths.

Master essential Linux shortcuts for the terminal, including clear with ctrl-l, kill with ctrl-c, stop with ctrl-z, and copy-paste with ctrl-shift-c and ctrl-shift-v.

Download anon surf from GitHub, clone the repository, and run the installer to set up a proxy tool on Kali Linux, then verify your IP and switch proxies.

Explore how a vpn creates an encrypted, secure tunnel that hides your activity from websites, isp, and authorities, and learn how to set up a vpn.

Explore how Tor, the onion router, enables anonymous online communication by routing through three or more proxy servers, using dot onion domains, and distinguish surface web, deep web, dark web.

Learn how to publish a website by linking a domain to hosting through ip addresses and dns records, and understand tor and the dark web.

Discover how proxychains in Kali Linux routes every tcp connection through a chain of proxies such as tor or http/https, and learn to install tor and proxychains when missing.

Explore how to change a mac address using the inbuilt mac changer in Kali, including show, version, random, manual mode, and reset options with sudo and eth0.

Explore how dnsenum reveals name servers, A records, and mail server details for a target. Learn brute force with dns.txt and AXFR, and dnsenum comes with Kali for easy use.

Practice brute force techniques using a password dictionary word list and dns map to enumerate subdomains of google.com, revealing IPv4 and IPv6 addresses.

Learn to use nmap for network mapping, detect live hosts and services by scanning IP ranges in Kali Linux, and interpret results like gateways, MAC addresses, and open ports.

demonstrates using nmap to perform service and operating system detection on a windows 7 host from kali linux, revealing open ports, services, and system details.

Learn to search exploits offline with the search exploit tool and the -E exact option. Explore Exploit DB results for Windows 10, Android, and OpenSSH and locate the offline path.

Master website footprinting by using whatweb to identify server details, scripting languages, and technologies, then gather domain and admin contact information with whois, and search for hidden files with dirb.

Explore live cross-site scripting on a test site, showing how scripts can modify profiles, trigger alerts, and demonstrate how clickjacking and redirects to malicious pages compromise user security.

Explore Unix and Linux security auditing by using the Linux tool to audit your own system, identify misconfigurations, vulnerable software, and practical tips for server hardening.

Demonstrates using sqlmap on a test site to detect and extract database information through sql injection, covering selecting databases, tables, and columns while emphasizing ethical and legal guidelines.

Demo shows sqlsus-based sql injection on a vulnerable MySQL URL, covering Kali setup, config generation, launching the attack, and extracting database tables and data.

Learn how password attacks relate to encryption and hashing, and why one-way hashes on servers prevent decryption while guiding password resets after authentication.

Identify hash types with the hash identifier in Kali, then compare hashes from passwords like hack, hacking, or password to the hash; you cannot decrypt hashes, only match them.

Explore hash cracking workflows using the find my hash service with md5, and learn basics of running a python script after cloning tooling from git.

Create a custom word list with crunch in Kali by setting minimum and maximum password lengths and a character set, then output the results to screen or a file.

Explore how to crack any MD5 hash with John the Ripper by using the raw-md5 format, cracking a file hash, and trying different options with the free tool.

Explore offline password cracking with THC Hydra in Kali, using GUI and command line modes to test SSH on Metasploitable 2, with wordlists and verbose output.

Explore sniffing as capturing network traffic, comparing encrypted and unencrypted packets, and analyzing them with tools like Wireshark in Kali to understand man-in-the-middle attacks and data exposure.

Launch Wireshark, choose an interface, and start capturing packets. The interface is divided into four parts: packet filtering, packet list, packet details, and packet bytes.

Explore how Wireshark captures packets from multiple machines on the same network interface, like ethernet zero, and how to analyze captured data including IP addresses and login attempts.

Explore spoofing: attackers use fake DNS entries to redirect users to a counterfeit site while the URL appears legitimate, illustrating DNS-based attack mechanics.

This lecture demonstrates DNS spoofing using Ettercap on Kali, illustrating how fake DNS entries can redirect traffic on public wifi, with configuration tweaks and GUI usage.

