
Learn to connect to the HTB platform via a VPN on Kali Linux, download and run the VPN file, then activate retired machines like the magic machine for hands-on testing.
Learn to use Nmap for network discovery, reconnaissance, and security auditing, identifying live hosts, open services, operating systems, software versions, and network assets, plus tcp and udp basics.
Activate the solid state machine on hack the box via openvpn, note its ip, and prepare to explore nmap tools and options.
Identify live hosts with nmap using host discovery and -sn, then use tcp connect scans (-sT) to enumerate ports and services, saving results in text or xml formats (-oN, -oX).
Explore four file transfer methods between systems: PowerShell web client downloads, batch PowerShell, git transfers, and wget with a local http server for Windows and Linux targets.
Netcat writes and reads data over tcp and udp, enabling a reverse shell between Kali and a target, port scanning, and banner grabbing as a cross-platform tool.
Identify the Apache James version and search for exploits to test remote code execution on the solid state machine, using exploit tools and related sources.
Gain SSH access using Mindy's credentials from 1.1.1.51, update the exploit payload to a reverse shell with netcat, and trigger remote shell access via a Kali listener.
Explore dirb, a command-line tool that brute-forces directory paths using wordlists and HTTP requests to reveal hidden pages, with a default around 4000 words and technology-specific targets like WordPress.
Learn how Burp Suite, a Java-based proxy, intercepts and analyzes browser traffic to modify requests, test inputs, and support automated or manual web application penetration testing with repeater and intruder.
Identify sql injection vulnerabilities with union-based techniques, test data entry points using Burp Suite, analyze http 500/302, determine column counts, data types, and craft payloads with order by and comments.
Explore common file upload restrictions—content type, extension, and content verification—and bypass techniques using Burp Suite to understand how attackers deploy reverse shells.
Are you ready to dive into the world of Cybersecurity and Ethical Hacking? This course is designed to equip you with the essential skills and hands-on experience needed to identify, assess, and exploit network vulnerabilities just like a professional penetration tester — all in a legal and ethical way.
You’ll start with the fundamentals of ethical hacking and progress through each phase of a penetration test, including reconnaissance, scanning, enumeration, exploitation, and post-exploitation. Using popular tools such as Nmap, theHarvester, and others, you'll learn how to gather intelligence, detect weaknesses, and simulate real-world attacks on networks and systems.
You’ll also explore key concepts like footprinting, attack surface analysis, and basic reporting, helping you understand not just the “how,” but the “why” behind each step.
Whether you're a student, IT professional, or someone looking to break into cybersecurity, this course provides a solid foundation and practical techniques used in the field today. No prior hacking experience is required — just a passion for learning and a drive to think like a hacker.
By the end of this course and by completing all labs and exercises, you’ll be able to perform basic penetration tests, understand attacker methodologies, and apply ethical hacking practices with confidence.