A short overview video of the expectations for building your virtual lab environment using VirtualBox.

In this short video, you will learn how to easily download ISO and OVA files used in the course.

In this video, you'll learn how to spoof your browser to gain access to Windows 10 Pro from the Microsoft Evaluation center.

In this first lab, students will create a virtual install of Kali Linux using VirtualBox.

In this lab, you will create a virtual install of Windows 10 Pro to be used as a target for the course.

In this lab, you will learn how to import Metasploitable2 into  VirtualBox. Metasploitable2 is an intentionally vulnerable Linux virtual machine.  This VM can be used to conduct security training, test security tools and practice common penetration testing techniques.

Metasploitable3 is a VM of Windows Server 2008 made intentionally vulnerable. Metasploitable3 is intended for testing exploits. Metasploitable3 is a free virtual machine that lets you simulate attacks by using Kali Linux and Metasploit. In this short lab, students will use a downloadable PowerShell script to create a Metasploitable3-w2k8 system.

In this lab, you will learn how to install CSI Linux. CSI Linux was developed by Computer Forensics, Incident Response, and Competitive Intelligence professionals to meet the current needs of their clients, government agencies, and the industry.

From time to time, Virtualbox will not have a network available for some network types. In this video, we see how this can be easily fixed.

In this short video, you will learn how to install the Virtualbox extension pack. The VirtualBox extension pack extends the versatility of using a virtual machine by allowing support for USB 3.0 and other important features.

When configuring two or more devices to use the same network type, you may encounter an issue with VirtualBox issuing the same IP address to both devices This is an easy fix.

In this short video, you will learn how to take a snapshot of your current Kali configuration. Prior to making any changes to your basic install of Kali, you should take a snapshot of the current configuration so you can roll back to the point in time when everything was working correctly.

A short overview video of what constitutes passive scanning.

In this lesson, you will learn how to gather passive information from the Internet using Maltego. This lab uses the Community Edition (CE) of Maltego that comes built into our Kali installation. As a result, Maltego can gather a significant amount of passive information about a prospective entity in a single sweep of the Internet.

In this short video, you will learn how to use some of the OSINT tools provided with CSI Linux Investigator.

In this short video and lab presentation, you will learn how to prepare and use the CSI Linux and CSI Gateway for secure anonymous access while using the Shodan search engine.

In this short video and lab, you will learn how to locate vulnerable devices connected to the Internet using Shodan.

In this short video and lab, you will be introduced to some of the more advanced search filters that can be used with Shodan.

A short overview video of the expectations of what constitutes active scanning and why we use Nmap.

In this first lab, students will use Nmap to gather information about targets on their network.  Furthermore, students will be introduced to network discovery using Nmap and becoming familiar with using the Command Line Interface (CLI) in Linux.

Regarding Nmap switches: You will need to know which switch(s) to use to perform a specific scan, and you will need to be able to identify the type of scan used to generate a particular Nmap output. Lastly, from the Nmap output, you will need to identify the vulnerability shown in the Nmap results.

Regarding Nmap switches: You will need to know which switch(s) to use to perform a specific scan, and you will need to be able to identify the type of scan used to generate a particular Nmap output. Lastly, from the Nmap output, you will need to identify the OS shown in the Nmap results.

Regarding Nmap switches: You will need to know which switch(s) to use to perform a specific scan, and you will need to be able to identify the type of scan used to generate a particular Nmap output. You will be expected to know how to perform a host discovery using Nmap.

Regardless of your exam vendor for your next cyber security exam, you may be asked to analyze the output of an NMap scan. You may be asked to reconstruct the NMap command that generated the output and finally, you may be asked to determine from the output the best attack vector.

The Nmap scripting engine is one of Nmap's most powerful and, at the same time, most flexible features. It allows users to write their own scripts and share these scripts with other users for the purposes of networking, reconnaissance, etc. These scripts can be used for:

•  Network discovery
• More sophisticated and accurate OS version detection
• Vulnerability detection
• Backdoor detection
• Vulnerability exploitation

In this lab, you will look at the scripts that have been shared and are built into Kali and will examine how to use them to do thorough recon on our target, to increase the possibility of success, and reduce the possibilities of frustration.

EternalBlue, sometimes written as ETERNALBLUE, is an exploit believed to have been developed by the U.S. National  Security Agency (NSA). It was leaked by the Shadow Brokers hacker group on April 14, 2017, and was used as part of the worldwide WannaCry ransomware attack on May 12, 2017.