Learn to use a graphical Wi-Fi cracker tool to monitor wireless networks, scan access points and connected stations, select a dictionary, and crack a password by capturing a handshake.

demonstrates a buffer overflow attack with metasploit against windows xp service pack 3, using a reverse tcp payload and meterpreter to achieve shell access and post-exploitation actions.

Learn to reset a Windows 10 password using sticky keys to access a command prompt, then use net user to reset passwords and create an administrator account.

Discover how to reset a Windows 7 password by using startup repair, renaming utilman to open a command prompt, and running control userpasswords2 to reset the password.

Master essential networking basics like IP and MAC addresses, ping, and LANs, and gain Linux basics—from commands to permissions, processes, users, and the Linux directory and file system structure.

Learn to install Windows 10 in VirtualBox, attach the ISO, create and configure the VM, customize the installation, and prepare Windows 10 for penetration testing.

Chapter 10 guides you to download and boot Metasploitable in VirtualBox, configure safe networking, and log in as MSF admin to begin ethical hacking practicals.

Explore ethical hacking and the six phases, including footprinting, active and passive reconnaissance, scanning (port, vulnerability, network mapping), gaining and maintaining access, clearing tracks, and report writing.

Explore footprinting, the first step in ethical hacking, to collect information about a target. Understand networking, access points and how packets traverse wireless networks, and how interception can reveal data.

Verify target reachability by testing connectivity between systems, adjust firewall settings, measure packet sizes with ping, and map the route with tracert to identify hops and server behavior.

Explore how to use Web Data Extractor to pull emails, phone numbers, and fax from a target site, showing steps from downloading version 8.3 to extracting data.

Explore Shodan, the hacker's search engine that lists potentially vulnerable devices—from IoT to routers—worldwide. Learn how free access limits results and what comes next with Google hacking.

Discover network scanning with nmap and hping3, the second phase of hacking, using Kali and Zenmap to identify live hosts via nmap -sn.

learn to use h3 to discover live ports and live hosts, scan port ranges from 0 to 1000 or 5000 with syn flags, and compare outputs to nmap.

Explore operating system fingerprinting by using Nmap to detect the target's OS and verify results with Zenmap, noting how firewall settings can affect accuracy.

Explore network mapping with nmap to detect the exact topology and resource placement in a target network, demonstrated by a practical scan revealing devices and topology.

Learn the ethics of gaining and maintaining access in ethical hacking, including creating a back door with the wheel framework in Kali, and following GitHub installation steps.

Demonstrate email spoofing and the role of disposable email services like Gorilla Mail and mi ok.cc, while highlighting privacy, end-to-end encryption, and open-source options such as ProtonMail.

This chapter demonstrates white space steganography using a snow tool to hide and retrieve secret data in text files with a password.

This lecture demonstrates hiding a text file behind an image using OpenStego and QuickStego, setting a password, creating a stego file, and extracting the hidden data.

Explore keyloggers: a program that records keystrokes and may capture screenshots, used for monitoring or stealing information, highlighting security risks and defensive considerations.

Install Red Hat Enterprise Linux version seven in VirtualBox by creating a VM named rhel seven and configuring memory, storage, and graphical installation.

Open the terminal, read prompts like root on localhost and dollar sign for standard users, and learn to use mkdir, rmdir, and rm -r -f to manage folders in Linux.

Explore the Linux root directory and essential folders like /bin, /boot, /dev, /home, /lib, /usr, /proc, /root, /var, and /media, understanding how they support boot, devices, libraries, and user data.

Learn to create logical partitions from an extended partition on a second hard disk using fdisk, print, and n commands, then format as ext4, mount at /root/sdb5, and update fstab.

Learn how to create and configure a Linux swap partition to boost performance, including fdisk steps, changing type to 82, mkfs.swap, swapon, and fstab updates.

Learn to create and manage Linux LVM partitions by making physical volumes, volume groups, and logical volumes, format with ext4, mount at /LVM, and review with df -h.

