
Explore the bash history command to view and reuse commands, run the last or a specific entry with shift, and search with ctrl r for items like echo and pwd.
Explore text searching with grep, using regular expression and -i for case-insensitive matches, then manipulate text with sed, cut, and awk, and preview results with hit and tail.
Learn to edit files from the command line using nano and Vim, create and save text, and exit with :w, :q, :wq, or :q!.
Compare files using cp, diff, and vimdiff in Kali Linux, then view line-level differences between test.txt and test_cp.txt and exit with vim.
Install and set up Wireshark across Windows, Mac, and Linux, including Kali, Alpine, and Ubuntu, by following simple download and installation steps from wireshark.org.
Use Kali Linux to filter all http get and post requests with curl, choosing the method and uri to capture traffic live.
Explore Shodan, a search engine that crawls internet-connected devices, including servers, routers, and IoT devices, and learn how to use login-based search filters.
Use the security headers tool to analyze http response headers and assess a site's security posture by entering a URL and reviewing results like status codes and server information.
Perform a hands-on scan of multiple IP addresses with Kali Linux, comparing port states on a Metasploitable target and Kali host. The host is up, with ports open or closed.
Run the scan using the top boards option, set the board count (for example 102), and target the Metasploitable IP to see results grow from top 100 to top 1000.
Demonstrate launching a denial-of-service test with Nmap scripting engine, using Slowloris to exhaust a web server, configuring dash-p, --script, and max parallelism on a Metasploitable host to highlight hardening insights.
What is ethical hacking?
Ethical hacking involves an authorized attempt to gain unauthorized access to a computer system, application, or data. Carrying out an ethical hack involves duplicating strategies and actions of malicious attackers. This practice helps to identify security vulnerabilities which can then be resolved before a malicious attacker has the opportunity to exploit them.
Also known as “white hats,” ethical hackers are security experts that perform these assessments. The proactive work they do helps to improve an organization’s security posture. With prior approval from the organization or owner of the IT asset, the mission of ethical hacking is opposite from malicious hacking.
What Is A Red Team?
A red team consists of security professionals who act as adversaries to overcome cyber security controls. Red teams often consist of independent ethical hackers who evaluate system security in an objective manner.
They utilize all the available techniques to find weaknesses in people, processes, and technology to gain unauthorized access to assets. As a result of these simulated attacks, red teams make recommendations and plans on how to strengthen an organization’s security posture.
How Does A Red Team Work?
You might be surprised to learn that red teams spend more time planning an attack then they do performing attacks. In fact, red teams deploy a number of methods to gain access to a network.
Social engineering attacks, for example, rely on reconnaissance and research to deliver targeted spear phishing campaigns. Likewise, prior to performing a penetration test, packet sniffers and protocol analyzers are used to scan the network and gather as much information about the system as possible.
What Is A Blue Team?
A blue team consists of security professionals who have an inside out view of the organization. Their task is to protect the organization’s critical assets against any kind of threat.
They are well aware of the business objectives and the organization’s security strategy. Therefore, their task is to strengthen the castle walls so no intruder can compromise the defenses.
How Does A Blue Team Work?
The blue team first gathers data, documents exactly what needs to be protected and carries out a risk assessment. They then tighten up access to the system in many ways, including introducing stronger password policies and educating staff to ensure they understand and conform to security procedures.
Monitoring tools are often put in place, allowing information regarding access to the systems to be logged and checked for unusual activity. Blue teams will perform regular checks on the system, for example, DNS audits, internal or external network vulnerability scans and capturing sample network traffic for analysis.