Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

The Complete Ethical Hacking Bootcamp: Beginner To Advanced!

Learn hands-on ethical hacking, penetration testing, web app pentesting and Python scripting.

Created byHackerSploit Academy

Last updated 11/2020

English

What you'll learn

How to setup a penetration testing environment.
How to use the Linux terminal.
Networking fundamentals
How to use networking tools
Passive information gathering
Google Dorks
Information Gathering With Shodan
Email Harvesting
DNS Enumeration and zone transfers
Active information gathering
Port scanning with Nmap
Using Nmap scripts
Web application penetration testing
HTTP requests and responses
Burpsuite fundamentals
Brute force attacks
Command Injection
SQL Injection
Cross Site Scripting (XSS)
Wireless penetration testing
Capture handshakes with Airodump-ng
Cracking passwords with Aircrack-ng
Generating wordlists with crunch
Rainbowtables
Arpspoofing
DNS spoofing
Exploiting browsers with BEEF
MITM Attacks
Metasploit
Msfconsole
Msfvenom
Command Injection
Meterpreter sessions
Python basics
Developing a custom backdooor
Developing a keylogger
Developing an offensive bruteforce script

Course content

14 sections • 142 lectures • 27h 22m total length

Introduction to the course4:43

Installing VirtualBox15:37
Installing Kali Linux13:57
Installing VirtualBox Guest Additions18:17
Install VirtualBox guest additions to enable full screen mode in a Linux virtual machine; learn basic terminal commands, update sources, install Linux headers, and run the guest additions installer.
How to create a bootable Kali USB flash drive5:00
Important things to do after installing Kali Linux8:32

Google Hacking13:11
learn footprinting concepts, including active and passive methods, and apply google hacking techniques to find web sites with vulnerable user inputs using dorks and the google hacking database.
Whois information gathering6:40
Email harvesting6:08
Learn to use the harvester email harvesting tool to search a domain for emails and hosts, configure Google as the engine with a configurable result limit, and troubleshoot execution.
Information gathering with Shodan10:25
DNS Zone transfers with Dig7:09

Installing OWASP8:27
HTTP requests10:01
HTTP responses10:30
Configuring Burpsuite12:51
Modifying packets in Burpsuite12:21
Learn to intercept and modify web traffic with Burp Suite, examine get and post requests and responses, forward and alter packets and cookies to test authentication and privacy controls.
Whatweb & Dirb10:12
Explore WhatWeb and DirB as essential reconnaissance tools to identify web technologies and exposed directories, then apply findings to plan testing with Burp Suite, including cross-site scripting considerations.
Password recovery attacks15:35
Set Burp Suite as a proxy to intercept traffic and map the target with Burp Spider, then perform a forgot password test to discover usernames using Burp Intruder sniper payloads.
Bruteforce attacks with Burpsuite11:06
Brute force a login page using Burp Suite intruder with cluster bomb, feeding user and password lists, intercepting post requests, and identifying successful credentials by server responses.
Bruteforce attacks with Hydra8:48
Use Hydra to perform a post-form brute-force attack against a login page, iterating usernames and passwords from lists, and extract the target path from the captured packet.
Session fixation13:55
Injection attacks5:35
Command injection11:10
Exploiting command injection7:44
Explore exploiting command injection to execute arbitrary commands, establish a reverse net cat connection, and gain remote access to a Linux victim, including verifying ip addresses and config outputs.
Finding Blind command injection13:46
SQL Basics10:27
Explore the basics of SQL injection, how databases store user data, and core SQL commands such as select, insert, update, delete, and drop, with practical login scenarios.
Manual SQL injection - 113:17
Manual SQL injection - 221:00
Learn how to perform manual sql injection to enumerate the database name, discover tables and columns, and reveal user credentials and hashed passwords, including basic hash decryption concepts.
SQLmap basics16:37
Explore blind sql injection for vulnerable web apps and the brute-force method to discover database names, then automate injections with sqlmap using -u and -p options.
XML injection16:00
Master xml and xpath injection by analyzing how unfiltered user input can be interpreted as code, and practice exploiting a movie search app with Burp Suite and manual steps.
Installing XCAT & preventing injection attacks5:53
Reflected XSS10:52
Stored XSS12:01
Demonstrates stored cross-site scripting and contrasts it with reflected cross-site scripting, showing how vulnerable pages store scripts, steal cookies, and enable session hijacking via guestbook inputs.
Modifying HTML code with XSS7:34
XSSer & XSSsniper13:40
Nikto Basics10:55

Wireless attacks fundamentals10:52
Enabling Monitor mode4:41
Capturing handshakes with Airodump-ng14:40
Rockou.txt Wordlist14:00
Cracking passwords with Aircrack-ng15:35
Cracking passwords with Hashcat15:00
Crack wifi handshakes with Hashcat by converting cap files to hccapx, using hash type 2500 and a rockyou wordlist, while monitoring GPU temperatures.
Making password lists with Crunch18:22
Making password lists with Cupp7:12
Learn to generate targeted password lists using crunch and a Python-based password profiler, download tools from repositories, and run interactive prompts to build dictionaries for ethical hacking practice.
Rainbowtables - 116:36
Rainbowtables - 25:40
Installing Fluxion6:20
Install Fluxion from GitHub to automate creating an evil twin access point, install required components, and run the program to configure a captive portal for credential capture.
Finding & cracking hidden networks8:22
Preventing Wireless attacks8:00