Learn how to reset the root password by booting into grub with rd.break, remounting the sysroot as read-write, chrooting to root, setting a new password, and relabeling SELinux before reboot.

Examine how Linux boots services and tracks running processes with ps ux and wc. Distinguish shell jobs from system processes and learn pausing and backgrounding with control z and bg.

Discover how to extract the original password from windows hashes using dump7, a rainbow table generator, and rainbowcrack, including generating tables from the SAM database and cracking to plaintext.

Demonstrate generating a Windows payload with msfvenom and hosting it on Apache, then use the Metasploit multi/handler to establish a reverse Meterpreter session from Kali to a Windows target.

This lecture demonstrates how to create a trojan using Kali’s social engineering toolkit, deploy a payload to a Windows target, and establish a Meterpreter session with post-exploitation commands.

Learn about ERP spoofing and ERP poisoning, and see how a man in the middle redirects traffic between Windows 10 and the router, with Wireshark capturing the network packets.

Learn to perform ARP spoofing and ARP poisoning using Ettercap, sniffing and spoofing traffic, set targets for MITM, and capture traffic with tcpdump and Wireshark.

Explore how to identify and clear system logs using auditpol and event viewer, covering log types and the steps to view and clear application, security, setup, system, and forward events.

Plan, prepare, and review ethical hacking reports for different audiences, using plain language for non-technical readers, detailing impact, losses, and security improvements before management.

Learn that wireless hacking must follow country-specific cyber laws and require explicit permission; clearly explain scope to clients and obtain written authorization to avoid penalties.

Practice safe penetration testing by building a personal wireless lab with Kali Linux, using the aircrack suite tools like airmon-ng to monitor, inject packets, and create a fake access point.

Learn web application penetration testing by understanding websites and web servers, then practice footprinting and sql, xss, and denial of service attacks in a safe virtual environment.

Explore the basic structure of accessing a website: DNS resolution turns domain names into IP addresses, routes to a web server hosting multiple sites, and delivers HTML pages.

Discover how to gather target website information with whois, Netcraft, and Robtex, covering DNS details, IPs, mail servers, DNS records, subdomains, and beta testing.

Demonstrates how SQL injection can bypass authentication on vulnerable web apps, using DVWA and Mutillidae scenarios, and explains boosting security levels to prevent breaches.

Demonstrate sql injection on unknown usernames and passwords to log in as admin at low security, arrogant and top levels, and secure coding to stop sql injection and cross-site scripting.

Explore sql injection concepts by demonstrating live website vulnerabilities, using tor for privacy, and stressing responsible hacking with permission.

explores how sql injection and xss are used against web sites, then shows using reverse ip domain checks to discover other sites on the same server and potential attack surface.

Automate SQL injection with sqlmap, an open source tool, to detect and exploit database vulnerabilities and extract data from vulnerable websites, with commands and outputs demonstrated.

Learn about cross-site scripting (XSS) vulnerabilities in web apps, including refracted, stored, and dom based XSS, how attackers inject scripts, and bug bounty opportunities.

Explore practical cross-site scripting testing by identifying input parameters, injecting JavaScript on a live vulnerable PHP MySQL site, and confirming XSS vulnerability.

Explains how to hack an Android phone in about 30 seconds using the spy setup monitoring app, including downloading an APK, bypassing Play Protect, and accessing target data.

Explore the ping3 network tool to discover live systems using ICMP replies, understand fragmentation, and contrast its usage with ping for live host checks.

Explain social engineering techniques and tools, showing how attackers craft phishing emails and fake messages using a mass mailer attack to trick targets.

Learn to detect phishing sites using the Netcraft toolbar and the Fish Tank database, a community resource with an open API for anti-phishing data.

Learn to protect privacy and explore untraceable internet practices using windows and kali, including hiding real IPs, IP rotation, and managing cookies for safer online navigation.

Learn how to identify and change your device's MAC address using free tools, including selecting the network interface, applying a random MAC, and verifying the new address.

Explore how Tor protects privacy with multi-layer encryption across three routers, revealing only the needed path to the next hop, and how onion sites enable access to hidden services.

Install and configure the Tor browser, adjust security levels, and use the DuckDuckGo search to protect privacy, while understanding Tor's limitations and the difference between new circuit and new identity.

Configure OpenVPN on Windows 10 by installing the OpenVPN client, importing configuration files from a paid smart DNS proxy service, and connecting to verify access.

Explore how to mitigate DNS leaks and boost anonymity by using Tor, Tails live OS, and VPNs, with practical steps for testing DNS leaks and running in virtual environments.

Explore how dos and ddos attacks create fake traffic to overwhelm targets, from single-machine to coordinated attacker machines, and how defenders use multiple servers and load balancers, and legality considerations.

Demonstrates denial of service through an http flood against a Windows 10 target, using Kali and tools like ping3, dos http, and CPU deathbringer, with traffic observation via Wireshark.

Learn how to create a website in 30 seconds using bookmark.com's Aida AI design assistant. Pick a site type, set a name, add images, choose a style, and publish quickly.

Configure the Apache web server on a Linux system, learn about http and https ports, install httpd, and set up yum repositories from a mounted Red Hat DVD.

Install Vsftpd and Apache on Linux, start and enable httpd, open firewall for http, and verify the default page via localhost or 127.0.0.1.

Explore a practical dictionary attack on wifi with Kali Linux in VMware, capturing packets in monitor mode using airmon-ng and airodump-ng, then cracking WPA handshakes with aircrack-ng and a wordlist.

Secure Wi‑Fi by using a password longer than 12 characters to resist brute force and dictionary attacks, set a complex password, disable DHCP, use static IP with Mac filtering.

Explore chapter 120 of cyber security for beginners v2025, delivering a concise overview for newcomers and outlining key concepts within the course.

Explore how Excel stores, manages, analyzes, and retrieves data using spreadsheets with rows, columns, and cells. See how Excel enables mathematical calculations and creates charts and graphs for PowerPoint presentations.

Learn how to customize Excel using the quick access toolbar, adding and removing shortcuts like save and save as, and using F12 for quick access.

Explore the formula bar and status bar, learn to insert formulas with the equal sign, and switch between ready, enter, and edit modes, plus zoom and cell selection.

Master Excel navigation with the arrow keys and shortcuts like Ctrl+Arrow and Ctrl+Shift+Arrow to move and select cells, explore selecting the first column and the full database in Excel 2019.

Explore Microsoft Excel shortcuts using the Alt key to reveal tab shortcuts, navigate the Home tab with H key, close the workbook with Alt F C, and note version differences.

Explore built-in Excel functions and the sum operation to add numbers without a teacher, using insert functions and F1 for help.

Compute the difference between Rahul's and Richard's salaries using subtraction in Excel, following the bodmas rule to place the larger value first and using the difference of two numbers function.

Calculate the average salary of three employees by applying Bodmas rules or by using the average function in a spreadsheet. Adjust decimals and preview autofill in the next video.

Explore multiplication and autofill in spreadsheets. Learn how to multiply cells using operators or insert functions, and use autofill to generate number sequences and months, saving time.

Learn find and replace in excel to update large datasets, using find all, find next, replace, and replace all with the ctrl f shortcut.

Calculate item totals by adding cost and shipping, multiply by quantity, sum to subtotal, apply 5% tax to obtain the grand total, and subtract from 15000 to find money left.

Learn how to use the left and right text functions in Excel to extract letters, with examples for login names, and leverage the autofill handler; future lessons cover middle extraction.

Learn to convert names into email IDs using Excel's concatenate function. Split data with text to column, add dot and at the rate gmail.com, and paste values with paste special.

Master fixed width text splitting in Excel, converting formulas to values, and splitting data into columns with separators. Learn to use length and count to measure characters and numbers.

Solve the assignment using product tables of cost, shipping, and tax to compute totals and money left. Practice sum, relative references, and autofill to adapt when tax rates change.