Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Subscribe
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Become an Ethical Hacker - Complete Course
Rating: 4.6 out of 5(7 ratings)
108 students

Become an Ethical Hacker - Complete Course

Build your foundations for ethical hacking with this course!
Created byAshish Jha
Last updated 6/2024
English

What you'll learn

  • Building mindset to approach a target for a pentest
  • Performing recon and network scanning being very specific
  • Basics of exploitation from exploit-db(manual)
  • Basics of post exploitation using metasploit
  • Basics of clearing the logs using metasploit

Course content

1 section12 lectures7h 41m total length

  • The 5 phases and mindset building.27:35

    In this session, We discussed about what VAPT is all about and also the important 5 phases, We also discussed about the right perspective required to perform a sucessful Penetration test.

  • Performing information gathering and real-world experience50:53

    In this session, We discussed information gathering, Also known as reconnaissance, We used a couple of tools to perform recon, All these tools are available on the internet, They have a web interface for performing the recon, We also talked about the two types of information gathering, Active and passive, I also shared his experiences on real-world engagements.

  • Linux for reconnaissance and basic regular expressions filtering53:41

    In this session, We discussed reconnaissance with terminal tools in Linux, We gathered subdomains for a target and also used some regular expressions to get the exact match data which we want, We also gathered a list of URLs and found whether they are 200 OK or not and thereby making separate files for each of those, I also shared automation with respect to recon.

  • Networking basics and scanning with Nmap45:17

    Correction in the video: /24 subnets has 256 IP address and 254 Usable IP addresses.

    In this session, Discussed the basics of networking, Understanding UDP and TCP and also the difference between the two of them and then we went ahead and used Nmap for our scanning practicals.

  • Basics of SMB enumeration44:26

    In this session, We discussed SMB Enumeration, the different tools of the trade we have and how to use them to enumerate SMB service, We only did the enumeration and never exploited a vulnerability!

  • Mock ethical hacking25:38

    In this session, We performed a mock penetration test, Thereby we started by Nmap scan and then extracted the uncommon from the common and exploited a vulnerability to make this a successful penetration test, In this course, we are not going to touch much-advanced exploitation concepts, Rather just understand, How it's done basically.

  • A discussion of STUXNET - Talk41:26

    Not only learning the concepts important but also discussing the case studies too! In this session, we had a discussion on a very sophisticated attack known as the STUXNET attack on Iran's nuclear facility.

  • Basics of exploitation and Post Exploitation45:00

    In this session we discussed the basics of exploitation by exploiting a vulnerability in the Easy file-sharing server, We also saw the basic post-exploitation, Process migration, Clearing the logs and escalating privileges by local exploits, For each of these tasks we used Metasploit.

  • Basics of custom tooling17:39

    In this session, We discussed custom tooling, How custom tools can be made in python, Not really an advanced session but a small session to give you a glimpse of custom tooling.

  • Basics of WEB with BurpSuite52:59

    In this session, We discussed the basics of the web, And also discussed and used BurpSuite - A go-to tool for web penetration testers

  • Practical Exploitation of XSS and SQL Injection38:06

    In this session, We did some hands-on around 2 web-based vulnerabilities, XSS and SQL Injection.

  • Basics of Web application firewall19:01

    In this video, We discussed the basics of Web application firewalls, And we also did some discussion with practical scenarios.

Requirements

  • Very basic understanding of networking

Description

Cybersecurity is a global problem and most businesses are willing to hire skilled cybersecurity consultants for their security, it all starts with the basics, in this course learn the basics of penetration testing covering all 5 phases of penetration testing. This course not only focuses on conceptual understandings but also a good amount of time has been given to building the mindset for being good at offensive security.

I've taught this course to more than 100 students in our previous cybersecurity training program and these are live recordings of those sessions with the practicals that I have performed for the students to grasp not only the concept in theory but also in practicality to make sure they can perform those practicals in a live environment(personal or allowed third-party assets.)

This course is for anybody willing to start their career in cybersecurity technical skills and it will provide a foundation which can help them slowly advance themselves.

We also use to conduct our weekly talks and one such recording of a talk has been added to the course to provide a sense of giving back to the community and interacting with fellow industry people.

Looking forward to interacting throughout the course!

Who this course is for:

  • Anybody who is willing to become an ethical hacker!
  • College students who are willing to start their career in penetration testing.

Report abuse