The Metasploit Console16:10
Metasploit Modules Explained12:14
Bruteforcing SSH with Metasploit15:20
Exploiting Apache Tomcat With Metasploit8:53
Getting A Meterpreter Session With Command Injection25:08
Explore how to obtain a Meterpreter session via command injection by creating a reverse shell with MSF venom, hosting it on Apache, and delivering it to the target.
PHP Code Injection5:46
Exploiting Metasploitable27:00
Wine installation12:04
Install wine on Linux to run Windows programs and prepare for Windows exploits, using Python integration and 32-bit setup, with focus on eternal blue and Windows 7 targets.
Crafting Windows Payloads With Msfvenom10:04
Encoders & Hexeditor18:45
Explore encoders and hex editor techniques to craft a Windows reverse shell payload and study antivirus bypass strategies in ethical hacking.
Windows 10 Meterpreter session12:01
Meterpreter Environment11:30
Windows 10 Privilege Escalation11:30
Preventing Privilege Escalation6:23
Learn how to prevent privilege escalation on Windows by enabling always notify for User Account Control, blocking common bypass techniques demonstrated with exploit modules.
Post Exploitation Modules14:13
Explore post exploitation modules after gaining system access, including packet sniffing with the sniffer, arp scanning, credential dumping, and enumerating installed applications and logged-on users on Windows targets.
Getting A Meterpreter Session Over Internet With Port Forwarding10:43
Eternalblue Exploit20:20
Persistence Module13:19
Hacking Over Internet With Ngrok10:26
Creating Android Payloads With Msfvenom9:55
The Real Hacking Begins Now!2:26

ARP Protocol basics10:30
MITM Attacks Explained7:22
Installing MITMf6:38
Manual Arp Spofing12:50
Problems While Installing MITMf6:21
HTTP Traffic Sniffing8:32
Learn to configure and use an ARP spoofing tool to perform a man-in-the-middle attack, sniff HTTP traffic, and understand interface and gateway settings that influence targeting.
DNS Spoofing and HTTPS Password Sniffing24:20
Hooking Browsers With BEEF16:04
Taking a screenshot of the target's browser11:03
Cloning Any Webpage8:56
Man In The Middle Attack - Ettercap Basics7:00

Requirements

Basic understanding of Linux.
Basic understanding of TCP/IP.

Description

Learn hands-on ethical hacking, penetration testing, web app pentesting, and Python scripting. This course will teach you everything you need to know to get started and unlock a career in Ethical Hacking & Penetration Testing. The course has over 25 hours of video lectures that take you from a complete beginner to an advanced penetration tester.

Learn how to set up your very own Virtual Hacking Lab with VirtualBox, learn how to use Linux, perform network scanning and mapping with Nmap, perform system exploitation with Metasploit, hack Wi-Fi networks with aircrack-ng, exploit web applications with BurpSuite, perform SQL injection on vulnerable web apps, learn how to write pentesting scripts with Python, develop a brute-force tool with Python and learn how to develop a custom backdoor with Python.

If you are looking to get started in Penetration testing and you want to know if this course is for you or worth taking. Take a look at the reviews and testimonials from students that have already taken the course. Here are some of the most recent reviews from our students:

Excellent Explanations - Larry Bensky

The explanation of what is being performed is spot on. Everything is explained and the pace is exactly as needed.

Great course, lot's of quality content - Javier

Great course. I got lots of quality content, where I have learned a lot. This course is great for beginners as covers lots of topics in an easy manner. I loved developing the key-logger and the backdoor

The instructor is very good - Davis Ansong

The instructor is very good. The matched my expectations. Anyone wanting to get into IT and ethical hacking should have a look at this course.

This course aims to teach beginners everything that is needed to become a professional penetration tester and is carefully tailored and structured to ensure validation of what is being taught, every lecture involves student interaction, where students will be required to follow along with the instructor and will also include assessments and projects that will further test and advance the students knowledge of the subject.

The course is structured to provide students with an efficient learning curve where each module builds on one another. The course is comprised of the following key modules:

Setting up a penetration testing lab - This module aims to teach you the process of setting up your own virtual hacking lab.
Linux Essentials - This module is aimed at getting you familiarised with the Linux OS and the most important Linux commands.
Networking Fundamentals - This module will cover the basics of TCP/IP and the OSI model.
Information Gathering - This module aims to teach you both passive and active information gathering.
Exploitation & Privilege Escalation - This module aims to teach you how to exploit systems with tools like Metasploit and how to perform privilege escalation.
Web App Pentesting - This module aims to teach you web application pentesting and how to exploit common web app vulnerabilities like SQL injection, XSS, CSRF, and command injection.
Wireless Pentesting & Man in the middle attacks - This module covers wireless network pentesting and will involve cracking WiFi passwords with aircrack-ng, capturing packets, traffic sniffing, arp spoofing, rainbow tables, and cracking passwords with hashcat.
Offensive Python scripting - This module will teach you the fundamentals of Python and how to develop offensive python tools for penetration testing and automation.

Who this course is for:

If you want to get started in Cybersecurity and penetration testing.
If you are looking to advance your career in Cybersecurity, this course will level up your skills and give your career a boost.
If you are a system administrator and want to learn how to better secure your systems and network.
If you are pursuing CEH or OSCP and are looking to improve your skills and prepare for the certifications.

The Complete Ethical Hacking Bootcamp: Beginner To Advanced!

What you'll learn

Explore related topics

Course content

Introduction1 lecture • 5min

Setting Up A Pentesting Lab5 lectures • 1hr 1min

Linux Essentials For Hackers3 lectures • 44min

Networking Tools & Essential Terminology3 lectures • 33min

Passive Information Gathering & Footprinting5 lectures • 44min

Active Information Gathering & Port Scanning9 lectures • 1hr 51min

Web Application Penetration Testing25 lectures • 4hr 50min

Wireless Penetration Testing13 lectures • 2hr 25min

System Hacking And Exploitation21 lectures • 4hr 14min

MITM Attacks (Man In The Middle Attacks)11 lectures • 2hr

Requirements

Description

Who this course is for: