Hacking 101 Bootcamp

Explore the CIA triad—confidentiality, integrity, and availability—and how encryption, access control, hashing, digital signatures, and backups support reliable systems and disaster recovery.

Explore black box, grey box, and white box assessments from an attacker perspective, covering external testing, phishing simulations, OSINT, and internal vulnerability analysis with varying depth and time constraints.

Define networks, including private home networks and public wifi, and explain how the internet interconnects private, public, academic, and government networks. Explain IP and MAC addresses, NAT, and IPv4/IPv6 basics.

Explore the OSI model as a seven-layer framework that translates browser UI actions into encrypted HTTP requests, detailing TCP vs UDP, three-way handshake, and routing across network and data-link layers.

Explore how the TCP/IP model compresses the OSI layers into four core layers—application, transport, internet, and link—as the current protocol-based infrastructure, noting that a physical layer is sometimes considered separately.

Explore common network protocols, including icmp for troubleshooting with ping and traceroute, arp for mac address resolution, dhcp for automatic ip assignment, and ssh, sftp, and ftps.

Resolve domain requests to ip addresses using dns to locate the web service. Send an http or https request to the port and render the page on the client.

explore Google dorking to uncover exposed credentials and login panels, highlight brute-force risks without rate limiting, and show how backups and search results can reveal login credentials.

Explore the external asset attack space by enumerating domains, subdomains, ip ranges, cloud storage, certificates, and public code repos to identify misconfigurations and vulnerabilities across environments.

Explore physical access in red teaming by evaluating entry points, CCTV blind spots, door locks, badge readers, and tailgating to assess how attackers might reach servers and devices.

Explore how phishing attacks use social media intelligence, email schemas, and tailored messages to impersonate executives, deliver malicious links or attachments, and exploit urgent requests.

Explore practical external assets enumeration using tools like asset finder, DNS record discovery, Wayback Machine, DNS dumpster, and crt.sh to map a target's public surface and assess attack surfaces.

Perform reconnaissance and threat modelling to map external assets, test attack vectors from login flows to approval workflows, identify vulnerabilities (such as XSS and SQL injection), and report mitigations.

Explore how a website operates from the browser front end to server side processing, including a login post request and database credential checks.

Explore the OWASP top 10 web vulnerabilities, including broken access control, injection, and cryptographic failures, with practical explanations of attack vectors and mitigations.

Enumerate web assets across four applications in a lab, using passive and active discovery, public records, DNS, certificates, and web archives to map attack surfaces and authentication discovery.

Explore google dorking as a first attack vector, uncovering login panels with exposed credentials and backups endpoints through search engines to define initial access.

Learn about command execution and injection vulnerabilities in admin dashboards within the hacking 101 bootcamp, and how front-end input can trigger RCE, with server-side mitigation strategies.

Explore how SQL injection vulnerabilities manipulate server queries using user input to read data, bypass authentication, and potentially execute commands or read system files.

Explore remote code execution and command injection vulnerabilities, including deserialization vulnerabilities, differentiate from code execution, and study brute-force credential attacks using default or weak passwords with Burp Suite and Hashcat.

Demonstrate remote code execution in a JavaScript-powered report application by showing how HTML templates render data, and how misconfigurations and weak credentials enable access.

Analyze the Tomcat application for vulnerabilities by researching public exploits and CVEs using Kali Linux and resources like pentestabc.net.

Explores vulnerability vectors that enable remote code execution, including vulnerable components, broken access control, and PHP or ASP.NET upload techniques, with focus on public payloads and CVEs.

Explore varied vectors for remote code execution, including credential exposure, rce via command and sql injections, and brute-forcing, then exploit jsreport payloads and war shells on linux systems.

Understand how linux assigns uid and gid to users and groups, including root's uid 0 and default group, and how capabilities and suid/sgid bits shape privileges.

Learn to enumerate a Linux system after initial access by identifying the current user and privileges, users and groups, writable files, network and internal services for targeted escalation.

Explore three prelay escalation vectors— suid bit, cron jobs, and sudo— and learn practical enumeration techniques to identify misconfigurations and escalate privileges on Linux systems.

Explore practical Linux privilege escalation by exploiting suid binaries, using find and base64, reading restricted files, cracking password hashes, abusing cron jobs and sudo find to gain root.

Learn pivoting techniques by routing traffic through a compromised linux host, using ssh tunneling, local and dynamic port forwarding, and a socks proxy via ssh shuttle.

Learn how Nessus, a vulnerability assessment tool, scans thousands of hosts and produces reports. Configure policies for network, credential-based, non-credential, and web application scans, using Linux or Windows credentials.

Learn to use the Metasploit framework to generate payloads with MSF Venom for reverse shells, explore the MSF console, and leverage Meterpreter for post-exploitation.

Learn to use Hydra to brute force services like ssh and ftp with a word list of default credentials, and confirm when password-based authentication is not supported.

Enumerate Windows hosts by using nmap, identify services via ports, exploit anonymous FTP login and SMB shares, extract credentials, and establish a foothold with netexec and WinRM for lateral movement.

Learn Windows enumeration techniques after gaining shell access, using commands like systeminfo, wmic, tasklist, scquery, and netsh to map users, privileges, services, hotfixes, and network connections.

Explore Windows privilege escalation vectors by enumerating unquoted service paths and registry settings to trigger elevated execution with MSI installers in a lab environment.

Learn practical Windows privilege escalation, from always elevated registry keys and unquoted service path abuse to crafting MSI payloads with msfvenom for reverse shells.

Develop hands-on cybersecurity experience through bug bounty programs and personal labs, document your work on GitHub and LinkedIn, and engage with experts and communities to advance your career.