For this lab, students will be using NMap to look for the vulnerability, ETERNALBLUE. EternalBlue exploits a vulnerability in Microsoft's implementation of the Server  Message Block (SMB) protocol. This vulnerability is denoted by entry  CVE-2017-0144 in the Common Vulnerabilities and Exposures (CVE) catalog.  The vulnerability exists because the SMB version 1 (SMBv1) server in various versions of Microsoft Windows accepts specially crafted packets from remote attackers, allowing them to execute arbitrary code on the target computer.

In this lab, students will learn how to automate the installation of NESSUS using containerization. Students will be introduced to the Docker program which provides a sandbox for the running of applications called containers. Containers are self-contained images that come preconfigured with all the necessary dependencies, software and files to operate without having the call on the operating system. This course has at least three labs that we use containerization for the installation of certain types of software.

In this Lab, students will learn how to discover vulnerabilities on their home or business network (The Windows XP Victim should be up and running as part of your network).   In this Lab, you will use the industry vulnerability scanner, NESSUS.  NESSUS is considered the industry standard for vulnerability scanners. There are plenty of commercial-grade scanners on the market and they all have their good and bad points but NESSUS is considered the gold standard.

In this video, students learn how to interpret their Nessus scan results.

In this lab, you will install the Docker program into your Kali machine and then download and install OpenVAS as a container to run inside of Docker.

In this lab, you will conduct a vulnerability scan of your network using OpenVAS.

In this short lab, you will learn how to dump Credential dumping is said to be a technique through which usernames and passwords are extracted from any login account from the target system. It is this technique that allows an attacker to get credentials of multiple accounts from one person. And these credentials can be of anything, such as a bank, email account, social media account, or wireless networks.

In this lab, you will learn how to perform post-exploitation of a Microsoft Windows target using Metasploit. The Metasploit Framework comes with several useful scripts that can aid you in exploiting a Microsoft target. These scripts are made by third parties and eventually become part of the subversion repository.

In this lesson, you will learn how to exploit RDP running on a remote target using brute force attack. The current global pandemic has forced many office workers to work from home and remotely into their networks using Remote Desktop Protocol or RDP. System administrators rely on RDP to perform administrative tasks on servers and workstations remotely. This sudden surge in remote access has also seen a significant spike in the number of RDP-related attacks.

A bind shell is a kind of shell that opens a new service on the target machine and requires the attacker to connect to it to get a session.

Msfvenom is a command-line instance of Metasploit used to generate various payloads for shellcode available in Metasploit.

A reverse shell (also known as a connect-back) is the opposite of a Bind Shell: it requires the attacker to set up a listener first on the attack box. The target machine then acts as a client connecting to the listener, and finally, the attacker receives the shell.

Regardless of which cybersecurity exam, exam vendor, or certification path you choose, you will be expected to know what documents are required before, during, and after a pentest. For exam purposes, you will need to understand the purpose of the Rules of Engagement, why it is important, and what should be included in the document.

You are also expected to know the difference between a Statement of Work and the Rules of Engagement.

Pentesters and ethical hackers need to understand the purpose of the Nondisclosure Agreement, why it is important, and what should be included in the document.

You are also expected to know the difference between a Statement of Work and the Master Service Agreement (MSA).

HTML Smuggling is an evasive payload delivery method that helps an attacker smuggle payload past content filters and firewalls by hiding malicious payloads inside seemingly benign HTML files.

‘HTML smuggling’ spreads malware via email, primarily targeting banking organizations deploying banking malware, remote access Trojans (RATs), and other payloads.

Section overview.

In this lab, you will be introduced to hacking Linux using a vulnerable install of Linux called Metasploitable2.  Metasploitable2 is an intentionally vulnerable Linux virtual machine. This VM can be used to conduct security training, test security tools, and practice common penetration testing techniques.

In the lab, students will perform several ethical hacking lab exercises. The focus is on attacking endpoints. While there will be several specific attacks that you will perform, don't concentrate on the specifics. There are innumerable attacks that will come and go. Instead, of concentrating on the specific attack, concentrate on the bigger picture. Where do the vulnerabilities lie? You will see misconfigurations, back-doored software, vulnerabilities in base operating systems, and users who are vulnerable to social engineering.

The Berkley r-utilities is a set of Unix/Linux tools that feature remote login (rlogin), remote copying (rcp), and remote command execution (rsh). These commands were developed for password-free access to Unix/Linux machines. Although the r-utilities have some advantages, they should be avoided because they can make access to the host extremely insecure, and transmissions using the r-utilities are not encrypted.

This Metasploit module exploits a malicious backdoor that was added to the VSFTPD download archive. This backdoor was introduced into the vsftpd-2.3.4.tar.gz archive between June 30th, 2011, and July 1st, 2011, according to the most recent information available.